{"report_id":"a450b343-8e34-4f8d-9bf1-8f6460b8ca0e","version":6,"status":"done","tags":[],"date":"2025-10-07T19:20:19Z","url":{"schema":"http","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":0,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"title":"VPN App Download"},"submit":{"url":{"schema":"http","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":0,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-11T19:20:19Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"annonumapp.com","ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"domain_registered":"2025-08-07","domain_rank":0,"first_seen":"2025-08-18T15:09:53.450468Z","last_seen":"2025-10-01T03:07:51.271599Z","alert_count":12,"request_count":3,"received_data":57701,"sent_data":1636,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ab8bb90c96435d960c4742d49bff276","sha1":"086bf4db0b79639616a66a1e0ad1356b4da99471","sha256":"e8102f3dfdc571c8fede1da8499272f7beddb928114ebad96d0d63072fdcabe9","sha512":"7766add6855965b6aedef093fe9d41b9682127631c890d43fe8ccad3caaa86211d55b9195e38699705287422ff298186a38e1f6cdd31884abc66a6ead9877578","ssdeep":"","tlshash":"44c02bca756030800073243d2d8fe1683f3b56135c080a047dfec7995f7d83a9145878","size":171,"data":"","first_seen":"2025-03-26T07:14:55.408348Z","last_seen":"2026-05-04T17:27:14.265727Z","times_seen":321,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d502c77db17270d680f421418ca0ad95","sha1":"7cbe0b46d95242992c05e29317d6810812c252cf","sha256":"c00061b15a52e33e545eae764d47c84622f3e4e8688b0efcd9efaf0729fa3eaf","sha512":"1a5b87678658531ed7b43c400e15fb02a2b3ac26894b9d8aceb9e240cea5596a3969abbef5e0e1fab624fc0f50d77320d87d546c9dee4cb2db645113679a4f57","ssdeep":"","tlshash":"8011dca928a210216787116daa7ec300f8304027b90a8c18fa6d1da29f30f4964a6f9c","size":976,"data":"","first_seen":"2025-07-19T08:49:02.543998Z","last_seen":"2026-05-04T17:27:14.267013Z","times_seen":149,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"a455c6c908d7329940981e6bb7318dc6","sha1":"b10fe3fda8f9aaf532ba96b71d598d5592cdbf76","sha256":"7237c875fea0d7b4e63158960d866c8262ebc686f704bf70df3fb07d326e2a5c","sha512":"ebf4db5c4c1b8756ded4eb56fd941d4342cbdac2f79bbbc5a568285d3d575faff84e6c4cd2f7244c0a74a1945e06541b97853de0016a8271b8a9e71845e17f92","ssdeep":"","tlshash":"5270008080020a00002aca0a0a0a00000c0020c322208aa8bc2c08000f2020082002b0","size":22,"data":"","first_seen":"2025-03-26T07:14:55.410495Z","last_seen":"2026-05-05T16:05:56.846541Z","times_seen":609,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"43aca065e8e4c91943ca93aa706aafcb","sha1":"9b5a12cd39f412b42144239c2dae08ce58c5e1e6","sha256":"1da2319e9b66da69d240196425d62a4ea296c58471f074bd38206691c39926a5","sha512":"e7266860ef209da3338a6f4d7e9ee7a9b76213ae932e60ed9f019627ccd897ed423c0bd2591d5874abe88cff3d1deb4a5d33f70129a566b7dd203edc7efc0407","ssdeep":"","tlshash":"12e07d4e046114021353997c5c8f2015943260c7ce14cc98762c86302fa033a4757fec","size":388,"data":"","first_seen":"2025-10-02T12:16:09.992792Z","last_seen":"2025-10-29T22:30:20.81794Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"12c1e9536afb9651dedec209fa64acf1","sha1":"d927e7645c2d19b487cea0a3996234f2c2b60819","sha256":"14739d11cc0c2ca46401be0c09519c8e75c86e313b24f15bb0db5437be368096","sha512":"379339df40b405556a25f15f0c004e5d5472c8af786e8d3d57c099945bf88ddf6e669197b79621b37af26f2ce9fe3f7da15278d57074d0dc92054756ecfc1572","ssdeep":"","tlshash":"22d022a6a829100537b2a8942dcf4204e8a3808f8f80db1abb1d57f25f302278b54b68","size":240,"data":"","first_seen":"2025-07-19T08:49:02.547435Z","last_seen":"2026-05-05T16:05:56.848927Z","times_seen":420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-07T19:19:54.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"annonumapp.com","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 Aug 2025 09:00:34 GMT","end":"Wed, 12 Nov 2025 09:00:33 GMT"},"fingerprint":{"sha1":"96:27:CE:3D:A4:3A:1B:F4:84:C4:8A:D2:56:9E:BB:BB:25:60:FB:CE","sha256":"13:BB:03:AC:E2:36:7D:E8:AD:03:75:E8:42:B2:B6:03:3F:23:0C:0B:47:42:91:E0:02:11:C7:93:81:2E:5D:08"}}},"request":{"raw":"GET /site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434 HTTP/1.1\r\nHost: annonumapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Tue, 07 Oct 2025 19:19:54 GMT\r\nset-cookie: uclick=kLyPwQwOOo811uDxa2CY5eS8jPGDCE3s0loIL+4oS1io+D5HQWKmuMHz4Z4ReyybkmRsqjyL; Max-Age=31536000; SameSite=Lax\nbcid=d3imfmmj30cs73ce7ng0; Max-Age=31536000; SameSite=Lax\r\nvia: 