{"report_id":"9233a3ff-f3be-4659-8d90-047d8c1f864d","version":6,"status":"done","tags":[],"date":"2026-01-20T01:10:20Z","url":{"schema":"https","addr":"fdfwip.bankom.su/","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":0,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"fdfwip.bankom.su/","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"title":"BANKOMAT","dom":{"size":17468,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (7154)","md5":"503950e3a88d747ec1adcc96b0ea6065","sha1":"a86771e93712383cb3d9967936fb004039952384","sha256":"6df56e2c07d5c597f9bb57e5f2478c3e2ba6ed073e71c207f19b05ac5f2b239a","sha512":"177453fd8f4b93326d2af570f871c91d72e81c14679c30b61b301d06d89e49f5ea72d4773d33cffec78b1bc1c4d703f08e731b065034e8442442d2fa2b573d4b","ssdeep":"384:uOb9mhfFBFUFoFBFUFkcB9QNklATc7NRkNo4rdcB3LEBVpCr/DFi:uOb0hfFBFUFoFBFUF59QNklAT0NRCo4J","tlshash":"14724cb83924277d015a079893f799cc3d7cd01ff52204a8b76e34b70f64a6548e9a7c","dom_hash":"domhash2bc951922f78f7298ca32d3fcac86401","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"fdfwip.bankom.su/","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":0,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-24T01:10:20Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"fdfwip.bankom.su","ip":{"addr":"185.178.208.166","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2022-04-21","domain_rank":0,"first_seen":"2026-01-20T00:54:53.064257Z","last_seen":"2026-01-20T00:54:53.064257Z","alert_count":0,"request_count":3,"received_data":29678,"sent_data":1571,"comment":"","tags":null,"fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]},{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"fdfwip.bankom.su/","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"87ab2bd85d6475adf936adfbe167eec0","sha1":"c8f665021ba6bb1db26a34b1ab9bcf4a1d1d2233","sha256":"277393ca20d0d273a70ee99c22a77fe3947cb41832252402632521d73aae52ca","sha512":"fe2b8ce7b8cc0e9bd7c40d6525d44448585a1d9aa703a4edf8ba155c7519f7e1fc45b0d9b784dde3be470b0fc1626527d64b6585ca6563ff35e13798209e0894","ssdeep":"","tlshash":"16d023e638455c614e7537f74d6ec09c310054485a1610d1910cc57870d1f30043dfa8","size":209,"data":"","first_seen":"2023-03-26T04:17:43Z","last_seen":"2026-05-31T03:55:54.662091Z","times_seen":39,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fdfwip.bankom.su/","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"5f9eee46ecbd32c626dbae9827b12e5c","sha1":"06d946d68e737a03a2c5caf874c5e2f16cf005a5","sha256":"b0e04c78de7656ccd3421f4a8e6f7bc0402562eb8fb3c11b768a6f404ad4c7c0","sha512":"29e2d0daf49c3441f0d45767ec83948df5d3dc452d72cf682892e8b9b937316988ccab0cc77a09125692658de0450b47f3035a56739faf657be9ed7fcc2a3c15","ssdeep":"","tlshash":"9db09b4925b451fa3c1019dd5e7dd268010cd40c66d1d6b3cf10952641c20c1565386d","size":123,"data":"","first_seen":"2023-03-26T04:17:43Z","last_seen":"2026-05-31T03:55:54.663073Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fdfwip.bankom.su/","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"987d9dbe5b2c717834b54a804e4ef212","sha1":"476e19d6b385a3346267391f6fc2c4b0fd026bd1","sha256":"5e8a718d63e2cf7bd8a67fd4902bf33e936718521ccf7e9ba8541d1cb330e60c","sha512":"6a5eff0875f9b0207ceca9359265e84472bdb984a8bbbde9aabc2996ff64de47063c14666c17074af455dfc8ac8b0222c4126c7e94f294f06e37685e200a4da8","ssdeep":"","tlshash":"3b31b0587e4113da0bea5391393f86c8fc3adacb2ce714029109acc22e94565cee7e34","size":1490,"data":"","first_seen":"2026-01-20T01:10:21.309737Z","last_seen":"2026-01-20T01:10:21.309737Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fdfwip.bankom.su/css/_dsg.css","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fdfwip.bankom.su/","date":"2026-01-20T01:09:59.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fdfwip.bankom.su","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 28 Oct 2025 07:26:39 GMT","end":"Mon, 26 Jan 2026 07:26:38 GMT"},"fingerprint":{"sha1":"D1:83:5F:4B:DC:F4:18:C9:BA:AE:6F:E7:06:98:19:3E:46:9A:5F:97","sha256":"0B:F5:01:58:9C:63:CA:DA:89:5B:A1:97:D0:9C:28:70:00:DE:D6:50:5D:E7:44:36:B7:76:0D:9F:54:80:F2:04"}}},"request":{"raw":"GET /css/_dsg.css HTTP/1.1\r\nHost: fdfwip.bankom.