{"report_id":"92060030-a721-40df-90e8-46a630539bbd","version":6,"status":"done","tags":[],"date":"2026-03-24T01:41:35Z","url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":0,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"title":"BANKOMAT.CC bankomat.su bankomat shop , original domain","dom":{"size":16914,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (7192)","md5":"2d8dee25f43da7704bf5ef2940398118","sha1":"098c0d892e9cb8b0b69777caaf43494099f07e73","sha256":"0be15ebc9f13923ebf4b92403f8158965e8820fda7dd45667606620dd1b9f751","sha512":"5735bba33ef6f32474f123fdd7c7423ce9fd64b54358db27d48f810e60a5b6ce09faac8747b3706505ee025c46cb5849eb498586f3239222d4cf9781c9313e92","ssdeep":"384:q8KcsL0va7iXnSMfmtJhfFBFUFoFBFUFJcB9qNklATc7NRkNo4rwcB3LEAVA:qZL0va7iXTfm/hfFBFUFoFBFUFK9qNk3","tlshash":"c9725be538aa2c2d02554468a3b3fd8ced70621b65014c68bcee257b6fd4794e853bac","dom_hash":"domhash41db43cab57441b75e2db966375ddaed","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":0,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-28T01:41:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"www.http-bankomat.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.http-bankomat.cc","ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"domain_registered":"2022-04-13","domain_rank":0,"first_seen":"2026-03-24T00:01:38.42391Z","last_seen":"2026-03-24T00:01:38.42391Z","alert_count":16,"request_count":4,"received_data":34227,"sent_data":1853,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:5.6.40","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-03-22T22:23:33.61086Z","alert_count":0,"request_count":3,"received_data":1300418,"sent_data":1357,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"50dd71f784af3d8afe76d87ef78f2cb2","sha1":"a47047aab01bc663d5dd3399ebf1acc2d95b5aa3","sha256":"3afd9468a119a347560f0d04c4d8d70aa5f64bad4357cdbb471c7d9b1d70b494","sha512":"f2ecfb51841d8ed8b79e67357f6928f162c8887f6d1d85e45c915d4461bac52e6f2bb089d973ccf808d26b0a173d21f86c47ba7345fd271cca709998c4e4fbce","ssdeep":"","tlshash":"18f00e942cd840248373002937bbd148b4396a292c0afd14f94c88812f9dea808bb94c","size":514,"data":"","first_seen":"2025-12-22T02:34:40.49232Z","last_seen":"2026-03-24T01:41:38.827944Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"d1e8fc063ca9a212e85fb8f6e6e41c79","sha1":"e813099b898a39ca65638b0bbabc4d1e492de6a1","sha256":"4a141704b1db9751c002826a241532425f9235238a873ecb85c02fba89cdb3d9","sha512":"aa75f2e7719fa847df75b7287649cb732f62881d6297e5350fef588573a4ac26f558b7a80c3fdc353eca16778f654662073ae5773e539036fb179bf43ed1493d","ssdeep":"","tlshash":"9bc02bcc210e1c7046fb27008b3ff604b403333494e46d31480963084d30f07d7c4914","size":153,"data":"","first_seen":"2025-12-22T02:34:40.494553Z","last_seen":"2026-03-24T01:41:38.829905Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"b0b3a20d73966fc3bdc03869b0c05a86","sha1":"f1b56b5c6a4b514578309d274c4101d0ae4e2dcd","sha256":"e2f0a86a595a6d02499862fdfe2973be0c2db5acb85066fc5a9c3bc913c580cb","sha512":"b31a0b35e34f4f4e577ce604b228f1d95c94ec168fa3260a924bbc1b379bef7f4a64137666798031fd8ce04c0831d7f0c01f4fe8acc0b8a8c16ffdfc62d90971","ssdeep":"","tlshash":"b8c09b9825474c7195e71b415b2ff705b4562314d5a15c33091563455921d1be754854","size":144,"data":"","first_seen":"2024-10-11T08:31:31.881765Z","last_seen":"2026-03-24T01:41:38.831539Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"272de3a2f91760697e1e1a28748fce79","sha1":"ce2119e46c8f733fcab0648e2e76acdda0aa1ae7","sha256":"e4e5bee74bd77df523529569e719da11660d104f2f8b3939f7bed693d6f12260","sha512":"9bcb88513049e80eb85fb0d08008127c343fb35be4ff925df173c27b1501a30470fc224a843845e4f1d65052bae131cc47bfcd5f9229be70ddd53b41eef38d61","ssdeep":"","tlshash":"2e21ce047be0988567e6367bba6f70d4e4a40ad206c1748d80119db22ae537ad7f6e30","size":1436,"data":"","