{"report_id":"9bd427c0-80db-402e-a067-186edd299a4c","version":6,"status":"done","tags":["dyndns"],"date":"2023-12-03T18:03:27Z","url":{"schema":"http","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/?sig7incs_","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"title":"Amazon Sign-In"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:20:15Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"m.media-amazon.com","ip":{"addr":"151.101.65.16","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2016-08-18","domain_rank":580,"first_seen":"2018-06-22 13:41:03","last_seen":"2023-12-03 14:29:20","alert_count":0,"request_count":3,"received_data":62912,"sent_data":1648,"comment":"","tags":null,"fingerprints":null},{"fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":14,"request_count":7,"received_data":339566,"sent_data":4043,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:14Z","timestamp":1701626594,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":44802,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:14.862871+0000\",\"flow_id\":1545774884334231,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":44802,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":20131,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:14.862871+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:14Z","timestamp":1701626594,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":42692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:14.863034+0000\",\"flow_id\":326772971416378,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":42692,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":11231,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:14.863034+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:14Z","timestamp":1701626594,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55513,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:14.871979+0000\",\"flow_id\":651786031615531,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":55513,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":13403,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:14.871979+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:15Z","timestamp":1701626595,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":52031,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:15.890725+0000\",\"flow_id\":2054535235475301,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":52031,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":53590,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:15.890725+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:16Z","timestamp":1701626596,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":34407,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:16.712673+0000\",\"flow_id\":1808794386751457,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":34407,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":190,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:16.712673+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:16Z","timestamp":1701626596,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":40503,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:16.714433+0000\",\"flow_id\":1875396444612289,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":40503,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":27435,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:16.714433+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:16Z","timestamp":1701626596,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":59429,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:16.715291+0000\",\"flow_id\":522198278531611,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":59429,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":51506,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:16.715291+