{"report_id":"aea97111-d896-43d1-b08e-b0d6e99a14b9","version":0,"status":"done","tags":[],"date":"2026-06-29T09:27:37Z","url":{"schema":"https","addr":"nocheat.co/sm/powershellscanner/","fqdn":"nocheat.co","domain":"nocheat.co","tld":"co"},"ip":{"addr":"72.56.241.175","port":0,"asn":1239,"as":"SPRINTLINK","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"nocheat.co/sm/powershellscanner/","fqdn":"nocheat.co","domain":"nocheat.co","tld":"co"},"title":"PowershellScanner | Official Site","dom":{"size":12909,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"0ebac7d0c5150709eae13ea6641b2f3a","sha1":"89aa62832ff3ac1a45d5958e2fae30609c08c766","sha256":"5dd2aff52786df3ad666f292ea73f97b118e13d52ae1c639933bf090bea17033","sha512":"081bbfd0459b85943c07326f6efe2f7ef75de7dd81730d09337e4786cda73a49707de547094b735427388ef687bb3eca4716fefc7925772c99741cd4d60507c6","ssdeep":"192:k9MKRtESSYi/+x7KRMcZ1ntACbpkp+BkiRyJK2/nvbKHTkRMj:uISQVojKYI","tlshash":"d042c82aa6b3106a7817f07a6fbb574d36a4a057c60ac6683fdc135c9fc16e4c87364c","dom_hash":"domhash42c78f2eb8c9dc24ed3c75499222e798","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"nocheat.co/sm/powershellscanner/","fqdn":"nocheat.co","domain":"nocheat.co","tld":"co"},"ip":{"addr":"72.56.241.175","port":0,"asn":1239,"as":"SPRINTLINK","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-03T09:27:37Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"nocheat.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"nocheat.co","ip":{"addr":"72.56.241.175","port":443,"asn":1239,"as":"SPRINTLINK","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-29T09:22:25.195607Z","last_seen":"2026-06-29T09:22:25.195607Z","alert_count":2,"request_count":2,"received_data":15193,"sent_data":1017,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.58","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"nocheat.co/sm/powershellscanner/","fqdn":"nocheat.co","domain":"nocheat.co","tld":"co"},"ip":{"addr":"72.56.241.175","port":443,"asn":1239,"as":"SPRINTLINK","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9362496d9b7fe8676e47ae1b6ee0da8c","sha1":"0176ed63a9f78be70e9f451902b758783369eaa0","sha256":"9b31fac80ce28cd799b0495e5936aa541ef70cac4e9dd6335d105be0e3b5e54a","sha512":"fede2a7f644ba59f36453991ebc9a0060c77e32696cc6b618f9a24acf385eb630b5f547a4055657386ee5c8b26dbfd77238e93a54733e8a8c28d3a5e60d78789","ssdeep":"","tlshash":"7601a41a33b30a349e7734bb66b782ac2421210b6881c685795d8b484f12f659473a99","size":781,"data":"","first_seen":"2026-06-29T09:27:37.417535Z","last_seen":"2026-06-29T09:27:37.417535Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"nocheat.co/sm/powershellscanner/","fqdn":"nocheat.co","domain":"nocheat.co","tld":"co"},"ip":{"addr":"72.56.241.175","port":443,"asn":1239,"as":"SPRINTLINK","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-29T09:27:13.772Z","timestamp":1782725233772,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nocheat.co","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 13:28:36 GMT","end":"Thu, 10 Sep 2026 13:28:35 GMT"},"fingerprint":{"sha1":"E6:9F:90:29:F2:A8:25:6A:DA:05:59:D7:12:5B:CD:45:E5:D5:74:85","sha256":"FB:8F:7E:32:36:90:3F:74:92:91:6C:BA:3B:6D:5A:AA:8C:98:71:19:70:2D:E4:3E:82:18:0E:A8:30:5A:7C:2A"}}},"request":{"raw":"GET /sm/powershellscanner/ HTTP/1.1\r\nHost: nocheat.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 29 Jun 2026 09:27:14 GMT\r\nServer: Apache/2.4.58 (Ubuntu)\r\nLast-Modified: Fri, 12 Jun 2026 14:44:26 GMT\r\nETag: \"33df-6540f8371a0b9-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 3857\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.58","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":13279,"size_decoded":4196,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"97c14d1e7cd7d7427a3aad5a7f273ec6","sha1":"b4f9376b785d7829df54126682ea33e4f256ed4e","sha256":"8b2a0dc165f84d5d438c4117c6a20451e25881ad6b15ae50587432c17b59487e","sha512":"bda8612e93d79f0c5fc3acaf1072a34a98bf7ca97044e5daf09a64119af7f36c3c7008538a0eb510cbe79b4d0d14b171f9fcc6061b594c37f5de6ad9819acb10","ssdeep":"192:UrZjZpTSNsgGMbPdYh2ZFCXMpohVRl9Tvp:CZJ15jTp","tlshash":"6852a429e240246a6433f26adf76570dfb9951a7c30243683adc235a6ff1568c973e8c","first_seen":"2026-06-29T09:27:37.412194Z","last_seen":"2026-06-29T09:27:37.412194Z","times_seen":1,"resource_available":true,"data":null}},"time_used":677,"timings":{"blocked":-1,"dns":161,"connect":60,"send":0,"wait":61,"receive":0,"ssl":394},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"nocheat.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nocheat.co/favicon.ico","fqdn":"nocheat.co","domain":"nocheat.co","tld":"co"},"ip":{"addr":"72.56.241.175","port":443,"asn":1239,"as":"SPRINTLINK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nocheat.co/sm/powershellscanner/","date":"2026-06-29T09:27:14.657Z","timestamp":1782725234657,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nocheat.co","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 13:28:36 GMT","end":"Thu, 10 Sep 2026 13:28:35 GMT"},"fingerprint":{"sha1":"E6:9F:90:29:F2:A8:25:6A:DA:05:59:D7:12:5B:CD:45:E5:D5:74:85","sha256":"FB:8F:7E:32:36:90:3F:74:92:91:6C:BA:3B:6D:5A:AA:8C:98:71:19:70:2D:E4:3E:82:18:0E:A8:30:5A:7C:2A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: nocheat.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://nocheat.co/sm/powershellscanner/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Mon, 29 Jun 2026 09:27:14 GMT\r\nServer: Apache/2.4.58 (Ubuntu)\r\nLast-Modified: Fri, 12 Jun 2026 14:30:56 GMT\r\nETag: \"503-6540f532d2c06\"\r\nAccept-Ranges: bytes\r\nContent-Length: 1283\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.58","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1283,"size_decoded":1575,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"1b73ac2677b8bad36398bd454562a6be","sha1":"9df4178bb4ec2458ec83de78c2dab96f36b1317a","sha256":"7e9f28c71f168436b9e213cb857077c29f057f9066ee0c6b50000916f40b901b","sha512":"c66b6f4ba79d3b481f57b835957cb1cded15facc7f9aa9bef975e5a615e554ad4a3a1a5e98911dcbb56680d742a7b8718f23ece9ba9c4f44950c714b64a2e7ed","ssdeep":"","tlshash":"8921cb08d2862146b432e2b47fb35714fbc2406ba7424a653acc322a8fb5014c3a3b8c","first_seen":"2026-06-06T18:13:52.418005Z","last_seen":"2026-06-29T09:27:37.415459Z","times_seen":3,"resource_available":true,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"nocheat.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}