first_seen":"2024-09-19T21:10:55.692366Z","last_seen":"2026-03-24T01:41:38.844948Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-BZ5C2QVDT3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4ec46a2f4dfc3e4f2940c5e3ee6e3c6c","sha1":"a0370b6c341f2544ed00749c81bb4f7a5a8ec92b","sha256":"3e30364566d717341a06124a64b5d61496e47c53719cc4c1f31c406bfdc4d981","sha512":"41b96a915ca435dc144c8d0943d4722847fd203990da4e10d43feef6fc092b4204af171f6d4480848a621664677ac16d974dbfdac81e6684877e8c372bfc6346","ssdeep":"6144:rhG6hIFyKh+23cw3KH4V8qCxkur5nwPPAgH8tiBM4QuAXZqO4UF:Rayg3cH28WoH4ri","tlshash":"f0a409ceb3d674225396f478903f018ba57b28a2b45cc899f189cce42e7465a4277f7c","size":466337,"data":"","first_seen":"2026-03-24T00:01:40.407034Z","last_seen":"2026-03-24T01:41:38.824243Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:A1VdZYqhPnjpWx4/eTe8qSMbqaQd6VL2Jyt9LdJoyayCVPVD5wdBfQPfCHiUr3:AXdZYqNjpU4yPqSMbqaQGL2QfdDayCZC","tlshash":"a6a1dc9939fb50210233b1bd1bafa918b23895236208dd61b98c9364bf94437d7f1fc9","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-06-07T08:18:38.899011Z","times_seen":919823,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-EVRN7K2VXG\u0026cx=c\u0026gtm=4e63k1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"549a2b191225803cdfc62d6f1822f387","sha1":"8760d71ecaeba88e783df1cfd3d07251546798d7","sha256":"4cdd8d6462f5b2d6acd99ab1782a2add08a338e9656369bf78c9d8f4044ddfd9","sha512":"60ccd517c29ff31aba293e07e48ffec23bac51e5ebe1e6202eaf2428baf2320f9f558fca9ef65301e02276b98283441bb2009c38234c6c46e88df7b5ef147fb7","ssdeep":"6144:TNG6hIFyKh+23cwxKH4V8qC+kur5nwPPAuF8t+B+uA7VsWvOVm/:Fayg3uH2852bgW","tlshash":"72a4f8ceb3d670265396f478903f01cbe97b29a2b45cc89af189cce02d7465a4167f78","size":479328,"data":"","first_seen":"2026-03-24T00:01:40.402272Z","last_seen":"2026-03-24T01:41:38.822801Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"c0a4084170c57fa79000381374be3355","sha1":"a541e93c44cb6d31c0b39a96104d80075d599b79","sha256":"aaf55c27b289a4190dce174c047080d282a276142295c39bd2dd6bba483f30ce","sha512":"d4d6d9cf4c28955a68e311d341efc601472629304062a3dd22d3f31cb5073d4cb2d6ff0ebf7b68fa33e3881475ad8d6fca5dc760e72a70be74f8fbee5dbaa9d0","ssdeep":"","tlshash":"f5d0e7f236a74972892f31ff7d11c19439600044861370a0d62dc73400e5e10083cfdd","size":291,"data":"","first_seen":"2024-09-19T21:10:55.693627Z","last_seen":"2026-03-24T01:41:38.846941Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-211456185-1\u0026cx=c\u0026gtm=4e63k1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f3441624c767ecef9326fb00be74de0c","sha1":"5bbe3683638e7fa8a5bd7ebc297777e889af9078","sha256":"b9c4b6046681af75b90eca0f56cac20e3965a371f05568c11599495d80162c5d","sha512":"b326bff80929af6cb796e5da19e62813a8c7d7772364760519878707eac78ed3008a56ee2102e44df79d511115b2be6be242061da03931e9fc4f32556180c49e","ssdeep":"6144:gG6hIFz+2RcwgV8qCibur5nwPPAMH8tEBwuPHj+4/m:CazRg8WoGfe","tlshash":"4674f7cdb3da70265393a478503f018be27a6892f84cc899f186d8d43e7469a4277f7d","size":352935,"data":"","first_seen":"2026-03-24T00:01:40.406274Z","last_seen":"2026-03-24T01:41:38.824881Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/sandbox%20eval%20code","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"34c08ca3e74026ae2a1166b2b810e003a2866b015aa78402b00a003b1441fe21aaa1a8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-06-07T08:18:38.896325Z","times_seen":921522,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"www.http-bankomat.cc/favicon.ico","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.http-bankomat.cc/","date":"2026-03-24T01:41:13.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"http-bankomat.cc","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:39:00 GMT","end":"Tue, 26 May 2026 23:38:59 GMT"},"fingerprint":{"sha1":"53:40:97:8F:12:43:5E:3B:35:87:A3:ED:20:FF:0C:03:D9:F5:B7:E8","sha256":"35:EA:20:32:AD:7E:5E:8A:17:4D:12:BE:87:75:9C:47:3E:75:65:BA:76:B0:7D:83:61:6A:1F:13:BF:F6:FC:4F"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.http-bankomat.