1.1 Caddy\r\nx-request-id: d766a28b-431a-4d14-ac70-e195843724b7\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5282,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"0f730e661c5b710812739892bf43bbab","sha1":"f5efcbf1070cae564b09ac3ce4d8e84b1ae684df","sha256":"350e9e635c975655bcc0c247f7b910205bf4f7a7f80648f2232d69b4c5f9465e","sha512":"c360d1b41c32980a5fa65e07ceb5e98d28fda9d093e0bee5c53fcf9fa37ab2ec5d2f270f90ff016a828877d82e216822acead3e548c1a56fd453d9062a6eddee","ssdeep":"96:CdGJd5jP3FJ5pppid9iSk0HBaTZjbzxgffyix2:Cd+//FJbid9iSk0sx2ffyix2","tlshash":"fdb1738b4ce30002b743506dafbf9315b9659003ca0acd697fac52a8df91f559ea379c","first_seen":"2025-10-02T12:16:09.987706Z","last_seen":"2025-10-29T22:30:20.809976Z","times_seen":40,"resource_available":false,"data":null}},"time_used":846,"timings":{"blocked":309,"dns":21,"connect":137,"send":0,"wait":228,"receive":0,"ssl":148},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"annonumapp.com/landers/p_ii2_int_en_all_apps/p-ii2-en/vpn_icon.png","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","date":"2025-10-07T19:19:55.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"annonumapp.com","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 Aug 2025 09:00:34 GMT","end":"Wed, 12 Nov 2025 09:00:33 GMT"},"fingerprint":{"sha1":"96:27:CE:3D:A4:3A:1B:F4:84:C4:8A:D2:56:9E:BB:BB:25:60:FB:CE","sha256":"13:BB:03:AC:E2:36:7D:E8:AD:03:75:E8:42:B2:B6:03:3F:23:0C:0B:47:42:91:E0:02:11:C7:93:81:2E:5D:08"}}},"request":{"raw":"GET /landers/p_ii2_int_en_all_apps/p-ii2-en/vpn_icon.png HTTP/1.1\r\nHost: annonumapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: uclick=kLyPwQwOOo811uDxa2CY5eS8jPGDCE3s0loIL+4oS1io+D5HQWKmuMHz4Z4ReyybkmRsqjyL; bcid=d3imfmmj30cs73ce7ng0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncache-control: max-age=31536000, public, no-transform\r\ncontent-type: image/png\r\ndate: Tue, 07 Oct 2025 19:19:55 GMT\r\netag: \"689ca5de-c8c4\"\r\nexpires: Wed, 07 Oct 2026 19:19:55 GMT\r\nlast-modified: Wed, 13 Aug 2025 14:49:02 GMT\r\nserver: nginx\r\nvia: 1.1 Caddy\r\ncontent-length: 51396\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":51396,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit colormap, non-interlaced","md5":"a155bc0dee7d49c1fa0849ce1ef24ef8","sha1":"eee473d84c7210084a5aa9753b1e10049917724e","sha256":"40882b42125567dc79f15a88a118356d70d655aefbc49f1c376e196b5470ef43","sha512":"c99532ea629437550c8bc4c15c30d9ec79d4682c55d2dae01a39379cf1dbfdb66d987ac1582009b7ba4b1b45bc7e50b0192f2c61d6c41b6abfb747b92ad87c3f","ssdeep":"1536:uDdKTEh3l5SibQitph7e/1ksDO/+c2Iy5hT4u54N9:ihrDpFe/1lrIy5RM","tlshash":"e33301bfa28cc7d9d35658f7721308d9e331b204a113229901f641ba04798e7dabb64f","first_seen":"2025-07-19T08:49:02.540212Z","last_seen":"2026-05-04T17:27:14.26258Z","times_seen":149,"resource_available":false,"data":null}},"time_used":412,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":137,"receive":275,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"annonumapp.com/favicon.ico","fqdn":"annonumapp.com","domain":"annonumapp.com","tld":"com"},"ip":{"addr":"45.137.213.125","port":443,"asn":58061,"as":"Scalaxy B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://annonumapp.com/site.php?page=b70548dd42331df6a6fd\u0026visitor_id=999507312471191553\u0026zoneid=9939434","date":"2025-10-07T19:19:55.416Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"annonumapp.com","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 Aug 2025 09:00:34 GMT","end":"Wed, 12 Nov 2025 09:00:33 GMT"},"fingerprint":{"sha1":"96:27:CE:3D:A4:3A:1B:F4:84:C4:8A:D2:56:9E:BB:BB:25:60:FB:CE","sha256":"13:BB:03:AC:E2:36:7D:E8:AD:03:75:E8:42:B2:B6:03:3F:23:0C:0B:47:42:91:E0:02:11:C7:93:81:2E:5D:08"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: annonumapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: uclick=kLyPwQwOOo811uDxa2CY5eS8jPGDCE3s0loIL+4oS1io+D5HQWKmuMHz4Z4ReyybkmRsqjyL; bcid=d3imfmmj30cs73ce7ng0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html; charset=utf-8\r\ndate: Tue, 07 Oct 2025 19:19:55 GMT\r\nserver: nginx\r\nvia: 1.1 Caddy\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-05-05T16:08:33.149088Z","times_seen":503770,"resource_available":true,"data":null}},"time_used":282,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-07","alert":"Sinkholed","trigger":"annonumapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}