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fdfwip.bankom.su/\r\nCookie: __ddg8_=tU7fLU29W2ygHQN3; __ddg10_=1768871398; __ddg9_=91.90.42.154; __ddg1_=nfScA5JTA9yToMJ7iDYl\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=SmeAJfsE4auFp23g; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:59 GMT\n__ddg10_=1768871399; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:59 GMT\n__ddg9_=91.90.42.154; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:59 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Tue, 20 Jan 2026 00:54:31 GMT\r\nlast-modified: Sun, 05 Mar 2023 17:46:32 GMT\r\netag: W/\"28c4-5f62ac2464e00\"\r\naccept-ranges: bytes\r\ncontent-type: text/css\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 928\r\nddg-cache-status: HIT,MISS\r\ncontent-length: 1979\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":10436,"size_decoded":0,"mime_type":"text/css","magic":"troff or preprocessor input, ASCII text, with CRLF line terminators","md5":"c908675ffedd9eb7d64a631f52355fc0","sha1":"c067263be0e941e39ec7205b6e57fe2936d39be6","sha256":"2884795005474746a8c6f96aad9f1a22ad59f855630cb8762e1b9fa0c01e3af4","sha512":"e3ab5f6f3f5d1ae29f4028aefbaa25a3898cd1cafac22164a81d705c68f146c1def5b07711eea8e974699594ddb402623d20e2a49f52f393bac86dfde84bde5c","ssdeep":"96:5of5mzC8vSiZ3tiKDG+cEL5tNtC+W02to2I2d2E7M4LxPF3lT5uPRr8kxJ+it1XM:+fMz1DDG5EL1M5L1VVoPyOj1Jt1oNx3","tlshash":"0722febca90e111a733adba53911eec776e6930395161378fcee3070db509ba583368c","first_seen":"2024-08-31T08:14:13.458907Z","last_seen":"2026-05-31T03:55:54.656468Z","times_seen":41,"resource_available":false,"data":null}},"time_used":52,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fdfwip.bankom.su/favicon.ico","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fdfwip.bankom.su/","date":"2026-01-20T01:09:59.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fdfwip.bankom.su","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 28 Oct 2025 07:26:39 GMT","end":"Mon, 26 Jan 2026 07:26:38 GMT"},"fingerprint":{"sha1":"D1:83:5F:4B:DC:F4:18:C9:BA:AE:6F:E7:06:98:19:3E:46:9A:5F:97","sha256":"0B:F5:01:58:9C:63:CA:DA:89:5B:A1:97:D0:9C:28:70:00:DE:D6:50:5D:E7:44:36:B7:76:0D:9F:54:80:F2:04"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: fdfwip.bankom.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fdfwip.bankom.su/\r\nCookie: __ddg8_=SmeAJfsE4auFp23g; __ddg10_=1768871399; __ddg9_=91.90.42.154; __ddg1_=nfScA5JTA9yToMJ7iDYl\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=bu8AF5ylgjdWOYQt; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:59 GMT\n__ddg10_=1768871399; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:59 GMT\n__ddg9_=91.90.42.154; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:59 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Tue, 20 Jan 2026 01:09:59 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":196,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"62962daa1b19bbcc2db10b7bfd531ea6","sha1":"d64bae91091eda6a7532ebec06aa70893b79e1f8","sha256":"80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880","sha512":"9002a0475fdb38541e78048709006926655c726e93e823b84e2dbf5b53fd539a5342e7266447d23db0e5528e27a19961b115b180c94f2272ff124c7e5c8304e7","ssdeep":"","tlshash":"c0d0129e9183638b442225907ac211d2654d13a6b87645e82d82a48a951857dc5ca69d","first_seen":"2023-03-07T12:06:54Z","last_seen":"2026-06-06T22:23:41.897811Z","times_seen":104052,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fdfwip.bankom.su/","fqdn":"fdfwip.bankom.su","domain":"bankom.su","tld":"su"},"ip":{"addr":"185.178.208.166","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-20T01:09:58.730Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fdfwip.bankom.su","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 28 Oct 2025 07:26:39 GMT","end":"Mon, 26 Jan 2026 07:26:38 GMT"},"fingerprint":{"sha1":"D1:83:5F:4B:DC:F4:18:C9:BA:AE:6F:E7:06:98:19:3E:46:9A:5F:97","sha256":"0B:F5:01:58:9C:63:CA:DA:89:5B:A1:97:D0:9C:28:70:00:DE:D6:50:5D:E7:44:36:B7:76:0D:9F:54:80:F2:04"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: fdfwip.bankom.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=tU7fLU29W2ygHQN3; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:58 GMT\n__ddg10_=1768871398; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:58 GMT\n__ddg9_=91.90.42.154; Domain=.bankom.su; Path=/; Expires=Tue, 20-Jan-2026 01:29:58 GMT\n__ddg1_=nfScA5JTA9yToMJ7iDYl; Domain=.bankom.su; HttpOnly; Path=/; Expires=Wed, 20-Jan-2027 01:09:58 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Tue, 20 Jan 2026 01:09:58 GMT\r\nx-powered-by: PHP/7.2.24\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":17197,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (7139)","md5":"68ec7c9cb4b83eaabd5122f8f5efed61","sha1":"a656ec7d47a1780942ed6ce4d993f76c792dfc9c","sha256":"2dbebf0b26e2633fde05f42b629c97adc4f01813779bb500f577f4bc274e89c9","sha512":"5a34df1174094356321a55f25eabb2918257cf67c1660ce49ed9ec454940127ea4687e7fd9f28926ac20ce01759b9d686dba99dcff4ea1f1f0c95bc5e1aadb9a","ssdeep":"384://szOhfFBFUFoFBFUFaBcB9JdNklATc7NRkNo4rbcB3LEGCr/Dj5://syhfFBFUFoFBFUFP9vNklAT0NRCo4X","tlshash":"5c724bb87928237d01564764a3e658cd3e7ce00bb52209f8bbbe24b70f6465584eda7c","first_seen":"2026-01-20T01:10:21.307536Z","last_seen":"2026-01-20T01:10:21.307536Z","times_seen":1,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":85,"dns":1,"connect":19,"send":0,"wait":43,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}