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.http-bankomat.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Tue, 24 Mar 2026 01:41:13 GMT\r\nServer: Apache/2\r\nContent-Length: 315\r\nKeep-Alive: timeout=2, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":315,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"a34ac19f4afae63adc5d2f7bc970c07f","sha1":"a82190fc530c265aa40a045c21770d967f4767b8","sha256":"d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3","sha512":"42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765","ssdeep":"","tlshash":"b0e0e75f41473347402252907dc110d1d505236b797161fd3d85b4ab501dc3dc99f7dc","first_seen":"2023-03-07T01:02:33Z","last_seen":"2026-06-17T08:41:57.157777Z","times_seen":145928,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"www.http-bankomat.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-EVRN7K2VXG\u0026cx=c\u0026gtm=4e63k1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.http-bankomat.cc/","date":"2026-03-24T01:41:14.361Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:19:52 GMT","end":"Mon, 18 May 2026 18:19:51 GMT"},"fingerprint":{"sha1":"82:91:12:6B:AB:F4:47:8F:61:18:A5:AF:A2:98:9D:B7:9F:15:F9:08","sha256":"C1:E9:29:DD:F3:D3:23:4D:03:E4:0E:2B:90:5B:69:F3:7F:A9:48:3B:18:70:6B:75:A1:77:F0:A0:90:D2:64:49"}}},"request":{"raw":"GET /gtag/js?id=G-EVRN7K2VXG\u0026cx=c\u0026gtm=4e63k1 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.http-bankomat.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 24 Mar 2026 01:41:14 GMT\r\nexpires: Tue, 24 Mar 2026 01:41:14 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 158379\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":479328,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"549a2b191225803cdfc62d6f1822f387","sha1":"8760d71ecaeba88e783df1cfd3d07251546798d7","sha256":"4cdd8d6462f5b2d6acd99ab1782a2add08a338e9656369bf78c9d8f4044ddfd9","sha512":"60ccd517c29ff31aba293e07e48ffec23bac51e5ebe1e6202eaf2428baf2320f9f558fca9ef65301e02276b98283441bb2009c38234c6c46e88df7b5ef147fb7","ssdeep":"6144:TNG6hIFyKh+23cwxKH4V8qC+kur5nwPPAuF8t+B+uA7VsWvOVm/:Fayg3uH2852bgW","tlshash":"72a4f8ceb3d670265396f478903f01cbe97b29a2b45cc89af189cce02d7465a4167f78","first_seen":"2026-03-24T00:01:40.402272Z","last_seen":"2026-03-24T01:41:38.822801Z","times_seen":2,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":40,"receive":62,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-24T01:41:12.723Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"http-bankomat.cc","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:39:00 GMT","end":"Tue, 26 May 2026 23:38:59 GMT"},"fingerprint":{"sha1":"53:40:97:8F:12:43:5E:3B:35:87:A3:ED:20:FF:0C:03:D9:F5:B7:E8","sha256":"35:EA:20:32:AD:7E:5E:8A:17:4D:12:BE:87:75:9C:47:3E:75:65:BA:76:B0:7D:83:61:6A:1F:13:BF:F6:FC:4F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.http-bankomat.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 01:41:12 GMT\r\nServer: Apache/2\r\nX-Powered-By: PHP/5.6.40\r\nLast-Modified: Thu, 08 Feb 2024 18:01:58 GMT\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\nContent-Length: 8605\r\nKeep-Alive: timeout=2, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:5.6.40","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":16491,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (7193)","md5":"749cd41590f6279d0278357836c62d53","sha1":"8b00ebae9b6eedf5e01357bdadc0fb39643d4bcf","sha256":"31e6da35adc4e6da6a19528d01ed7f410f3795bafeb05ee9849405ff760b6774","sha512":"88ab68771971d9226d9397ef4bac491b6f9e284a4e00d1fb2e805d613552427b8edae5cfa28302ef0a5409694489f2fb6c86d169cb99c95c35a8f849eeb1e764","ssdeep":"384:m1KcBLVvv7iXnSMfmtphfFBFUFoFBFUFlcB9rvNklATc7NRkNo4r3cB3LEAVO:mhLVvv7iXTfmnhfFBFUFoFBFUFO9rNks","tlshash":"05726bf438ab2c2d02554068a3b3fd8ced70621b65050d68bcee257b5fd4794e863bac","first_seen":"2025-12-22T02:34:40.480975Z","last_seen":"2026-03-24T01:41:38.823449Z","times_seen":4,"resource_available":true,"data":null}},"time_used":864,"timings":{"blocked":162,"dns":64,"connect":30,"send":0,"wait":534,"receive":1,"ssl":70},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"www.http-bankomat.