{"report_id":"82d17bc6-cec4-4ee9-b783-c80033683855","version":6,"status":"done","tags":[],"date":"2026-03-06T06:48:58Z","url":{"schema":"http","addr":"eggy.cool","fqdn":"eggy.cool","domain":"eggy.cool","tld":"cool"},"ip":{"addr":"151.247.193.142","port":0,"asn":0,"as":"","country":"Iran","country_code":"IR"},"final":{"url":{"schema":"https","addr":"eggy.cool/","fqdn":"eggy.cool","domain":"eggy.cool","tld":"cool"},"title":"eggy.cool/","dom":{"size":55,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"8cf46bf30feca3843327ef89b2641ad3","sha1":"af9034e4eada73fd1dfd7ba9b46ffe65f5e8f91c","sha256":"8757566397a27d2ba90b2956ecb64be2b4e8f1c59aae38afcfb0f176aec480a0","sha512":"06e14200f5731134fca7710052f85bad41aef8f484043e62367e565e24ebe64960c15b77ef9c8e2ee7f34122d3ce0be694c228dcf9d285ba3d2d4196c832556c","ssdeep":"","tlshash":"049002f9d05504055eb17d911cc5324a19144258a0257a0415d134a888c43258c221cc","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"eggy.cool","fqdn":"eggy.cool","domain":"eggy.cool","tld":"cool"},"ip":{"addr":"151.247.193.142","port":0,"asn":0,"as":"","country":"Iran","country_code":"IR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-10T06:48:58Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-06","alert":"Phishing Block","trigger":"eggy.cool","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"eggy.cool","ip":{"addr":"151.247.193.142","port":443,"asn":0,"as":"","country":"Iran","country_code":"IR"},"domain_registered":"2022-12-13","domain_rank":0,"first_seen":"2022-12-13T10:49:14Z","last_seen":"2024-12-14T08:43:02.806449Z","alert_count":8,"request_count":2,"received_data":1594,"sent_data":903,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"eggy.cool/","fqdn":"eggy.cool","domain":"eggy.cool","tld":"cool"},"ip":{"addr":"151.247.193.142","port":443,"asn":0,"as":"","country":"Iran","country_code":"IR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-06T06:48:36.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"eggy.cool","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Dec 2025 11:52:37 GMT","end":"Mon, 16 Mar 2026 11:52:36 GMT"},"fingerprint":{"sha1":"44:D0:57:96:A6:B0:B8:E8:7A:EF:7A:4D:1D:6B:39:74:D8:21:22:46","sha256":"3B:D2:4E:7C:FB:ED:53:69:3A:B8:36:41:0E:01:99:28:1F:64:1C:56:99:35:F0:6D:C6:C6:A7:67:28:FA:17:14"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: eggy.cool\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Apache/2.4.52 (Ubuntu)\r\nDate: Fri, 06 Mar 2026 06:48:37 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 16\r\nEggy-Wall: 12.5\r\nAbuse: abuse@eggywall.cc\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":16,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"bf048c7a44e493f4622a7259df78d766","sha1":"2c166866427eae673a1e6fffc6d8b3d91328b634","sha256":"2f9a6999efb9411bc1b51b564c13d5167153e7c863a112e67f9487ad333381ad","sha512":"d6941a460456ebc7a1c02421db9cc1b24fc0b2eb83bb0246cd53c28e1d42d7e28cb3ad97aa038b83efc8b4ca8ef05124be2e4d24e1181a84d51fc4f4cf873ee1","ssdeep":"","tlshash":"b460003000000c0003f3cc333000300000000000c03c300000f330cc00c03300c300cc","first_seen":"2026-03-06T06:48:58.993445Z","last_seen":"2026-04-29T21:29:41.722019Z","times_seen":3,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":105,"dns":11,"connect":38,"send":0,"wait":47,"receive":0,"ssl":52},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-06","alert":"Phishing Block","trigger":"eggy.cool","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"eggy.cool/favicon.ico","fqdn":"eggy.cool","domain":"eggy.cool","tld":"cool"},"ip":{"addr":"151.247.193.142","port":443,"asn":0,"as":"","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eggy.cool/","date":"2026-03-06T06:48:37.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"eggy.cool","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Dec 2025 11:52:37 GMT","end":"Mon, 16 Mar 2026 11:52:36 GMT"},"fingerprint":{"sha1":"44:D0:57:96:A6:B0:B8:E8:7A:EF:7A:4D:1D:6B:39:74:D8:21:22:46","sha256":"3B:D2:4E:7C:FB:ED:53:69:3A:B8:36:41:0E:01:99:28:1F:64:1C:56:99:35:F0:6D:C6:C6:A7:67:28:FA:17:14"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: eggy.cool\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eggy.cool/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: Apache/2.4.52 (Ubuntu)\r\nDate: Fri, 06 Mar 2026 06:48:37 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 1187\r\nEggy-Wall: 12.5\r\nAbuse: abuse@eggywall.cc\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1187,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"880913d01e9ab7a5a655349ff881f11d","sha1":"22f01ff66b21c25f74ba15841b002de780e903cc","sha256":"f8335031601720a2e61045c2fec36c32b95260d41c4df2a70f9e08813d53b401","sha512":"4a2e2a9bdabf97770c302ba3eaed01d284a6e39fcf57f56e89beb3718e947ec182d0079a4b390469fa1ddea402ec73f1de88a2af386f8e135789d03455442357","ssdeep":"","tlshash":"f0219c8dc9930282b50396243be7534b13609057c8a6d3687a8e7390df4a2a8a2a2394","first_seen":"2026-03-06T06:48:58.994878Z","last_seen":"2026-04-29T21:29:41.724628Z","times_seen":3,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"eggy.cool","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-06","alert":"Phishing Block","trigger":"eggy.cool","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}