{"report_id":"908f381e-f84b-4df2-b3d8-47fc7264f53e","version":6,"status":"done","tags":[],"date":"2026-03-28T03:26:25Z","url":{"schema":"https","addr":"kra-b5-cc.ru","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"ip":{"addr":"195.2.79.251","port":0,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"kra-b5-cc.ru/","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"title":"krab5.cc - новая ссылка","dom":{"size":5035,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"02fc3fb3d12ace1d69d8929f30a28667","sha1":"5d1b20563625fa045e137401d46cd20a145529fa","sha256":"0a7347b0dd5f724418ba9dc54f6a3f7b37691fb5922e8f4608a61ff30a48bab9","sha512":"5ecd2599aeb94bfed6443df7fb933a2426c9e01be18b3000ce7ccfe54c43a3e16e70fb056b1ab24e026a2b5ac1752de45941dcc44562a425c26fbdad66e5a10b","ssdeep":"96:neNnVvRhxAvexM1lJjOThfZZdyu7qFsejr:eNEXJjOBfQuuFpjr","tlshash":"daa1756745a704553502d4b42fdaaa46669c8033c10dd8987fcc26ec8fcaad485b3b8d","dom_hash":"domhash08acaefbd3b23e6100709709f214b2bb","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"kra-b5-cc.ru","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"ip":{"addr":"195.2.79.251","port":0,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-02T03:26:25Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"kra-b5-cc.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"kra-b5-cc.ru","ip":{"addr":"195.2.79.251","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"domain_registered":"2026-01-27","domain_rank":0,"first_seen":"2026-03-28T03:26:25.133981Z","last_seen":"2026-03-28T03:26:25.133981Z","alert_count":5,"request_count":5,"received_data":27931,"sent_data":2456,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"kra-b5-cc.ru/antibot_generatecaptcha?3xQD7M1Iiq","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"ip":{"addr":"195.2.79.251","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kra-b5-cc.ru/","date":"2026-03-28T03:26:04.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kra-b5-cc.ru","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 16:25:31 GMT","end":"Thu, 11 Jun 2026 16:25:30 GMT"},"fingerprint":{"sha1":"C8:D0:C6:C1:FF:42:C8:43:3B:1E:61:1C:0B:89:BB:0B:A1:5E:A7:CC","sha256":"86:23:0E:3B:0C:29:4D:EB:1D:62:14:E3:36:AB:44:27:B3:8F:91:BA:68:FB:B3:E0:6C:27:38:4F:45:32:83:67"}}},"request":{"raw":"GET /antibot_generatecaptcha?3xQD7M1Iiq HTTP/1.1\r\nHost: kra-b5-cc.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kra-b5-cc.ru/\r\nCookie: antibot=f5637b51-b0be-4517-bbb5-155bdad5e545\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 28 Mar 2026 03:26:04 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11505\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: no-store, no-cache, must-revalidate, private\r\nExpires: 0\r\nLast-Modified: Wed, 14 Jan 2026 16:48:55 GMT\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11505,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"Blender:File:C:\\Projects\\captcha\\captcha-3.blend\", comment: \"Blender:Date:2023/02/14 21:37:18\", comment: \"Blender:Time:00:00:00:00\", comment: \"Blender:Frame:000\", comment: \"Blender:Camera:Camera\", comment: \"Blender:Scene:Scene\", comment: \"Blender:RenderTime:00:00.07\", baseline, precision 8, 380x120, components 3","md5":"d839cfc328027bfee062dc233f51703c","sha1":"a9a3878af07ebb46df4f335d87adce22f62c4158","sha256":"d3c5662ae17e9ff45bf0a248b6db9e1f469e107ab4f3fcf52469c321b4c6c7d7","sha512":"5621a45c6786b2c68bd430d563dd202842dcd051785b80208138544659ce184ba4eeae4b4caba3ad8ec9d58f9b4d58c6db85518d029c4ba3a3901986d4190bbb","ssdeep":"192:GdsyDSID9G4XZuwaswat92OxKvlY3pX8sWwdocQM8Sn6I8q9NbSVnvX:1yDXJrXZVyS3c9qPWo7FqX","tlshash":"2632b055cfe353bc1e7836be0114276de28d599fd22837c5f583a0d58f3861286dc84a","first_seen":"2026-03-28T03:26:27.174822Z","last_seen":"2026-03-31T21:26:51.355072Z","times_seen":2,"resource_available":false,"data":null}},"time_used":432,"timings":{"blocked":280,"dns":0,"connect":0,"send":0,"wait":151,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"kra-b5-cc.