{"report_id":"befbe4d1-379a-4f38-bc76-c2405f931e28","version":6,"status":"done","tags":[],"date":"2026-03-15T12:47:50Z","url":{"schema":"http","addr":"docomo.one","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":0,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"final":{"url":{"schema":"https","addr":"docomo.one/#/","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"title":"dアカウント - ログイン","dom":{"size":6843,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (6095), with no line terminators","md5":"d046ea6d304065737641c4b52985eaeb","sha1":"d11d38e317df06d3fddac6bd21a0e6f060022d08","sha256":"10836d9fe7f97cabbab61ef569640d36204b5846621f5e16e290aaaf38d9b600","sha512":"ba4b20524ecb8c765f58744d14799cf0624767158b8c0f12952d007f9a21385c3280d8810bc83297b4c8e3f062edfce607476f46424f04e1ad23a12291e5d762","ssdeep":"96:uAGJg3SWn+wr5Io2AOo804P0Fz6KT6varXXEPh4BYpfLLw1npuoWB53jOzD35x:aJgCa+wr5Ij/FBP04CkWEnFu3D","tlshash":"74e11124e048006f9333c9d2e459bf0558bfeb3ae72d5f2065ac49145fd6de862316be","dom_hash":"domhash0f2370dd547da2f6145612abfde061df","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"docomo.one","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":0,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-19T12:47:50Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"id.smt.docomo.ne.jp","ip":{"addr":"49.102.154.13","port":443,"asn":9605,"as":"NTT DOCOMO, INC.","country":"Japan","country_code":"JP"},"domain_registered":"1998-07-17","domain_rank":137932,"first_seen":"2017-02-17T05:59:41Z","last_seen":"2026-02-22T04:26:29.860055Z","alert_count":0,"request_count":3,"received_data":37752,"sent_data":1331,"comment":"","tags":null,"fingerprints":null},{"fqdn":"docomo.one","ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"domain_registered":"2026-03-14","domain_rank":0,"first_seen":"2026-03-15T12:47:50.993257Z","last_seen":"2026-03-15T12:47:50.993257Z","alert_count":63,"request_count":21,"received_data":579666,"sent_data":9206,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"docomo.one/js/chunk-63d362c0.837bd09c.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"81af5d4b677fa7a8b4177ecfb3c1c51e","sha1":"cefbfcc64d594a2ce5e6f2df881a12ddb7049db7","sha256":"c157348b06adaa9583c1c825980da71c1d21c311b676933e17bbf093547ad42f","sha512":"aef691ad12c5c5ab99ce45fcb4bcc7169748c932dbf8986fca4e62c14e2861e6bb7cd2262694d3af50d3cc17b8037e238467569e9a4f6d14afa92ffa88b4265f","ssdeep":"192:STw907Vphl7GSqC7wXNavST0gjBH95eAb45IfhaS5JGwUGcFA5Dkh:C7Vp/kcST0gjBdvhaZwUGh5Dkh","tlshash":"4a720a4eb2c3a27d057b60a4121f2114f1679d74c548d092ea78d8c13a60d6f973afbe","size":17037,"data":"","first_seen":"2026-03-15T12:47:55.95254Z","last_seen":"2026-03-15T23:27:46.776858Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/app.a50aa24a.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"bb8d558fa75bdcaa9c26c1e8e5ca0c4d","sha1":"b9292c9ed075dd4a95e8be2a460fde872e6e8fbf","sha256":"246b6b09157d0424732f5f8d7e31ab5f30faae2d005ee6c7def97af644924de7","sha512":"0c369506f0c3126262c0bb506cfc735c3be8bcb85907e0550a7c1ac2b88d1ab931ce66f5da5ad1f81d914408e46986f1db63820a2dace7cd61bffd0cdb218659","ssdeep":"384:21I/8t3xQ6xzN73IZ36wLwOQLw32HMdDNMYM+P6G46T+WeeFFcEc:r/8t3xQ6x94ADBLw32YN7H46T+Wzg","tlshash":"97522b6e32c3f16d066238a4159f710671b32c71696ed0d29c3ac8d97e78dce8227f99","size":14358,"data":"","first_seen":"2026-03-15T12:47:55.947955Z","last_seen":"2026-03-15T23:27:46.775667Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-vendors.3713bce2.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"c2beb1e6954fafd78c30db9e4a1e63ca","sha1":"57000edcb6ca36788f8b2a114819330bbfed0882","sha256":"64a2b6a5e73094ec95d0d6c992049484135c7ce0926774c261907943906ddbc8","sha512":"5fc04c46949f14d6802f177495b9df571b2f9f9ea146f27736873ff3d066767424c1dbbd876c331cfb8b55262d89a63ae6e2b58d77a0b0d91058ee31de812391","ssdeep":"3072:wsXJcZr1xbXLa+gC77v8W0xRt3wbhGQJBdJd6nZWCh/Z9poumvnCWBX9:e4HR9RFWClLs","tlshash":"0264e48db2c6b0a117e770e4406f160bb2376958b80e81e9fa76e4d1ac7894e5137f3d","size":322803,"data":"","first_seen":"2026-03-15T12:47:55.955817Z","last_seen":"2026-03-15T23:27:46.801288Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"docomo.one/js/chunk-46fd12ca.1dd2a0b9.