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:16Z","timestamp":1701626596,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":54114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:16.716666+0000\",\"flow_id\":694795834290042,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":54114,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":49598,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:16.716666+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-03T18:03:19Z","timestamp":1701626599,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":56288,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain","source":"{\"timestamp\":\"2023-12-03T18:03:19.022867+0000\",\"flow_id\":167764692523347,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.201\",\"src_port\":56288,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2038994,\"rev\":1,\"signature\":\"ET INFO DYNAMIC_DNS Query to dynnamn .ru Domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_09_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_09_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":60016,\"rrname\":\"verif77amzservics-acconttrstdsasa.dynnamn.ru\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":115,\"bytes_toclient\":0,\"start\":\"2023-12-03T18:03:19.022867+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/CR51/Assets/_hayo/js/jquery-3.3.1.min.js","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d532c905d593a7f16eff99f24f27621e","sha1":"ea0f0d16f78ec4bbaf7866213a2f012d2793e14c","sha256":"97ecd42dea3bc998c5efd456bc13e2c45c700fba1c581961ca1481676bf08b42","sha512":"81d727042f98245db1a8b66cca98ab7898e8f98d774e8b3930273f66f3ece6db3b20d47598ecf88cf14f96553ab676dc3fce663bd34f299c72d71bbb82eb245a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t9fc:5kn6x2xe9NK6nC6jUV","tlshash":"98b31acd72cab06247ab70b9407f610bf2361859684d8554f169d4eafc78a4e8237f7c","size":107631,"data":"","first_seen":"2023-03-08T04:57:23Z","last_seen":"2026-05-19T21:09:45.416348Z","times_seen":395,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/CR51/Assets/_hayo/js/jquery.validate.min.js","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a55bc1a7d4b73fa8520f96ff509a33de","sha1":"c58c57e658a1408210d35b40d8a0420e05aa17be","sha256":"8adda41c71d59c83d9e7a18df25ffc17ab7c5fa9728b2656a66c48b5ae01060f","sha512":"96010cfe1ed3d9f7f3de706abde4b44e7c23d0bbeba771dc03badc7f272244b8ecb0c3a2ec87bba490b09d8a51db3952a59a851b7f4de35a90a97989791aadd8","ssdeep":"768:U4elKP3m5/1/3zrRwRfpM2gHvoOBKfGOiyOkH8DGt6ZkQQJ59/4:UXlKPE/N3HRwRfpM2zPiyOuwGYkQQ4","tlshash":"8df23f0ab7e1206a99737279dc5fca05f1b2063b5159a86d38bc90d01fb1d9881f5ff8","size":36755,"data":"","first_seen":"2023-04-16T23:53:23Z","last_seen":"2026-02-27T00:18:56.197807Z","times_seen":430,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2d2fc5cedfe5cac7f20c1e971807ce26","sha1":"6be6ca053b6794816bb622be7945ca356cfc6061","sha256":"aa3e84ed952d7e588208e032a351bb41dab308fe44bf1c8aaa63a5de5d1df69f","sha512":"05533a6028c4e6d77928507b75d1e29f76544f428f2666167f439d728ba3524f263eb9136ae571573d6d6b95f172dbbefaee24969deaf3322adf1553c53d0d97","ssdeep":"","tlshash":"cc41004879f322c450b3b13b1af7c084ae19140f850aeb41ba3ca9e92f05a66f5d168f","size":2059,"data":"","first_seen":"2023-03-10T18:53:43Z","last_seen":"2025-11-22T20:00:45.845031Z","times_seen":106,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/?sig7incs_","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-03T18:03:14.872Z","timestamp":1701626594872,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verif77amzservics-acconttrstdsasa.dynnamn.ru","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Dec 2023 18:14:08 GMT","end":"Fri, 01 Mar 2024 18:14:07 GMT"},"fingerprint":{"sha1":"D8:2A:45:34:8B:1E:25:67:4F:8C:FD:6C:7D:0B:03:59:48:03:9D:39","sha256":"FF:00:B5:38:E5:30:71:9A:6B:62:B5:62:DF:6D:21:22:97:79:3D:6F:60:03:F6:8B:6C:B1:2A:C3:6F:1E:9A:AB"}}},"request":{"raw":"GET /?sig7incs_ HTTP/1.1\r\nHost: verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 307 Temporary Redirect\r\nDate: Sun, 03 Dec 2023 18:03:09 GMT\r\nServer: Apache\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nSet-Cookie: PHPSESSID=fc1b1d7b1acdc3c4e738f5bd203fe9dd; path=/\r\nLocation: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":null,"data":{"size":20,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"gzip compressed data, from Unix\\012- data","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":1386,"timings":{"blocked":373,"dns":2,"connect":177,"send":0,"wait":640,"receive":0,"ssl":191},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-03T18:03:15.891Z","timestamp":1701626595891,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verif77amzservics-acconttrstdsasa.dynnamn.ru","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Dec 2023 18:14:08 GMT","end":"Fri, 01 Mar 2024 18:14:07 GMT"},"fingerprint":{"sha1":"D8:2A:45:34:8B:1E:25:67:4F:8C:FD:6C:7D:0B:03:59:48:03:9D:39","sha256":"FF:00:B5:38:E5:30:71:9A:6B:62:B5:62:DF:6D:21:22:97:79:3D:6F:60:03:F6:8B:6C:B1:2A:C3:6F:1E:9A:AB"}}},"request":{"raw":"GET /signin?verify=cr51_63807 HTTP/1.1\r\nHost: verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=fc1b1d7b1acdc3c4e738f5bd203fe9dd\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 03 Dec 2023 18:03:10 GMT\r\nServer: Apache\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3345,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (661), with CRLF line terminators","md5":"f67f64ad117c08c58a16b876ccde1573","sha1":"322d4087c124fdfd8935bf87725836fd11c27e00","sha256":"ded568cf8d652bf6087401c7443bfb0f4e11bfe297a7c20878a5bd0366449ad4","sha512":"2b449d483a2525bd35e33cb5656f2ba4d04a443f1e4d418298c162cd1910caa44a7cb24a02662cfcc32d63a7b4f19463a38c8514a5843e871b01b6a6e1866759","ssdeep":"96:SURSIeGavpRsh0VqyA9zsU5BmA7w40KbS4rKAit4V1AJzScWjhlgdQDoSBuxKV5E:DReNvigcsIPUJ7tcs+cWEdOhBiKngfN","tlshash":"0c722f5078c20a62627392e6a7796b4dfe80955bc7820b05f5fc07fb2ff7c01a81b649","first_seen":"2023-12-03T19:03:33Z","last_seen":"2023-12-03T19:03:33Z","times_seen":1,"resource_available":false,"data":null}},"time_used":622,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":621,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/CR51/Assets/_hayo/css/style.sign-desktop.css","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:16.728Z","timestamp":1701626596728,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verif77amzservics-acconttrstdsasa.dynnamn.ru","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Dec 2023 18:14:08 GMT","end":"Fri, 01 Mar 2024 18:14:07 GMT"},"fingerprint":{"sha1":"D8:2A:45:34:8B:1E:25:67:4F:8C:FD:6C:7D:0B:03:59:48:03:9D:39","sha256":"FF:00:B5:38:E5:30:71:9A:6B:62:B5:62:DF:6D:21:22:97:79:3D:6F:60:03:F6:8B:6C:B1:2A:C3:6F:1E:9A:AB"}}},"request":{"raw":"GET /CR51/Assets/_hayo/css/style.sign-desktop.css HTTP/1.1\r\nHost: verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807\r\nCookie: PHPSESSID=fc1b1d7b1acdc3c4e738f5bd203fe9dd\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 03 Dec 2023 18:03:11 GMT\r\nServer: Apache\r\nLast-Modified: Sun, 14 Nov 2021 12:02:18 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 36441\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36441,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (20048), with CRLF line