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-BZ5C2QVDT3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.http-bankomat.cc/","date":"2026-03-24T01:41:13.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:19:52 GMT","end":"Mon, 18 May 2026 18:19:51 GMT"},"fingerprint":{"sha1":"82:91:12:6B:AB:F4:47:8F:61:18:A5:AF:A2:98:9D:B7:9F:15:F9:08","sha256":"C1:E9:29:DD:F3:D3:23:4D:03:E4:0E:2B:90:5B:69:F3:7F:A9:48:3B:18:70:6B:75:A1:77:F0:A0:90:D2:64:49"}}},"request":{"raw":"GET /gtag/js?id=G-BZ5C2QVDT3 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.http-bankomat.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 24 Mar 2026 01:41:13 GMT\r\nexpires: Tue, 24 Mar 2026 01:41:13 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 154717\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":466337,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"4ec46a2f4dfc3e4f2940c5e3ee6e3c6c","sha1":"a0370b6c341f2544ed00749c81bb4f7a5a8ec92b","sha256":"3e30364566d717341a06124a64b5d61496e47c53719cc4c1f31c406bfdc4d981","sha512":"41b96a915ca435dc144c8d0943d4722847fd203990da4e10d43feef6fc092b4204af171f6d4480848a621664677ac16d974dbfdac81e6684877e8c372bfc6346","ssdeep":"6144:rhG6hIFyKh+23cw3KH4V8qCxkur5nwPPAgH8tiBM4QuAXZqO4UF:Rayg3cH28WoH4ri","tlshash":"f0a409ceb3d674225396f478903f018ba57b28a2b45cc899f189cce42e7465a4277f7c","first_seen":"2026-03-24T00:01:40.407034Z","last_seen":"2026-03-24T01:41:38.824243Z","times_seen":2,"resource_available":true,"data":null}},"time_used":524,"timings":{"blocked":177,"dns":0,"connect":31,"send":0,"wait":71,"receive":93,"ssl":149},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-211456185-1\u0026cx=c\u0026gtm=4e63k1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.http-bankomat.cc/","date":"2026-03-24T01:41:14.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:19:52 GMT","end":"Mon, 18 May 2026 18:19:51 GMT"},"fingerprint":{"sha1":"82:91:12:6B:AB:F4:47:8F:61:18:A5:AF:A2:98:9D:B7:9F:15:F9:08","sha256":"C1:E9:29:DD:F3:D3:23:4D:03:E4:0E:2B:90:5B:69:F3:7F:A9:48:3B:18:70:6B:75:A1:77:F0:A0:90:D2:64:49"}}},"request":{"raw":"GET /gtag/js?id=UA-211456185-1\u0026cx=c\u0026gtm=4e63k1 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.http-bankomat.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 24 Mar 2026 01:41:14 GMT\r\nexpires: Tue, 24 Mar 2026 01:41:14 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Tue, 24 Mar 2026 00:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 122521\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":352935,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5882)","md5":"f3441624c767ecef9326fb00be74de0c","sha1":"5bbe3683638e7fa8a5bd7ebc297777e889af9078","sha256":"b9c4b6046681af75b90eca0f56cac20e3965a371f05568c11599495d80162c5d","sha512":"b326bff80929af6cb796e5da19e62813a8c7d7772364760519878707eac78ed3008a56ee2102e44df79d511115b2be6be242061da03931e9fc4f32556180c49e","ssdeep":"6144:gG6hIFz+2RcwgV8qCibur5nwPPAMH8tEBwuPHj+4/m:CazRg8WoGfe","tlshash":"4674f7cdb3da70265393a478503f018be27a6892f84cc899f186d8d43e7469a4277f7d","first_seen":"2026-03-24T00:01:40.406274Z","last_seen":"2026-03-24T01:41:38.824881Z","times_seen":2,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":41,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/BANKOMAT.CC_files/_dsg.css","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.http-bankomat.cc/","date":"2026-03-24T01:41:13.