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-46fd12ca.1dd2a0b9.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f52-426f\"\r\nexpires: Mon, 16 Mar 2026 00:47:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17007,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11187), with LF, NEL line terminators","md5":"cb033975503aa10baf4e3bc9e71680ab","sha1":"40c98bbd7b3935032ae88e1b719809d2d7bd27a9","sha256":"8259cc0a1d5b46e514c47a57f865567bd54eee0a7713ef443db34b30a85b63a7","sha512":"6f1e9852cfc1f19cf8e87b3fea2baea4b7d87302d8b85a14902f1dac1b63d0e5ed9590476c0be5cb9163ac58281394484f36f2ead8a2a9705378edaf2497ff9b","ssdeep":"384:yzw2ibMOn6UOa6eWao3GDrUrT0XOeFeYyyEATsiSzw+J/SMG:72ibMOnTxIacIU3g2yPTazNG","tlshash":"8372e88971c3b26d4562b1e5262f500c73377d38ac885093ea78d4c67a76c4fa312fae","first_seen":"2026-03-15T12:47:55.930524Z","last_seen":"2026-03-15T23:27:46.802292Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"id.smt.docomo.ne.jp/img/banner06.jpg","fqdn":"id.smt.docomo.ne.jp","domain":"docomo.ne.jp","tld":"ne.jp"},"ip":{"addr":"49.102.154.13","port":443,"asn":9605,"as":"NTT DOCOMO, INC.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:29.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"id.smt.docomo.ne.jp","organization":"NTT DOCOMO.INC"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Tue, 14 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B4:72:53:56:20:84:D2:CB:FA:E1:D1:BA:36:6B:59:C3:4D:7E:75:56","sha256":"E4:D2:E9:4F:35:69:73:94:92:CE:5F:BB:5D:B7:9B:A6:F1:59:8C:97:44:7A:70:04:A7:D3:55:83:E1:16:E0:9B"}}},"request":{"raw":"GET /img/banner06.jpg HTTP/1.1\r\nHost: id.smt.docomo.ne.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Wed, 24 Mar 2021 05:41:29 GMT\r\nDate: Sun, 15 Mar 2026 12:47:31 GMT\r\nContent-Length: 31292\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":31292,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x160, components 3","md5":"4ed8fa92effccae0832b40fd260bde95","sha1":"717a41936fafe06edb4b3e6481813a11b4b11e62","sha256":"687b4426ef7e1103232a8fbd32cae8a85a512b021596718b9e7f1a732239773d","sha512":"fd5312f99142cbb81293ed80a67d396c052a8c2311047bfd8b6908d29063227b7a0110c97b543934afb6bf0d19b8d1899f0401fff5e0e5ef1dadf153663551c4","ssdeep":"768:E/uxGkeflkKECk3ETVwmrTqcyezdbw/RiAnfSo1BSSSq:E/ux87TVw4T3zdbwpiNkSSSq","tlshash":"bde2d067e49ccb1a08e951906c16ec9811cb5fe8d16731c446a26cc3bf7dc99ecde41e","first_seen":"2023-05-02T04:21:08Z","last_seen":"2026-03-15T23:27:46.76196Z","times_seen":19,"resource_available":false,"data":null}},"time_used":3974,"timings":{"blocked":1265,"dns":282,"connect":287,"send":0,"wait":302,"receive":1141,"ssl":694},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-63d362c0.59e7a957.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-63d362c0.59e7a957.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:19:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f54-1e8c\"\r\nexpires: Mon, 16 Mar 2026 00:47:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7820,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (7798), with no line terminators","md5":"c7f3f0c38e7784930d9695d5a2b95a44","sha1":"0bedfed39b546033cd98d02c7681b189e78cb691","sha256":"936f63a8135ae5169dc041e77bebc034787fc9979797ee8336075983fcd28355","sha512":"01ca549b057e938d980ec9ed1a3348355843b1058cb593df04e1894d1c08daab2538736744aa7c92c950bbb1b4874db2cde7cade2b9d4c62fa5ee0fc06ce4071","ssdeep":"192:o0r0hLLQZQ1fnN23VY7Ao2IBJa79VKVa12k8ajNKNdD+VcAbnK51:abj","tlshash":"e0f1451aa64c1a11b37fcaca3d692fdc54e40e32a3468fdde9639d115fab01b3d2121c","first_seen":"2026-03-15T12:47:55.933189Z","last_seen":"2026-03-15T23:27:46.764267Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-7bc6d960.2e93f6d4.