terminators","md5":"ce03668bf4cba84e446d39b1e5430fa2","sha1":"a1e1d2f4e14d20921a9b13ed4ea14ce0c407e64f","sha256":"0c56d79edb4b4187f79ddcecd68fae587c56402c3ed737ed954b3eda3d250967","sha512":"7b834de5ab598d0c53faafe17c7b00f4c961ca768c189f9a349763fea36b17b06eae38c71761fe9c2b46f589e7cbe4f005fac766f889ee8073be16e928cf0ef3","ssdeep":"384:ODJy+48hFL/72fZBhVXOZ8WQiW+LkhRAeaLqLj/Re6MSDp9q:x8haBhO1v/LkhRAeaLqLj/Re6MGps","tlshash":"99f23a545cc2262efd23e760b1a256f0203a8641dd620f7c14aebbfc7ad6de58477872","first_seen":"2023-04-16T23:53:23Z","last_seen":"2026-01-14T22:47:25.991835Z","times_seen":227,"resource_available":false,"data":null}},"time_used":1069,"timings":{"blocked":351,"dns":0,"connect":177,"send":0,"wait":179,"receive":178,"ssl":182},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/CR51/Assets/_hayo/js/jquery.validate.min.js","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:16.731Z","timestamp":1701626596731,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verif77amzservics-acconttrstdsasa.dynnamn.ru","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Dec 2023 18:14:08 GMT","end":"Fri, 01 Mar 2024 18:14:07 GMT"},"fingerprint":{"sha1":"D8:2A:45:34:8B:1E:25:67:4F:8C:FD:6C:7D:0B:03:59:48:03:9D:39","sha256":"FF:00:B5:38:E5:30:71:9A:6B:62:B5:62:DF:6D:21:22:97:79:3D:6F:60:03:F6:8B:6C:B1:2A:C3:6F:1E:9A:AB"}}},"request":{"raw":"GET /CR51/Assets/_hayo/js/jquery.validate.min.js HTTP/1.1\r\nHost: verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807\r\nCookie: PHPSESSID=fc1b1d7b1acdc3c4e738f5bd203fe9dd\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 03 Dec 2023 18:03:11 GMT\r\nServer: Apache\r\nLast-Modified: Sun, 14 Nov 2021 12:02:18 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 36756\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36756,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (829), with CRLF line terminators","md5":"1cdeeb8eaca2a1357de0a82bd5e5526f","sha1":"f0474ee246d33979152b20bfbea49045581792f3","sha256":"1327e703fcf1311de11818f1fedcef1ec0ba4f60734962c6955fdffc408d5287","sha512":"46b7110e8c0a6d6ac5baca79402e934582fcb901e4b976b9a2fb61ae57ca6e03de1b35b2b8fbdf227a72e55d0752fe9a2213ba13d0728f4bf1a9d4d0f879896a","ssdeep":"768:UjelKP3m5/1/3zrRwRfpM2gHvoOBKfGOiyOkH8DGt6ZkQQJ59/4:UKlKPE/N3HRwRfpM2zPiyOuwGYkQQ4","tlshash":"e0f23f0ab7e1206a99737279dc5fca05f1b2063b5159a86d38bc90d01fb1d9881f5ff8","first_seen":"2023-03-08T04:57:23Z","last_seen":"2025-02-14T05:07:27.069063Z","times_seen":361,"resource_available":false,"data":null}},"time_used":1084,"timings":{"blocked":353,"dns":1,"connect":182,"send":0,"wait":182,"receive":180,"ssl":184},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/CR51/Assets/_hayo/js/jquery-3.3.1.min.js","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:16.730Z","timestamp":1701626596730,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verif77amzservics-acconttrstdsasa.dynnamn.ru","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Dec 2023 18:14:08 GMT","end":"Fri, 01 Mar 2024 18:14:07 GMT"},"fingerprint":{"sha1":"D8:2A:45:34:8B:1E:25:67:4F:8C:FD:6C:7D:0B:03:59:48:03:9D:39","sha256":"FF:00:B5:38:E5:30:71:9A:6B:62:B5:62:DF:6D:21:22:97:79:3D:6F:60:03:F6:8B:6C:B1:2A:C3:6F:1E:9A:AB"}}},"request":{"raw":"GET /CR51/Assets/_hayo/js/jquery-3.3.1.min.js HTTP/1.1\r\nHost: verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807\r\nCookie: PHPSESSID=fc1b1d7b1acdc3c4e738f5bd203fe9dd\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 03 Dec 2023 18:03:11 GMT\r\nServer: Apache\r\nLast-Modified: Sun, 14 Nov 2021 12:02:18 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 107631\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":107631,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65451)","md5":"d532c905d593a7f16eff99f24f27621e","sha1":"ea0f0d16f78ec4bbaf7866213a2f012d2793e14c","sha256":"97ecd42dea3bc998c5efd456bc13e2c45c700fba1c581961ca1481676bf08b42","sha512":"81d727042f98245db1a8b66cca98ab7898e8f98d774e8b3930273f66f3ece6db3b20d47598ecf88cf14f96553ab676dc3fce663bd34f299c72d71bbb82eb245a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t9fc:5kn6x2xe9NK6nC6jUV","tlshash":"98b31acd72cab06247ab70b9407f610bf2361859684d8554f169d4eafc78a4e8237f7c","first_seen":"2023-03-08T04:57:23Z","last_seen":"2026-05-19T21:09:45.416348Z","times_seen":395,"resource_available":true,"data":null}},"time_used":1451,"timings":{"blocked":356,"dns":0,"connect":181,"send":0,"wait":181,"receive":545,"ssl":184},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/CR51/Assets/_hayo/css/sign-dekstop.css","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:16.727Z","timestamp":1701626596727,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verif77amzservics-acconttrstdsasa.dynnamn.ru","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Dec 