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"http-bankomat.cc","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:39:00 GMT","end":"Tue, 26 May 2026 23:38:59 GMT"},"fingerprint":{"sha1":"53:40:97:8F:12:43:5E:3B:35:87:A3:ED:20:FF:0C:03:D9:F5:B7:E8","sha256":"35:EA:20:32:AD:7E:5E:8A:17:4D:12:BE:87:75:9C:47:3E:75:65:BA:76:B0:7D:83:61:6A:1F:13:BF:F6:FC:4F"}}},"request":{"raw":"GET /BANKOMAT.CC_files/_dsg.css HTTP/1.1\r\nHost: www.http-bankomat.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.http-bankomat.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 01:41:13 GMT\r\nServer: Apache/2\r\nLast-Modified: Tue, 10 May 2022 16:29:23 GMT\r\nETag: \"28d9-5deaad3d03ec0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\nContent-Length: 2110\r\nKeep-Alive: timeout=2, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":10457,"size_decoded":0,"mime_type":"text/css","magic":"troff or preprocessor input, ASCII text, with CRLF line terminators","md5":"63d1b2b82ea1147f8c9ae6ed3176628a","sha1":"bd2c74605cca682ce7e8d6b7c82a84ebcd35deb6","sha256":"090dbaabe8f128784d35384ee618e30dd71c59b1587cb65ba6f9e409afbf7bba","sha512":"2401358dd619c105e5f39ddb18ab2b051a974d43831e4f94ab496ee0e44f2e9c24c33015fe62c9645cff19ca2fc26bf5e41c7303016bdd1c06abe1d429d440bd","ssdeep":"96:5of5mzC8vSiZ3tiKDG+cEL5tNtC+W02to2I2d2E7M4LxPF3lT5uPRr8kxJ+it1XS:+fMz1DDG5EL1M5L1VVoPyOj1JI41oNx3","tlshash":"6222ffbca94e111a733ad7a53911eec776e6930395161378fcee3070db509ba583368c","first_seen":"2024-09-19T21:10:55.688382Z","last_seen":"2026-03-24T01:41:38.825622Z","times_seen":5,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"www.http-bankomat.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.http-bankomat.cc/BANKOMAT.CC_files/logo.svg","fqdn":"www.http-bankomat.cc","domain":"http-bankomat.cc","tld":"cc"},"ip":{"addr":"185.43.220.18","port":443,"asn":59939,"as":"WIBO Baltic UAB","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.http-bankomat.cc/","date":"2026-03-24T01:41:13.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"http-bankomat.cc","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:39:00 GMT","end":"Tue, 26 May 2026 23:38:59 GMT"},"fingerprint":{"sha1":"53:40:97:8F:12:43:5E:3B:35:87:A3:ED:20:FF:0C:03:D9:F5:B7:E8","sha256":"35:EA:20:32:AD:7E:5E:8A:17:4D:12:BE:87:75:9C:47:3E:75:65:BA:76:B0:7D:83:61:6A:1F:13:BF:F6:FC:4F"}}},"request":{"raw":"GET /BANKOMAT.CC_files/logo.svg HTTP/1.1\r\nHost: www.http-bankomat.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.http-bankomat.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 01:41:13 GMT\r\nServer: Apache/2\r\nLast-Modified: Tue, 10 May 2022 16:29:23 GMT\r\nETag: \"1687-5deaad3d03ec0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\nContent-Length: 2615\r\nKeep-Alive: timeout=2, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5767,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7f7feaf54987b514a622cf863a2f6d39","sha1":"fcac779ffddfa663567d25759540cc0a6b901ed9","sha256":"8c903e918d6a1ef0cb97a9f5a8aa405491db13bcdb3d42627f3e3c20e32fddbc","sha512":"055cc900468e46c51c2193fdc4e1f197f49013b45548bf7e71f9617615419811242be04e5cabc51694993bc8256112a42d3d4ebeec0bffeaf2109964c06bb7e3","ssdeep":"96:ye/WO5pDwo/pFAkgdjwl3cFtRbeKuY+JV/6tlEZ6D:8OXdp6kjMFnbeLUlC6D","tlshash":"14c193796328b7be52464ba4d650648135dca087f3b482ecdffb41d7ac20df750b8962","first_seen":"2024-09-19T21:10:55.69032Z","last_seen":"2026-03-24T01:41:38.82697Z","times_seen":6,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"www.http-bankomat.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"www.http-bankomat.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}