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-7bc6d960.2e93f6d4.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f53-9e3\"\r\nexpires: Mon, 16 Mar 2026 00:47:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2531,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2419), with no line terminators","md5":"8a60f065a69aeb04d1098a21538a3d53","sha1":"c77125c7026b459aa5df088cf140d12cba687dd1","sha256":"146c0afb809b8bef6acd2118a6cb040bf2214902b24bf2b7fc74ae5895c7c6a0","sha512":"4452bf8c145fb862dc413a6c012a995559b20680c19e2ae6a9dff591df0955b9429bac5677435a907de6d3f458d2b98a3aae15bf3c907592f5a1f3b7df20ca65","ssdeep":"","tlshash":"9351208a3163d65a307661f9160b321c62fec261afc844a1df70d0763ea8a5f5334adf","first_seen":"2026-03-15T12:47:55.934331Z","last_seen":"2026-03-15T23:27:46.771906Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-569a9193.0e433876.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-569a9193.0e433876.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:32 GMT\r\ncontent-type: text/css\r\ncontent-length: 0\r\nlast-modified: Sun, 15 Mar 2026 06:19:00 GMT\r\netag: \"69b64f54-0\"\r\nexpires: Mon, 16 Mar 2026 00:47:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/css","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T16:33:36.180633Z","times_seen":16390792,"resource_available":true,"data":null}},"time_used":258,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/app.838138c7.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:28.433Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/app.838138c7.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:28 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:18:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f53-c83\"\r\nexpires: Mon, 16 Mar 2026 00:47:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3203,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3203), with no line terminators","md5":"7687c463b1f8cc9c776343f6e03f35df","sha1":"fce5f21e8fc5c2eaf13daf360f5f30eb20729f1e","sha256":"782112da20601428b7ed4cb61ff051d49526067bd04cee773168336d239992ba","sha512":"0f471442b5f5f074b1c3ce8d2b78d325268ad607b31fb320daa43bd5b17687a04da982e07ea59a8e76245aa0ced34d3ebb28451abb768d7669f53dc5cec09d31","ssdeep":"","tlshash":"f6616887f1d90a02f1478e742190bf7c593b0861879b9f29745b73b88bca6eb0b5270c","first_seen":"2026-03-15T12:47:55.943618Z","last_seen":"2026-03-15T23:27:46.774498Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-vendors.0bca1de4.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:28.434Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-vendors.0bca1de4.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:28 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:19:01 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f55-144bb\"\r\nexpires: Mon, 16 Mar 2026 00:47:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":83131,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"c1dc50faac8fb79ae865135e9912ef1a","sha1":"334c7f8eca3ce7acc9ff6954dcb51540d716838c","sha256":"4bcbfa7ffa5c9b76565920e85eccfe8a8bf1fac214c457fe607adc797d5d39f5","sha512":"3e3f4a22a01e07c3e884a5c793dd5dd4b43e3bdb7dec62289987ec772eca86bc15c14b3caf7a09c7b3e5379705d3aee2259841fb80035d0967573344517413f3","ssdeep":"1536:PZQbFNJ+jqkiHcurx3WqyrtpqoSWEDZgY1zmh7t:PWrxmNH9yDfSpt","tlshash":"c08319bb89c012dc732bcd518fc4a6d8c158e562d9810ee9f10b661d8fdbb861196f3e","first_seen":"2026-03-15T12:47:55.946483Z","last_seen":"2026-03-15T23:27:46.780488Z","times_seen":3,"resource_available":false,"data":null}},"time_used":519,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":519,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/app.a50aa24a.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:28.435Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/app.a50aa24a.