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kra-b5-cc.ru/favicon.ico","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"ip":{"addr":"195.2.79.251","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kra-b5-cc.ru/","date":"2026-03-28T03:26:04.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kra-b5-cc.ru","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 16:25:31 GMT","end":"Thu, 11 Jun 2026 16:25:30 GMT"},"fingerprint":{"sha1":"C8:D0:C6:C1:FF:42:C8:43:3B:1E:61:1C:0B:89:BB:0B:A1:5E:A7:CC","sha256":"86:23:0E:3B:0C:29:4D:EB:1D:62:14:E3:36:AB:44:27:B3:8F:91:BA:68:FB:B3:E0:6C:27:38:4F:45:32:83:67"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: kra-b5-cc.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kra-b5-cc.ru/\r\nCookie: antibot=f5637b51-b0be-4517-bbb5-155bdad5e545\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 28 Mar 2026 03:26:04 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5230,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"09d6722694f9dfde69a8b7e90fd52269","sha1":"5c1866f2eda1582d201d0c0bf2a787050ff4187a","sha256":"ce900613fd4b26ac5b5d889772366b4a74b272a0d82e548381b42232e803faec","sha512":"d8382ad669b178702b574de3973c3f2c801161b792b215b72d585fc79ab158c8086f15c1d3ab5e42d8dbfca084f95a852ed6dfef77c4e5ac59078d3ec1a5c87f","ssdeep":"48:tf1vNeN8yrpuMz+TieMQjEeAXZaNgrwL4dRHEddn3jPaKow5KX8zXtiXttPIv4WZ:PBykvGheAQeYI+L3jPaKRPXMC4WBPP","tlshash":"59b142218546184a3132d6b46f826999fb894133c30550a87fdc33ab4ff6a54c2a3fcd","first_seen":"2026-03-28T03:26:27.176807Z","last_seen":"2026-03-28T03:26:27.176807Z","times_seen":1,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"kra-b5-cc.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kra-b5-cc.ru/","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"ip":{"addr":"195.2.79.251","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T03:26:03.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kra-b5-cc.ru","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 16:25:31 GMT","end":"Thu, 11 Jun 2026 16:25:30 GMT"},"fingerprint":{"sha1":"C8:D0:C6:C1:FF:42:C8:43:3B:1E:61:1C:0B:89:BB:0B:A1:5E:A7:CC","sha256":"86:23:0E:3B:0C:29:4D:EB:1D:62:14:E3:36:AB:44:27:B3:8F:91:BA:68:FB:B3:E0:6C:27:38:4F:45:32:83:67"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: kra-b5-cc.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 28 Mar 2026 03:26:04 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nSet-Cookie: antibot=f5637b51-b0be-4517-bbb5-155bdad5e545; Path=/; HttpOnly; Secure; SameSite=Strict\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5230,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"8589896009d843b8ab251710c5e4bfd5","sha1":"938ac81bc1911486f5cb546efaeffaf81e1f1465","sha256":"8bfb7f5e87d9df793924ddca8fa3fc8a3591da45ce94d473571d500fe4b59bbc","sha512":"48bd1c277f6d09388cf51c3c3036cedab88592cdd92b5ff9dba326e9952b6654fe44490d3d6797b8ec4e7fd6eee7071ba90a522db99f8b84977103402616beb6","ssdeep":"48:tf1vNeN8yrpuMz+TieMQjEeAXZaNgrwL4dRHEddzjPaKow5KX8zXtiXttPIv4WBX:PBykvGheAQeYI+LzjPaKRPXMC4WBPP","tlshash":"09b15321854a18453132d6b46f826999fb894133c30550a87fdc33eb4ff6a54c2a3fcd","first_seen":"2026-03-28T03:26:27.184268Z","last_seen":"2026-03-28T03:26:27.184268Z","times_seen":1,"resource_available":true,"data":null}},"time_used":682,"timings":{"blocked":249,"dns":97,"connect":50,"send":0,"wait":177,"receive":0,"ssl":104},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"kra-b5-cc.