{"report_id":"d1025572-e338-4b1d-a898-a4fc310bf6b3","version":6,"status":"done","tags":[],"date":"2026-03-06T12:30:42Z","url":{"schema":"http","addr":"stoll-gruippe.com","fqdn":"stoll-gruippe.com","domain":"stoll-gruippe.com","tld":"com"},"ip":{"addr":"88.80.17.227","port":0,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"final":{"url":{"schema":"https","addr":"stoll-gruippe.com/","fqdn":"stoll-gruippe.com","domain":"stoll-gruippe.com","tld":"com"},"title":"stoll-gruippe.com/","dom":{"size":51,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"4b8fc09b6ffadd663ea955cc53370a2c","sha1":"9ebf5dc231120952ef5a3ccfcd8093c16b7d8dbe","sha256":"269a101951510aabf1d1a46d08e8da4093359cf3270aedd1daa09ee4caea456d","sha512":"319116fdd7ba051c61abdad0fd3b35ab520397ed7335031c7d2779c40606e93ab223d894aea6812f78c208c4a1d6a23d513ac7ced1e03add4be6d7c30878e55f","ssdeep":"","tlshash":"249002fb9161000d5c2535c00cd526861d144654210149001580b864a57c515b80a9c5","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"stoll-gruippe.com","fqdn":"stoll-gruippe.com","domain":"stoll-gruippe.com","tld":"com"},"ip":{"addr":"88.80.17.227","port":0,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-10T12:30:42Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"stoll-gruippe.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"stoll-gruippe.com","ip":{"addr":"88.80.17.227","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":2,"received_data":667,"sent_data":927,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"stoll-gruippe.com/","fqdn":"stoll-gruippe.com","domain":"stoll-gruippe.com","tld":"com"},"ip":{"addr":"88.80.17.227","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-06T12:30:21.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stoll-gruippe.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 22:28:25 GMT","end":"Sat, 16 May 2026 22:28:24 GMT"},"fingerprint":{"sha1":"A0:7C:82:8D:E1:D5:98:0A:AB:8F:C7:54:B2:25:6A:1A:4D:CB:2C:75","sha256":"8F:F8:5C:0E:A5:12:47:9C:B9:66:05:F2:43:0C:B0:C6:49:89:98:F0:CB:8F:F9:CE:D3:3E:28:08:91:18:50:DA"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: stoll-gruippe.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 19 Dec 2025 11:01:27 GMT\r\netag: \"c-6464bffbdb6d3\"\r\naccept-ranges: bytes\r\ncontent-length: 12\r\ncontent-type: text/html\r\ndate: Fri, 06 Mar 2026 12:30:21 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html","magic":"ASCII text","md5":"f0ef7081e1539ac00ef5b761b4fb01b3","sha1":"33ab5639bfd8e7b95eb1d8d0b87781d4ffea4d5d","sha256":"1894a19c85ba153acbf743ac4e43fc004c891604b26f8c69e1e83ea2afc7c48f","sha512":"81381f1dacd4824a6c503fd07057763099c12b8309d0abcec4000c9060cbbfa67988b2ada669ab4837fcd3d4ea6e2b8db2b9da9197d5112fb369fd006da545de","ssdeep":"","tlshash":"176000030330000c0000000000300cc000000000030000000000300030f0c00300ccc0","first_seen":"2023-09-25T21:39:20Z","last_seen":"2026-06-03T10:33:18.445969Z","times_seen":16,"resource_available":true,"data":null}},"time_used":231,"timings":{"blocked":102,"dns":50,"connect":21,"send":0,"wait":27,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"stoll-gruippe.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stoll-gruippe.com/favicon.ico","fqdn":"stoll-gruippe.com","domain":"stoll-gruippe.com","tld":"com"},"ip":{"addr":"88.80.17.227","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stoll-gruippe.com/","date":"2026-03-06T12:30:21.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stoll-gruippe.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 22:28:25 GMT","end":"Sat, 16 May 2026 22:28:24 GMT"},"fingerprint":{"sha1":"A0:7C:82:8D:E1:D5:98:0A:AB:8F:C7:54:B2:25:6A:1A:4D:CB:2C:75","sha256":"8F:F8:5C:0E:A5:12:47:9C:B9:66:05:F2:43:0C:B0:C6:49:89:98:F0:CB:8F:F9:CE:D3:3E:28:08:91:18:50:DA"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: stoll-gruippe.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stoll-gruippe.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-length: 264\r\ncontent-type: text/html; charset=iso-8859-1\r\ndate: Fri, 06 Mar 2026 12:30:21 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":264,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"350a56d2e6bfb54e1d0b2e655c3d41fd","sha1":"eec26fbf1c68b4a82bca753e0def53d789323040","sha256":"5e6f1952b6c2714a8979a294ef0b78f5960bdf5018d84e630be6fe6894b9bdce","sha512":"a713052ff4b784341b60c99b2f0291f220b1a4ceb325fc00988b2f04a38000d72459715a4b5ae50c5d5e38e817b352868eabe3b2b22dfcc4969c5fed5f269a84","ssdeep":"","tlshash":"ded02b9e9043239b0811155039c111c2228813ea643985e82dc5d487525c63ecc896cd","first_seen":"2026-03-06T12:30:46.442227Z","last_seen":"2026-03-06T12:53:55.93351Z","times_seen":2,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"stoll-gruippe.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}