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f52-3816\"\r\nexpires: Mon, 16 Mar 2026 00:47:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14358,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (13850), with no line terminators","md5":"bb8d558fa75bdcaa9c26c1e8e5ca0c4d","sha1":"b9292c9ed075dd4a95e8be2a460fde872e6e8fbf","sha256":"246b6b09157d0424732f5f8d7e31ab5f30faae2d005ee6c7def97af644924de7","sha512":"0c369506f0c3126262c0bb506cfc735c3be8bcb85907e0550a7c1ac2b88d1ab931ce66f5da5ad1f81d914408e46986f1db63820a2dace7cd61bffd0cdb218659","ssdeep":"384:21I/8t3xQ6xzN73IZ36wLwOQLw32HMdDNMYM+P6G46T+WeeFFcEc:r/8t3xQ6x94ADBLw32YN7H46T+Wzg","tlshash":"97522b6e32c3f16d066238a4159f710671b32c71696ed0d29c3ac8d97e78dce8227f99","first_seen":"2026-03-15T12:47:55.947955Z","last_seen":"2026-03-15T23:27:46.775667Z","times_seen":3,"resource_available":true,"data":null}},"time_used":777,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":777,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-b44b6f38.5e9bd70b.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.618Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-b44b6f38.5e9bd70b.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:19:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f54-24f7\"\r\nexpires: Mon, 16 Mar 2026 00:47:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9463,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (9441), with no line terminators","md5":"cca2be223f8108dbe44e55c023e76a84","sha1":"08c4a636eeb7e1ad1a78ff8d2fd27d40a8012ed3","sha256":"07e44a8b82c5b01a205f42ae105642c4d7f23ab05df271418c99e9a79d7ab19e","sha512":"3d4e7549a0c6949a97987d8d99cdaa5cfd2ec8926ebfefb5bc6b0a55f77d0d9cc535e41174e3050dbe6ae0c345fee2d91dfc8cf3c7fbc341127089c4ca6a87b6","ssdeep":"192:LMiiU640nn0zBYbmGkT6uhg50UIxev5LQE3JV0Vmo5qevyN0NricGlAFns97:DYnl","tlshash":"5a12fd2fe4405e14b17bc88dbe58afcc84b01e23a8868999d56fa504e96f09b3d3125f","first_seen":"2026-03-15T12:47:55.949424Z","last_seen":"2026-03-15T23:27:46.7703Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-569a9193.2e07e91b.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-569a9193.2e07e91b.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f52-447\"\r\nexpires: Mon, 16 Mar 2026 00:47:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1095,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (783), with no line terminators","md5":"d4a01211615614c9de88f550ed7c0cf8","sha1":"72b66e91c675fd2ecaed40c7d3995e2c894e3138","sha256":"6a477fe0744b884748b637b57e981dd749e93c510caff247a78e266ec9aa078b","sha512":"869c78ae53b7218d584a1ca40d3bc66c2f7d72ac3c54f5a3b98491ef9b3bfd5a4a22bf697f06fac70a0f25d180d25df1f6b8d5a804da502f60a9c869a73309eb","ssdeep":"","tlshash":"ab11667de1c5f46d25a273a1454f7298a192cdc8e4026d735a3cc894993070ec019b9b","first_seen":"2026-03-15T12:47:55.951Z","last_seen":"2026-03-15T23:27:46.797471Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-63d362c0.837bd09c.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-63d362c0.837bd09c.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f52-428d\"\r\nexpires: Mon, 16 Mar 2026 00:47:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17037,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11056)","md5":"81af5d4b677fa7a8b4177ecfb3c1c51e","sha1":"cefbfcc64d594a2ce5e6f2df881a12ddb7049db7","sha256":"c157348b06adaa9583c1c825980da71c1d21c311b676933e17bbf093547ad42f","sha512":"aef691ad12c5c5ab99ce45fcb4bcc7169748c932dbf8986fca4e62c14e2861e6bb7cd2262694d3af50d3cc17b8037e238467569e9a4f6d14afa92ffa88b4265f","ssdeep":"192:STw907Vphl7GSqC7wXNavST0gjBH95eAb45IfhaS5JGwUGcFA5Dkh:C7Vp/kcST0gjBdvhaZwUGh5Dkh","tlshash":"4a720a4eb2c3a27d057b60a4121f2114f1679d74c548d092ea78d8c13a60d6f973afbe","first_seen":"2026-03-15T12:47:55.95254Z","last_seen":"2026-03-15T23:27:46.776858Z","times_seen":3,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-7092c2a4.8387f5f3.