2023 18:14:08 GMT","end":"Fri, 01 Mar 2024 18:14:07 GMT"},"fingerprint":{"sha1":"D8:2A:45:34:8B:1E:25:67:4F:8C:FD:6C:7D:0B:03:59:48:03:9D:39","sha256":"FF:00:B5:38:E5:30:71:9A:6B:62:B5:62:DF:6D:21:22:97:79:3D:6F:60:03:F6:8B:6C:B1:2A:C3:6F:1E:9A:AB"}}},"request":{"raw":"GET /CR51/Assets/_hayo/css/sign-dekstop.css HTTP/1.1\r\nHost: verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807\r\nCookie: PHPSESSID=fc1b1d7b1acdc3c4e738f5bd203fe9dd\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 03 Dec 2023 18:03:11 GMT\r\nServer: Apache\r\nLast-Modified: Sun, 14 Nov 2021 12:02:18 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 135724\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":135724,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"145d4167f1247d5618d6a7d3df28aa7a","sha1":"1188188a940b68ee827c7babeffc279ec06f8f13","sha256":"a3987cc9ff1e96ae068bdd13278434f2d3d32e781b1e131d8e0ed2a1a8eb481b","sha512":"f60c7c03f2f0b98581dae1a182e3b6f491ce95b3474a47cad97da23bc0f985ebefb1481721bb9bc3867b21d372dc6fd5c4a7e6e7c0aef4ab2828a8c3408efe5d","ssdeep":"3072:JHqjC0oOo3pouSXmkglKEKajAQlkEXZKF4R8JA5El12ef1HO:JHqjC0oNgHO","tlshash":"c6d3d8911141132ff377c391e6c27a4c722d4682dbb72e6ca06a7aa8c6d51c7f03ba5d","first_seen":"2023-04-16T23:53:23Z","last_seen":"2025-11-22T20:00:45.83724Z","times_seen":123,"resource_available":false,"data":null}},"time_used":1954,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":179,"receive":1775,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"m.media-amazon.com/images/S/sash/pDxWAF1pBB0dzGB.woff2","fqdn":"m.media-amazon.com","domain":"media-amazon.com","tld":"com"},"ip":{"addr":"151.101.65.16","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:18.714Z","timestamp":1701626598714,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images-na.ssl-images-amazon.com","organization":""},"issuer":{"commonName":"DigiCert Global CA G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 08 Sep 2023 00:00:00 GMT","end":"Fri, 21 Jun 2024 23:59:59 GMT"},"fingerprint":{"sha1":"0A:7D:8E:50:BF:66:8B:63:B2:7A:02:D9:9D:F9:D4:43:00:40:F7:94","sha256":"6B:C5:B9:2E:38:1A:8B:1E:2F:3F:0A:7B:A9:37:FD:5E:09:C2:43:46:8F:0A:A6:D0:76:99:5A:3F:3D:1F:D4:E0"}}},"request":{"raw":"GET /images/S/sash/pDxWAF1pBB0dzGB.woff2 HTTP/1.1\r\nHost: m.media-amazon.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/font-woff2; charset=utf-8\r\nx-amz-ir-id: c8c3029d-0183-4b9a-bf1a-1c4ccdeee9a1\r\nexpires: Thu, 23 May 2041 09:24:39 GMT\r\ncache-control: max-age=630720000,public\r\ntiming-allow-origin: https://www.amazon.in, https://www.amazon.com\r\naccess-control-allow-origin: *\r\nlast-modified: Fri, 30 Oct 2020 21:19:16 GMT\r\nx-nginx-cache-status: HIT\r\naccept-ranges: bytes\r\ndate: Sun, 03 Dec 2023 18:03:13 GMT\r\nage: 40958115\r\nx-served-by: cache-dca17754-DCA, cache-iad-kcgs7200047-IAD, cache-bma1631-BMA\r\nx-cache: HIT from fastly, HIT from fastly, HIT from fastly\r\nserver-timing: provider;desc=\"fy\"\r\ncontent-length: 16616\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16616,"size_decoded":0,"mime_type":"application/font-woff2; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 16616, version 