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kra-b5-cc.ru/antibot_assets/css2.css","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"ip":{"addr":"195.2.79.251","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://kra-b5-cc.ru/","date":"2026-03-28T03:26:04.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kra-b5-cc.ru","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 16:25:31 GMT","end":"Thu, 11 Jun 2026 16:25:30 GMT"},"fingerprint":{"sha1":"C8:D0:C6:C1:FF:42:C8:43:3B:1E:61:1C:0B:89:BB:0B:A1:5E:A7:CC","sha256":"86:23:0E:3B:0C:29:4D:EB:1D:62:14:E3:36:AB:44:27:B3:8F:91:BA:68:FB:B3:E0:6C:27:38:4F:45:32:83:67"}}},"request":{"raw":"GET /antibot_assets/css2.css HTTP/1.1\r\nHost: kra-b5-cc.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kra-b5-cc.ru/\r\nCookie: antibot=f5637b51-b0be-4517-bbb5-155bdad5e545\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sat, 28 Mar 2026 03:26:04 GMT\r\nContent-Type: text/plain; charset=utf-8\r\nContent-Length: 19\r\nConnection: keep-alive\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-22T06:09:25.408238Z","times_seen":14048167,"resource_available":true,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"kra-b5-cc.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kra-b5-cc.ru/antibot_assets/kraken.css","fqdn":"kra-b5-cc.ru","domain":"kra-b5-cc.ru","tld":"ru"},"ip":{"addr":"195.2.79.251","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://kra-b5-cc.ru/","date":"2026-03-28T03:26:04.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kra-b5-cc.ru","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 16:25:31 GMT","end":"Thu, 11 Jun 2026 16:25:30 GMT"},"fingerprint":{"sha1":"C8:D0:C6:C1:FF:42:C8:43:3B:1E:61:1C:0B:89:BB:0B:A1:5E:A7:CC","sha256":"86:23:0E:3B:0C:29:4D:EB:1D:62:14:E3:36:AB:44:27:B3:8F:91:BA:68:FB:B3:E0:6C:27:38:4F:45:32:83:67"}}},"request":{"raw":"GET /antibot_assets/kraken.css HTTP/1.1\r\nHost: kra-b5-cc.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kra-b5-cc.ru/\r\nCookie: antibot=f5637b51-b0be-4517-bbb5-155bdad5e545\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 28 Mar 2026 03:26:04 GMT\r\nContent-Type: text/css; charset=utf-8\r\nContent-Length: 4768\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nLast-Modified: Tue, 06 Jan 2026 17:09:55 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4768,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"75fd64fc8e99dc317f41914081a03352","sha1":"97c20a567cf31b997322b3228838ae44b1394233","sha256":"db6ad8d74f75b4ec10be88cbf8dcf0134d1f63f7126accf2b375a0833aba0028","sha512":"9b8c26c9e7b3ca6fbdd5337dbbe2a6bfa06cb476355406f010cf4ea09438a406c804f5c56577e7b68b11870ee8fedb397ffd11a72ab2036c5485175779aafc99","ssdeep":"48:W3AtE0JlzWvwIpQnStqoemMHmGmRm6iRtmQmHxa9uuuma86cPBmJz9K+N3z+0hCK:/zGwIU2jMxALy63zD2s5","tlshash":"78a1df9e16022b5083324f3463979b15b72402768e4530edb8d04ab9eb96be686d0fcf","first_seen":"2024-09-22T02:59:45Z","last_seen":"2026-04-20T13:28:53.871991Z","times_seen":203,"resource_available":false,"data":null}},"time_used":436,"timings":{"blocked":144,"dns":1,"connect":49,"send":0,"wait":137,"receive":1,"ssl":101},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"kra-b5-cc.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}