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.916Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-7092c2a4.8387f5f3.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f52-4755\"\r\nexpires: Mon, 16 Mar 2026 00:47:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18261,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11926)","md5":"efe2e5249e74d6b31ab350930dc9c8d8","sha1":"f9e00aa0cbdadda79ee726d9ad8e224cc3787ee8","sha256":"aea5b6619753abfab63988d488170846e1ad7049de8ed9b05bf2fd52317f6e39","sha512":"8ce0c1faf7027701f13d0eaec3b32576b6598b943e736ef5720a6e094d2bf55071ee78d0350e37c25ad722bfc5d1663f92b1141e833271c2832c44bbb209ac6a","ssdeep":"384:+x4t88Vprk2j9oAd5NaOIMtJKcFgxbP5Yk2:++t88VDo1OZtJKcexbyk2","tlshash":"1682f74db6c3a179157b60a4670f3224b1275e34c445d482ea3cc8d23aa1e6f972aebd","first_seen":"2026-03-15T12:47:55.954196Z","last_seen":"2026-03-15T23:27:46.798459Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-vendors.3713bce2.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:28.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-vendors.3713bce2.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f53-4ecf3\"\r\nexpires: Mon, 16 Mar 2026 00:47:28 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":322803,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (39379)","md5":"c2beb1e6954fafd78c30db9e4a1e63ca","sha1":"57000edcb6ca36788f8b2a114819330bbfed0882","sha256":"64a2b6a5e73094ec95d0d6c992049484135c7ce0926774c261907943906ddbc8","sha512":"5fc04c46949f14d6802f177495b9df571b2f9f9ea146f27736873ff3d066767424c1dbbd876c331cfb8b55262d89a63ae6e2b58d77a0b0d91058ee31de812391","ssdeep":"3072:wsXJcZr1xbXLa+gC77v8W0xRt3wbhGQJBdJd6nZWCh/Z9poumvnCWBX9:e4HR9RFWClLs","tlshash":"0264e48db2c6b0a117e770e4406f160bb2376958b80e81e9fa76e4d1ac7894e5137f3d","first_seen":"2026-03-15T12:47:55.955817Z","last_seen":"2026-03-15T23:27:46.801288Z","times_seen":3,"resource_available":true,"data":null}},"time_used":777,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":777,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-63d362c0.837bd09c.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:29.584Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-63d362c0.837bd09c.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f52-428d\"\r\nexpires: Mon, 16 Mar 2026 00:47:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17037,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11056)","md5":"81af5d4b677fa7a8b4177ecfb3c1c51e","sha1":"cefbfcc64d594a2ce5e6f2df881a12ddb7049db7","sha256":"c157348b06adaa9583c1c825980da71c1d21c311b676933e17bbf093547ad42f","sha512":"aef691ad12c5c5ab99ce45fcb4bcc7169748c932dbf8986fca4e62c14e2861e6bb7cd2262694d3af50d3cc17b8037e238467569e9a4f6d14afa92ffa88b4265f","ssdeep":"192:STw907Vphl7GSqC7wXNavST0gjBH95eAb45IfhaS5JGwUGcFA5Dkh:C7Vp/kcST0gjBdvhaZwUGh5Dkh","tlshash":"4a720a4eb2c3a27d057b60a4121f2114f1679d74c548d092ea78d8c13a60d6f973afbe","first_seen":"2026-03-15T12:47:55.95254Z","last_seen":"2026-03-15T23:27:46.776858Z","times_seen":3,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/favicon.ico","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:29.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:29 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 15 Mar 2026 06:18:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f51-622\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1570,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1552), with no line terminators","md5":"ce13e732e580733356a0015a529c2a8e","sha1":"8cde1e1618d322494f2ceb8df9c10812334b8e8f","sha256":"6811c2b9b2785c79397e2d2edee8757ba11447d929e534dfab5b9a49e508694b","sha512":"1afe962a1535bea88e2c9ee20d07581cc6a440d075cb4b6d9bf6180f0b44b1969cf6352a71c5ad3ec239d3fc4cf48b2a373f0fe46979a976465fbe6d1b985385","ssdeep":"","tlshash":"2c31e674d44455ae6a34af7beb90f75980db8f2d5c30a8708aa94f2dd428fc44762443","first_seen":"2026-03-15T12:47:55.957723Z","last_seen":"2026-03-15T23:27:46.77808Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-7092c2a4.a2ebdd63.