1.655\\012- data","md5":"4afcd3b79b78d33386f497877a29c518","sha1":"cc7ebaa05a2cd3b02c0929ac0475a44ab30b7efa","sha256":"cded49f94fc16dc0a14923975e159fbf4b14844593e612c1342c9e34e2f96821","sha512":"2dc9fff1d57d5529c9c7bff26fa9f3f94adc47e9cef51d782e55ecf93045200140706ab5816dfd4a0b49b8db2263320fa2f0fa31a04e12d0c91fea79b127255d","ssdeep":"384:0qJzQ61qLjMj2JfDC3uq2B/YgduJyovfw4TQRJGL7VGhX8aJl/hObP:x8LHMjGbCeqEFuBwkqJGLhGhVLsP","tlshash":"a772d03d74972759eac2ce7f720d228627d6f9888e615fe83817d00c657604e6a603ec","first_seen":"2023-04-05T14:54:42Z","last_seen":"2026-05-23T15:59:12.972841Z","times_seen":25220,"resource_available":false,"data":null}},"time_used":386,"timings":{"blocked":188,"dns":162,"connect":8,"send":0,"wait":9,"receive":1,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.media-amazon.com/images/S/sash/mPGmT0r6IeTyIee.png","fqdn":"m.media-amazon.com","domain":"media-amazon.com","tld":"com"},"ip":{"addr":"151.101.65.16","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:18.702Z","timestamp":1701626598702,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images-na.ssl-images-amazon.com","organization":""},"issuer":{"commonName":"DigiCert Global CA G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 08 Sep 2023 00:00:00 GMT","end":"Fri, 21 Jun 2024 23:59:59 GMT"},"fingerprint":{"sha1":"0A:7D:8E:50:BF:66:8B:63:B2:7A:02:D9:9D:F9:D4:43:00:40:F7:94","sha256":"6B:C5:B9:2E:38:1A:8B:1E:2F:3F:0A:7B:A9:37:FD:5E:09:C2:43:46:8F:0A:A6:D0:76:99:5A:3F:3D:1F:D4:E0"}}},"request":{"raw":"GET /images/S/sash/mPGmT0r6IeTyIee.png HTTP/1.1\r\nHost: m.media-amazon.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\nx-amz-ir-id: 60c5c3cb-0e05-45df-9336-9135292f45b8\r\ncache-control: max-age=630720000,public\r\nlast-modified: Tue, 17 Nov 2020 23:31:33 GMT\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: https://www.amazon.in, https://www.amazon.com\r\nexpires: Tue, 15 Sep 2043 08:53:47 GMT\r\nx-nginx-cache-status: HIT\r\naccept-ranges: bytes\r\ndate: Sun, 03 Dec 2023 18:03:13 GMT\r\nage: 2800697\r\nx-served-by: cache-iad-kjyo7100113-IAD, cache-bma1652-BMA\r\nx-cache: HIT from fastly, HIT from fastly\r\nserver-timing: provider;desc=\"fy\"\r\ncontent-length: 27972\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27972,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 750, 8-bit colormap, non-interlaced\\012- data","md5":"1b5a1fb097715b1604b21aba92ef6a3e","sha1":"c4a765aedd886dc04d89e7e93b6a02c59ecb7013","sha256":"437e95a363a4291060e34ba170e043274e0155821e9be374f35de3c4f13cbaa5","sha512":"0dd02cb398a22092732cfae2b141f5327360a42e931afd27aaf8eae402c8c36ef0bb5edea82eb39e66567daed1caa79b70ca4bf41d30387653563d0a78ab9b0e","ssdeep":"768:PYh3ZcLbZnL3Azzh2/99/KL6sFxvjCENS:A8397Afhgjq6yv9NS","tlshash":"56c2e1680acbd32d359f11f119d769eda8c603e289737ac287b073447916f95a3f801c","first_seen":"2023-04-30T20:12:56Z","last_seen":"2026-05-14T17:36:23.831351Z","times_seen":1749,"resource_available":false,"data":null}},"time_used":417,"timings":{"blocked":202,"dns":175,"connect":8,"send":0,"wait":9,"receive":3,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.media-amazon.com/images/S/sash/KFPk-9IF4FqAqY-.woff2","fqdn":"m.media-amazon.com","domain":"media-amazon.com","tld":"com"},"ip":{"addr":"151.101.65.16","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:18.718Z","timestamp":1701626598718,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images-na.ssl-images-amazon.com","organization":""},"issuer":{"commonName":"DigiCert Global CA G2","organization":"DigiCert Inc"},"validity":{"start":"Fri, 08 Sep 2023 00:00:00 GMT","end":"Fri, 21 Jun 2024 23:59:59 GMT"},"fingerprint":{"sha1":"0A:7D:8E:50:BF:66:8B:63:B2:7A:02:D9:9D:F9:D4:43:00:40:F7:94","sha256":"6B:C5:B9:2E:38:1A:8B:1E:2F:3F:0A:7B:A9:37:FD:5E:09:C2:43:46:8F:0A:A6:D0:76:99:5A:3F:3D:1F:D4:E0"}}},"request":{"raw":"GET /images/S/sash/KFPk-9IF4FqAqY-.woff2 HTTP/1.1\r\nHost: m.media-amazon.