{"report_id":"943993e9-d32b-4eff-9273-018f971c57d0","version":6,"status":"done","tags":[],"date":"2025-12-21T20:59:42Z","url":{"schema":"http","addr":"vistalandgroup.com/pl/n5/6t/ibPhWdEs.zip","fqdn":"vistalandgroup.com","domain":"vistalandgroup.com","tld":"com"},"ip":{"addr":"64.120.92.54","port":0,"asn":59253,"as":"LEASEWEB SINGAPORE PTE. LTD.","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing","dom":{"size":4657,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"68744c237305efbcc529630639a41a4e","sha1":"67a04a133a92f0f08272e702165ac6666db0911f","sha256":"eaf7416b63d0a12774d655348e38a229eae601124ee077f5558a5caa0c369a3d","sha512":"ad0f27f46f426f17365d9e1256562a177c3239bc035f77a34c5748459ee67fda5319b28fdf95777c79ad19a0e4048e61a3ee1a686267ccc9fffba90dc2cda9ad","ssdeep":"96:AMDFs1Bx1U3b61j1XB7gx10UFZV2WOzCBTjl22D+i8kDNLerlS:n561FpEmULV2jUjM2D+z0sJS","tlshash":"00a143a944f0663b189392a5e9c1bf57af816607cb8d69807baf40f31fc7d54886f10d","dom_hash":"domhash0f75e96bbe12b34f36b59d8eab215780","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"vistalandgroup.com/pl/n5/6t/ibPhWdEs.zip","fqdn":"vistalandgroup.com","domain":"vistalandgroup.com","tld":"com"},"ip":{"addr":"64.120.92.54","port":0,"asn":59253,"as":"LEASEWEB SINGAPORE PTE. LTD.","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-25T20:59:42Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"tq2tmylv9quqkoe"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"vistalandgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"vistalandgroup.com","ip":{"addr":"64.120.92.54","port":443,"asn":59253,"as":"LEASEWEB SINGAPORE PTE. LTD.","country":"Singapore","country_code":"SG"},"domain_registered":"2013-06-14","domain_rank":5821015,"first_seen":"2017-10-12T05:03:04Z","last_seen":"2025-07-15T06:45:12.855999Z","alert_count":1,"request_count":1,"received_data":129583,"sent_data":508,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Yoast SEO:22.6","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"WP Job Openings:3.5.4","description":"WP Job Openings is a job listing and recruitment plugin for WordPress websites.","website":"https://wpjobopenings.com","common_platform_enumeration":"","icon":"WP Job Openings.svg","categories":["WordPress plugins","Recruitment \u0026 staffing"]},{"name":"Contact Form 7:5.9.8","description":"Contact Form 7 is an WordPress plugin which can manage multiple contact forms. The form supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering.","website":"https://contactform7.com","common_platform_enumeration":"","icon":"Contact Form 7.png","categories":["WordPress plugins","Form builders"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Draftpress HFCM","description":"Header Footer Code Manager by Draftpress is a easy interface to add snippets to the header or footer or above or below the content of your page.","website":"https://draftpress.com/products/header-footer-code-manager-pro/","common_platform_enumeration":"","icon":"Draftpress.png","categories":["WordPress plugins"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Site Kit:1.110.0","description":"Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.","website":"https://sitekit.withgoogle.com/","common_platform_enumeration":"","icon":"Google.svg","categories":["Analytics","WordPress plugins"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"vistalandgroup.com/pl/n5/6t/ibPhWdEs.zip","fqdn":"vistalandgroup.com","domain":"vistalandgroup.com","tld":"com"},"ip":{"addr":"64.120.92.54","port":443,"asn":59253,"as":"LEASEWEB SINGAPORE PTE. LTD.","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-21T20:59:20.209Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webdisk.vistalandgroup.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Nov 2025 23:43:40 GMT","end":"Thu, 05 Feb 2026 23:43:39 GMT"},"fingerprint":{"sha1":"A9:BC:FB:2A:57:D1:85:50:5C:F8:02:48:33:77:61:27:9B:61:D2:C2","sha256":"4D:36:CF:05:30:E3:66:33:DB:43:5D:DA:D4:DF:2B:25:A5:6A:3D:FA:05:3E:71:90:2F:03:69:5F:3E:59:9D:3B"}}},"request":{"raw":"GET /pl/n5/6t/ibPhWdEs.zip HTTP/1.1\r\nHost: vistalandgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nx-powered-by: PHP/7.4.33\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: no-cache, must-revalidate, max-age=0\r\ncontent-type: text/html; charset=UTF-8\r\nlink: \u003chttps://vistalandgroup.com/wp-json/\u003e; rel=\"https://api.w.org/\"\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ndate: Sun, 21 Dec 2025 20:59:40 GMT\r\nserver: LiteSpeed\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Yoast SEO:22.6","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"WP Job Openings:3.5.4","description":"WP Job Openings is a job listing and recruitment plugin for WordPress websites.","website":"https://wpjobopenings.com","common_platform_enumeration":"","icon":"WP Job Openings.svg","categories":["WordPress plugins","Recruitment \u0026 staffing"]},{"name":"Contact Form 7:5.9.8","description":"Contact Form 7 is an WordPress plugin which can manage multiple contact forms. The form supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering.","website":"https://contactform7.com","common_platform_enumeration":"","icon":"Contact Form 7.png","categories":["WordPress plugins","Form builders"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Draftpress HFCM","description":"Header Footer Code Manager by Draftpress is a easy interface to add snippets to the header or footer or above or below the content of your page.","website":"https://draftpress.com/products/header-footer-code-manager-pro/","common_platform_enumeration":"","icon":"Draftpress.png","categories":["WordPress plugins"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Site Kit:1.110.0","description":"Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.","website":"https://sitekit.withgoogle.com/","common_platform_enumeration":"","icon":"Google.svg","categories":["Analytics","WordPress plugins"]}],"data":{"size":128913,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (24398), with CRLF, LF line terminators","md5":"8445ddb53074d2122dabd8b61e1da0a3","sha1":"052a1b7f53bfc334a4b89cdc8770a0ffc71299f6","sha256":"a9cf0d67d7dd96706cdddfc3185dee3cfa4003809b7d2124c7f5f6f605588f35","sha512":"c76fba83bcccbc3370d2e72226c571d0aaa3c3fc7ae23ddb6a6d9b7b433264c1ce1d591f2a39014f0e23010ee9a2d13b3db11bf1a17a6291ddf284d82e5680f6","ssdeep":"3072:Chp5Cg1Y52zW6BN1AS+IfGYSSMmMPEiwJvCsudVdAtPHVPnxFhbhrZ/zo55DCg/c:qYg1w2C6BN1AS+IfGYSSMmMPEiwJvCsZ","tlshash":"35c31373b48c10246f1687ce81d5b26d994b30669e8c6caef4fb0822df55ff619218cd","first_seen":"2025-12-21T20:59:45.383578Z","last_seen":"2025-12-21T20:59:45.383578Z","times_seen":1,"resource_available":false,"data":null}},"time_used":20963,"timings":{"blocked":656,"dns":0,"connect":326,"send":0,"wait":19652,"receive":0,"ssl":328},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"vistalandgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}