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-7092c2a4.a2ebdd63.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:19:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f54-1e64\"\r\nexpires: Mon, 16 Mar 2026 00:47:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7780,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (7758), with no line terminators","md5":"853917e63f3bf0b80c039e51cb656776","sha1":"e71c593c90116ff25c9d5d98e026d0d1bb61ba63","sha256":"ab071087766d9dfcd96d69c37a96c0cb31ee4b381babc0ccaac04970ad4262bc","sha512":"44e72873cdeb6fc5fdbaf9f81b371109d5f9295d2f5325231e11704fb108e8a0c9aa8067ee2d5e45ed46f4bcca172564fbc621aecded6e6657ee60167d7face8","ssdeep":"192:c0LDojbOqYpGG/cLIo4/q74u2U3UURHVcVyQNQTpNonBAFna1H:A0eyB","tlshash":"52f1bd266e1d2e10657f9a593d562ead40f84f13c1c28adcd563e700ce9b12b3e4eb6c","first_seen":"2026-03-15T12:47:55.95909Z","last_seen":"2026-03-15T23:27:46.765716Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-f1536500.47f7c664.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-f1536500.47f7c664.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:19:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f54-20b2\"\r\nexpires: Mon, 16 Mar 2026 00:47:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8370,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (8348), with no line terminators","md5":"01f26ce51c0cb333dbfe3419da31f954","sha1":"a93708823653bed208fde594df7705f3475e9f41","sha256":"911785fe2423468a8d93cc43e7dd893d290a2e53539df5e69439838743ea7cdb","sha512":"608689ad2f8c50997e5a8a5012731a91acfa3baf44b8f6525f2c8b302cd70dbe392e999eae8fbf505c54419d66b72c2b6537abeeba2aefce03d4ba077518ea5e","ssdeep":"192:J0bF1irXb9XyMzfZ0DgT2f25WYrrYuV5V5LfrHouN5Nah9X/ALnpvt:Tew1","tlshash":"ef02001768151e51e5bfcac9fd442f8da1e84e1222838becc9b7c5046e9b41f3c7622e","first_seen":"2026-03-15T12:47:55.970107Z","last_seen":"2026-03-15T23:27:46.76898Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-b44b6f38.707e283e.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.918Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-b44b6f38.707e283e.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f53-3110\"\r\nexpires: Mon, 16 Mar 2026 00:47:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12560,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (9072)","md5":"0b73c2a0db2e0a3df52d607ca3db3df9","sha1":"2f881a8160a55e2bb6fe9094702f940c6c003be6","sha256":"a4baa132f16eaac2c30aa35edc0a1573a32419ebf6287f6098d19dc7bc5a2377","sha512":"8b9a422193accd03799948271a359dd513595363d092b93899b7f30618dbb9bd28e53e5e92cea168d143c8a57fb4f8e7fa3703220df22b9e5ad6cb8c05f15b74","ssdeep":"192:mubsXMIRjovVNhoYHzAD7DYD7eFPWLaW2tAcmnwG:mwIRO20zAD7kD7JnAI5","tlshash":"0742b69fb5c3f16d462ba0a5001f1154f0272e65e41a8892dd3cd9c1ad30dbd872ae7e","first_seen":"2026-03-15T12:47:55.972095Z","last_seen":"2026-03-15T23:27:46.799426Z","times_seen":3,"resource_available":false,"data":null}},"time_used":508,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/js/chunk-f1536500.f3fde42f.js","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:33.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /js/chunk-f1536500.f3fde42f.js HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 06:18:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f53-407a\"\r\nexpires: Mon, 16 Mar 2026 00:47:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16506,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10530)","md5":"430212ad7b6eb8407191f20bf81612ab","sha1":"bfc05bcb40c85c6fa0a8fb977365c0f6e478212d","sha256":"a8ed5e1ccbd2d6f1cc208d355a57a101cbe1791f564be33ec0aa69373b9c5aae","sha512":"0d77ec6e47a9db3ee270a94d13d3abd802cd0a7028cb0fc3c8f5fbf94fc248b505535fab9b945ff2adaf9fea644e0f34b4f41a67eeeb9909a8ad78aa38084944","ssdeep":"192:PCl4SiVeEV+EcjVphKDL1wXrvSYrFHkqcGI5wALxigo0Yut8I65MwZL:al49x+EcjVphS2FTKKGHRtb65MwZL","tlshash":"6c72f94e72c3a17d507aa0b1520f2228a1279d74c545d192ea38d8c17ab0daf972af7e","first_seen":"2026-03-15T12:47:55.974204Z","last_seen":"2026-03-15T23:27:46.800346Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-15T12:47:27.