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/font-woff2; charset=utf-8\r\nx-amz-ir-id: 29d3a6a7-1de1-4b26-a924-6c3f60e02dbf\r\ncache-control: max-age=630720000,public\r\nlast-modified: Fri, 30 Oct 2020 21:19:26 GMT\r\naccess-control-allow-origin: *\r\nexpires: Fri, 28 Aug 2043 19:16:09 GMT\r\nx-nginx-cache-status: HIT\r\ntiming-allow-origin: https://www.amazon.se\r\naccept-ranges: bytes\r\ndate: Sun, 03 Dec 2023 18:03:13 GMT\r\nage: 7729500\r\nx-served-by: cache-iad-kcgs7200049-IAD, cache-bma1631-BMA\r\nx-cache: HIT from fastly, HIT from fastly\r\nserver-timing: provider;desc=\"fy\"\r\ncontent-length: 16460\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16460,"size_decoded":0,"mime_type":"application/font-woff2; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 16460, version 1.655\\012- data","md5":"15e17f26c664ee0518f82972282e6ff3","sha1":"46b91bda68161c14e554a779643ef4957431987b","sha256":"4065b43ba3db8da5390ba0708555889f78e86483fe0226ef79ea22d07c306b89","sha512":"54eadb53589c5386a724c8eea2603481ebb23e7062fd7bfab0eafe55c9e1344f96320259412fb0dc7a6f5b6e09b32f6907f9aaa66bca5812d45157e3771c902f","ssdeep":"192:pvO6xEw4Jj9HYfGbtieHqP0l4S7NVXfU3xqJvzJmPnC1LiTNNIb0QAZtcnlclz0n:bWzHqP7S7Na3SJmKNyElcUuMXqGN3v","tlshash":"3c72d07380e8e459df9926313a03b849fdb8a99f5bc185b78171f8afd869c0326456c4","first_seen":"2023-04-05T14:54:42Z","last_seen":"2026-05-23T15:59:13.007451Z","times_seen":24725,"resource_available":false,"data":null}},"time_used":385,"timings":{"blocked":188,"dns":158,"connect":13,"send":0,"wait":8,"receive":1,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"verif77amzservics-acconttrstdsasa.dynnamn.ru/CR51/Assets/_hayo/images/favicon.ico","fqdn":"verif77amzservics-acconttrstdsasa.dynnamn.ru","domain":"dynnamn.ru","tld":"ru"},"ip":{"addr":"162.240.160.144","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807","date":"2023-12-03T18:03:19.033Z","timestamp":1701626599033,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verif77amzservics-acconttrstdsasa.dynnamn.ru","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Dec 2023 18:14:08 GMT","end":"Fri, 01 Mar 2024 18:14:07 GMT"},"fingerprint":{"sha1":"D8:2A:45:34:8B:1E:25:67:4F:8C:FD:6C:7D:0B:03:59:48:03:9D:39","sha256":"FF:00:B5:38:E5:30:71:9A:6B:62:B5:62:DF:6D:21:22:97:79:3D:6F:60:03:F6:8B:6C:B1:2A:C3:6F:1E:9A:AB"}}},"request":{"raw":"GET /CR51/Assets/_hayo/images/favicon.ico HTTP/1.1\r\nHost: verif77amzservics-acconttrstdsasa.dynnamn.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verif77amzservics-acconttrstdsasa.dynnamn.ru/signin?verify=cr51_63807\r\nCookie: PHPSESSID=fc1b1d7b1acdc3c4e738f5bd203fe9dd\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 03 Dec 2023 18:03:13 GMT\r\nServer: Apache\r\nLast-Modified: Sun, 14 Nov 2021 12:02:18 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 17542\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: image/x-icon\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17542,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 4 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\\012- data","md5":"ca6619b86c2f6e6068b69ba3aaddb7e4","sha1":"c44a1bb9d14385334eb851fbb0afb19d961c1ee7","sha256":"17d02e2db6dbedb95dd449d06868c147ac2c3b5371497bcb9407e75336a99e09","sha512":"30f8f8618bfbcd57925411e6860a10b6ad9a60f2a6b08d35c870ea3f4cec4692596a937ff1457ceff5847d5da2b86ceba0200706625e28c56a2455e6a8c121d3","ssdeep":"192:9dLhJ6/f2dh+xQLeZ10TLwhwOHae6nmErcglsIZS3F:3jaOdhQQu0TLwaOHEr6IZ","tlshash":"ae72f191ad68c084c37ef432dd69deab66467de2b6c26c071fb53f86f23821e7901106","first_seen":"2023-04-17T01:45:41Z","last_seen":"2026-05-23T16:11:59.893355Z","times_seen":19114,"resource_available":false,"data":null}},"time_used":355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":178,"receive":177,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-03","alert":"Sinkholed","trigger":"dynnamn.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}}]}