{"report_id":"8ea82c11-9fc4-4885-aa67-921f7d00e69e","version":6,"status":"done","tags":[],"date":"2026-04-21T10:19:16Z","url":{"schema":"https","addr":"escaladainterna.s3.us-east-005.backblazeb2.com/aumento.html","fqdn":"escaladainterna.s3.us-east-005.backblazeb2.com","domain":"backblazeb2.com","tld":"com"},"ip":{"addr":"149.137.137.254","port":0,"asn":40401,"as":"BACKBLAZE","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"escaladainterna.s3.us-east-005.backblazeb2.com/aumento.html","fqdn":"escaladainterna.s3.us-east-005.backblazeb2.com","domain":"backblazeb2.com","tld":"com"},"title":"escaladainterna.s3.us-east-005.backblazeb2.com/aumento.html","dom":{"size":91,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"f8a15f769480ce4df76b7090c7a9d3cf","sha1":"c10294b5f834f71d39b639248d9bdf38b9beda6d","sha256":"7701e18d2a87fe1cdce9cb106ead0fdd6740328eaab394bd1f44f3202a166190","sha512":"f9bf52fb8d261c8691c2254e7615c10caacfea24ec7d3c5797f8a2472bd7da8559dfada36e1638af74de10ef4525e0c21cf2482159cc3b116fd52684f92bb6bc","ssdeep":"","tlshash":"1eb0020572d4b54d1405447571193b11f604497343c73275b15951875bc65515c5a615","dom_hash":"domhash1b01e5efdb8b27c209f9756d99e9dd67","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"escaladainterna.s3.us-east-005.backblazeb2.com/aumento.html","fqdn":"escaladainterna.s3.us-east-005.backblazeb2.com","domain":"backblazeb2.com","tld":"com"},"ip":{"addr":"149.137.137.254","port":0,"asn":40401,"as":"BACKBLAZE","country":"United States","country_code":"US"},"tags":["openphish"],"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-26T10:19:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"escaladainterna.s3.us-east-005.backblazeb2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"escaladainterna.s3.us-east-005.backblazeb2.com","ip":{"addr":"149.137.137.254","port":443,"asn":40401,"as":"BACKBLAZE","country":"United States","country_code":"US"},"domain_registered":"2016-07-13","domain_rank":0,"first_seen":"2026-04-21T10:19:16.27721Z","last_seen":"2026-04-21T10:19:16.27721Z","alert_count":1,"request_count":1,"received_data":455,"sent_data":527,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"escaladainterna.s3.us-east-005.backblazeb2.com/aumento.html","fqdn":"escaladainterna.s3.us-east-005.backblazeb2.com","domain":"backblazeb2.com","tld":"com"},"ip":{"addr":"149.137.137.254","port":443,"asn":40401,"as":"BACKBLAZE","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-21T10:18:53.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"backblazeb2.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 17:03:13 GMT","end":"Wed, 15 Jul 2026 17:03:12 GMT"},"fingerprint":{"sha1":"55:19:C0:81:41:F5:11:EF:CC:26:ED:72:86:FB:F2:1F:75:74:B4:E6","sha256":"08:26:97:71:22:30:81:AB:A6:91:3F:2B:4D:1A:B6:16:F4:2B:4E:17:4C:16:4A:BF:B7:5D:13:C6:F7:B4:36:57"}}},"request":{"raw":"GET /aumento.html HTTP/1.1\r\nHost: escaladainterna.s3.us-east-005.backblazeb2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 \r\nServer: nginx\r\nDate: Tue, 21 Apr 2026 10:18:53 GMT\r\nContent-Type: application/xml\r\nContent-Length: 148\r\nConnection: keep-alive\r\nx-amz-request-id: ac22f1d21e2c8dd5\r\nx-amz-id-2: ada1uzmtfbhFviHceboo=\r\nCache-Control: max-age=0, no-cache, no-store\r\nStrict-Transport-Security: max-age=63072000\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":148,"size_decoded":0,"mime_type":"application/xml","magic":"XML 1.0 document, ASCII text","md5":"e52093a194fb5eee8a06955622b52875","sha1":"b99cd413583f10fd1d743c868378d6966bd251fe","sha256":"5d49cdd1377360b025b1448d2178c95e3df889a949b0d7ed1e275bd9821321ef","sha512":"eaf57ca548130931d288fa40e9d147222f10084a1208ada91013cdca409e81edfc7e6c852b610aafdaffae05a2cec493673b2561bcdfe318e1d6617d4dfbd1bf","ssdeep":"","tlshash":"14c08c00f2d8e81914100934722caa00b3005973029222a4b59806830fc2442089e222","first_seen":"2023-05-06T08:55:39Z","last_seen":"2026-04-21T10:19:17.180888Z","times_seen":479,"resource_available":true,"data":null}},"time_used":571,"timings":{"blocked":221,"dns":23,"connect":96,"send":0,"wait":127,"receive":0,"ssl":100},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"escaladainterna.s3.us-east-005.backblazeb2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}