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:28 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 15 Mar 2026 06:18:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f51-622\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1570,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1552), with no line terminators","md5":"ce13e732e580733356a0015a529c2a8e","sha1":"8cde1e1618d322494f2ceb8df9c10812334b8e8f","sha256":"6811c2b9b2785c79397e2d2edee8757ba11447d929e534dfab5b9a49e508694b","sha512":"1afe962a1535bea88e2c9ee20d07581cc6a440d075cb4b6d9bf6180f0b44b1969cf6352a71c5ad3ec239d3fc4cf48b2a373f0fe46979a976465fbe6d1b985385","ssdeep":"","tlshash":"2c31e674d44455ae6a34af7beb90f75980db8f2d5c30a8708aa94f2dd428fc44762443","first_seen":"2026-03-15T12:47:55.957723Z","last_seen":"2026-03-15T23:27:46.77808Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1438,"timings":{"blocked":590,"dns":62,"connect":259,"send":0,"wait":258,"receive":0,"ssl":266},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-63d362c0.59e7a957.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:29.581Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-63d362c0.59e7a957.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:29 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:19:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f54-1e8c\"\r\nexpires: Mon, 16 Mar 2026 00:47:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7820,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (7798), with no line terminators","md5":"c7f3f0c38e7784930d9695d5a2b95a44","sha1":"0bedfed39b546033cd98d02c7681b189e78cb691","sha256":"936f63a8135ae5169dc041e77bebc034787fc9979797ee8336075983fcd28355","sha512":"01ca549b057e938d980ec9ed1a3348355843b1058cb593df04e1894d1c08daab2538736744aa7c92c950bbb1b4874db2cde7cade2b9d4c62fa5ee0fc06ce4071","ssdeep":"192:o0r0hLLQZQ1fnN23VY7Ao2IBJa79VKVa12k8ajNKNdD+VcAbnK51:abj","tlshash":"e0f1451aa64c1a11b37fcaca3d692fdc54e40e32a3468fdde9639d115fab01b3d2121c","first_seen":"2026-03-15T12:47:55.933189Z","last_seen":"2026-03-15T23:27:46.764267Z","times_seen":3,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"id.smt.docomo.ne.jp/img/logo_header.png","fqdn":"id.smt.docomo.ne.jp","domain":"docomo.ne.jp","tld":"ne.jp"},"ip":{"addr":"49.102.154.13","port":443,"asn":9605,"as":"NTT DOCOMO, INC.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:29.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"id.smt.docomo.ne.jp","organization":"NTT DOCOMO.INC"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Tue, 14 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B4:72:53:56:20:84:D2:CB:FA:E1:D1:BA:36:6B:59:C3:4D:7E:75:56","sha256":"E4:D2:E9:4F:35:69:73:94:92:CE:5F:BB:5D:B7:9B:A6:F1:59:8C:97:44:7A:70:04:A7:D3:55:83:E1:16:E0:9B"}}},"request":{"raw":"GET /img/logo_header.png HTTP/1.1\r\nHost: id.smt.docomo.ne.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Thu, 12 Oct 2017 09:43:02 GMT\r\nDate: Sun, 15 Mar 2026 12:47:31 GMT\r\nContent-Length: 2120\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2120,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 156 x 33, 8-bit/color RGB, non-interlaced","md5":"15b668f14ee0f6e9d818c15a1796d5bf","sha1":"6252d566e146b784a46fe4e6e32554fd5387d56b","sha256":"350f4d5bef39bf376d051c55cde14d8def0435a34f1cf5f3a5355fe0bc2cb356","sha512":"a754cbc69d6e1b72f2b88f147cb8e3e312658e519feda702e8207cf119a5995e075a0ae43daa5669b3b05cbafb970f82ac01201ae21f6b392fe78a0cdbd5795f","ssdeep":"","tlshash":"4241f88375af78a1bf3a86510755644cee325908694827f849ebfd1d23e3da388c612b","first_seen":"2023-05-02T04:21:08Z","last_seen":"2026-03-15T23:27:46.779199Z","times_seen":26,"resource_available":false,"data":null}},"time_used":2510,"timings":{"blocked":1112,"dns":288,"connect":268,"send":0,"wait":281,"receive":4,"ssl":554},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"id.smt.docomo.ne.jp/img/footer_copyright.png","fqdn":"id.smt.docomo.ne.jp","domain":"docomo.ne.jp","tld":"ne.jp"},"ip":{"addr":"49.102.154.13","port":443,"asn":9605,"as":"NTT DOCOMO, INC.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:29.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"id.smt.docomo.ne.jp","organization":"NTT DOCOMO.INC"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Tue, 14 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B4:72:53:56:20:84:D2:CB:FA:E1:D1:BA:36:6B:59:C3:4D:7E:75:56","sha256":"E4:D2:E9:4F:35:69:73:94:92:CE:5F:BB:5D:B7:9B:A6:F1:59:8C:97:44:7A:70:04:A7:D3:55:83:E1:16:E0:9B"}}},"request":{"raw":"GET /img/footer_copyright.png HTTP/1.1\r\nHost: id.smt.docomo.ne.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nLast-Modified: Tue, 24 Jun 2025 06:16:26 GMT\r\nDate: Sun, 15 Mar 2026 12:47:31 GMT\r\nContent-Length: 3891\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3891,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 525 x 21, 8-bit/color RGBA, non-interlaced","md5":"bd260892bd617f3b9b2c671295c952d0","sha1":"4a4311fcc460a5a8328624a9de9e7b1dc73dec12","sha256":"8c5750d55fe840d871ef661df99c95858d8d22e5c3cb1f38313019dfcaac5553","sha512":"fb04277eec1dfc7d7e3201bde64c327be20c467a11025307525693a63f67935d6c40e37405ae0d9fc7786ba50294a592f328aa099c02cca6485a5b553dd59bfb","ssdeep":"","tlshash":"93817cae021046a2d6e0f125bdc43ba49d0aa0960c3bbf7c23c7697d15725571e8469a","first_seen":"2025-12-05T15:18:34.795543Z","last_seen":"2026-03-15T23:27:46.781611Z","times_seen":4,"resource_available":false,"data":null}},"time_used":3002,"timings":{"blocked":1352,"dns":281,"connect":283,"send":0,"wait":295,"receive":1,"ssl":787},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"docomo.one/css/chunk-46fd12ca.30766ca0.css","fqdn":"docomo.one","domain":"docomo.one","tld":"one"},"ip":{"addr":"8.216.16.218","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://docomo.one/","date":"2026-03-15T12:47:32.613Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"docomo.one","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 15 Mar 2026 05:00:00 GMT","end":"Sat, 13 Jun 2026 04:59:59 GMT"},"fingerprint":{"sha1":"18:C8:96:3A:5A:A3:6E:A4:7B:53:70:88:E7:2B:69:08:21:9A:95:EE","sha256":"0C:B6:BD:E7:1E:A1:62:81:DF:8D:7A:B9:15:F4:DA:C2:AF:4B:4D:06:8D:3E:AA:41:3F:F2:32:65:27:5E:8D:70"}}},"request":{"raw":"GET /css/chunk-46fd12ca.30766ca0.css HTTP/1.1\r\nHost: docomo.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://docomo.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 15 Mar 2026 12:47:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 15 Mar 2026 06:19:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b64f54-9bb\"\r\nexpires: Mon, 16 Mar 2026 00:47:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2491,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2491), with no line terminators","md5":"00087e99d70b7eca3836c769842d8f94","sha1":"0e4c0320140ea7b060ae10880c35ee727b153694","sha256":"090e8fd3508a1067bc278de9a923d2d37d89d676d6448f495e3215c6ede43503","sha512":"d7627ac984a2b84f378eddad2e225549e3a4cbe1d8302547fe21a975356a271c23e0d7f2287b260d9424a81beb8a1b8425cc38916c0913817e88b10d753c8f91","ssdeep":"","tlshash":"1b51d1ecfc1c080a7d73d2a15fe2634852197ee2b08d4a59799738617d772e63d61188","first_seen":"2026-03-15T12:47:55.981047Z","last_seen":"2026-03-15T23:27:46.796269Z","times_seen":3,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-15","alert":"Sinkholed","trigger":"docomo.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}