{"report_id":"d8e871c9-79ae-41cb-915b-33df522bbe55","version":6,"status":"done","tags":[],"date":"2026-06-02T17:52:34Z","url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung.php","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":0,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"final":{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung.php","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"title":"Bezahlung | offizieller ASFINAG-Mautshop","dom":{"size":27194,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (413)","md5":"2311fcc2e856b673273a67fde75a8283","sha1":"f3665abde0af72eccc1d6fda1853428266534bbf","sha256":"93ab20ea3e1d5d3c6167df939f1f3132b8b39d1fdb26dd02e660cd5871071d4c","sha512":"2d9a7ca4bc4b287828826cd96bdec40ff06fdc7fad7b0b47e7d22047885b27c728262f72727f71ac314a9767290903e3f40060e1c8c386fd05c1aead29c0828c","ssdeep":"384:QnYzF+0iNPLeMIivMs6NEZMA1llqoWzHQ0NDdDF:UeLi7lvMs4EZXlqdx","tlshash":"a7c2d70166f1052b956382ac5be75f182e90e103860be99fb3ec07ad8fcae51cd9375d","dom_hash":"domhash879473485edc18f7eb228a663d2fb48d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung.php","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":0,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-07T17:52:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"asfinag.at.kaufen-vignette.digital","ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-02T17:52:34.654683Z","last_seen":"2026-06-02T17:52:34.654683Z","alert_count":21,"request_count":21,"received_data":332636,"sent_data":10573,"comment":"","tags":null,"fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung.php","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"introduction_type":"scriptElement","is_inline":true,"md5":"ec713e5d6951800ead54fdbfdf22dcce","sha1":"26512f84f43cf06db4b25e3c30a308151620fa1c","sha256":"f0da06e1b1f561aaa1e19b21a7a8e4d2d1f3aee480248d204c033e0ee18a4323","sha512":"07c6dc2d452b71425aaf7144b2cba4698c4f82d6e79b140d05eded0ede83c1c93f1ebc8d192fd8e27e4a55c1a7d8c781763eb0da7fb11c766db917dbc045684d","ssdeep":"","tlshash":"b9e0721d098b483082ba208c92ffdba033a70022042aec0078c4cd1fae20e5a806b18c","size":304,"data":"","first_seen":"2026-06-02T17:52:39.090648Z","last_seen":"2026-06-02T17:52:39.090648Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung.php","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"introduction_type":"scriptElement","is_inline":true,"md5":"34d605a0c52252b8c19128e486ef88f2","sha1":"82ca816b2edd52fe1b35479e44c82f8d43918f6c","sha256":"da31eac540a00b8112faf65d5260a1daa6cf724e8edefc1769a8c00e696c9a1c","sha512":"7208e7254f0899cad64f14731e9b5307d35f8ef1f30d2c410f5c5ac8ef482615f55bd7671480df79830776dc6de74e34232c60439af2bf296f185d6a05bb6511","ssdeep":"","tlshash":"2251250a36ab08761647b13e8a628108343145bb399dc2347ebd1e453fccb24a2d27f6","size":3114,"data":"","first_seen":"2026-06-02T17:52:39.091548Z","last_seen":"2026-06-02T17:52:39.091548Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung.php","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"introduction_type":"scriptElement","is_inline":true,"md5":"87cdf9222bd1360289249447503b09f1","sha1":"b0252eece2ae6ee8c046e265f08c0e033a9ff301","sha256":"e7d36946851a98d19463f99cc35058913c856b19acf7be84201bb5b6156ee821","sha512":"18ab4c157abae15cc21a0a062f12b170d583a11176b2b20b28c4d57c907b6edfe7867e8d42dd0329f1d22ccd4fc196b2c0381cebede39d50179c424c9f2773bc","ssdeep":"","tlshash":"0b316b1bbbb62615557774f92ecf8120263a458b1542c69cbd4ca3414f88c6447f7eb8","size":1814,"data":"","first_seen":"2026-06-02T17:52:39.092443Z","last_seen":"2026-06-02T17:52:39.092443Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:23.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:23 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/asf_ios.svg","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/asf_ios.svg HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 899\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-383\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":899,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a373c0932e638f2c548d7c07ccd9b5b7","sha1":"5786f26dd80c1cea65058ff58ed97f75abb60a42","sha256":"05977d32a62c5ad6d3a9c87f48aeb799741d8ba3d2a48fedac9cc2d99566943a","sha512":"527f7aa9241fe9f61ed19b436a5ea6f5539adecaa72e97ed21fa89941a67c3d7052efc00d019154ce454a01696ca08f9c48c9d198f115f4d4405bc36df29a267","ssdeep":"","tlshash":"80116f170aa4c32dadc196185f38a18633aa8082d1c980dcfabf0cb2db202f504693b4","first_seen":"2026-02-22T14:22:25.008157Z","last_seen":"2026-06-02T17:52:39.081017Z","times_seen":4,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/asf_android.svg","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/asf_android.svg HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1430\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-596\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1430,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2c98cb0c4e29c68cab0148c01cf73774","sha1":"9b132848523ba9fdfb52fe4629c8a38f9944013d","sha256":"b27838d85177255683aa502ae8c4167f3d95f0707e9bc539931f485446b4cf17","sha512":"c0000f4c4ee007b3e4918fb542ab081ffcea9e1003df28d116d18d6563d9a7f9ed8c64e6fd6b65f648bb1f39f38c80e68c3f96d42004a2128a9689a0bca5d6c2","ssdeep":"","tlshash":"c42114239252e3392c80d738dbbea1e6b320b003e099fee879f71658721d8f5e445634","first_seen":"2026-02-22T14:22:25.002823Z","last_seen":"2026-06-02T17:52:39.082386Z","times_seen":4,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/main_files/favicon-16x16.png","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.449Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /main_files/favicon-16x16.png HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/png\r\ncontent-length: 943\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-3af\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":943,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit colormap, non-interlaced","md5":"d5ef11467c1821512b1f431fac9368a2","sha1":"30ee05e17bb7146ed490db06aa31d800f93e4374","sha256":"c1e2f51e370da047fca03327805262173e0e82ddd643c3552811d9931fe08be0","sha512":"242c4b06bdce200c3782a3c6d381886a9b7c65140a956ce453782c5b65efd5bd12c05aed389bab5bafd19ff29f7f298f811d6457a7eef9c7f6324dab4f118ae4","ssdeep":"","tlshash":"fe11b7c3d1b5da60c249b117568e1b94b4284ddf30c62cdcf22cf00d543078011fae90","first_seen":"2024-08-29T17:22:12.498112Z","last_seen":"2026-06-02T17:52:39.083302Z","times_seen":18,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:29.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:29 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/asfiang-logo.svg","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/asfiang-logo.svg HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 3946\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-f6a\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3946,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bf8b0eb943812e9d51f414ded54b57da","sha1":"f74c80df028d0fc70e0649aa2d2de6c6c7d16469","sha256":"b5cfead5cb46925407df6386886253fa603f0782ed77317e7c8f0c83c56539c6","sha512":"4a575c3a7e64272e8008917317d1de98ef80634349ec31793cf73ca2d9d5093c525d86124657e01a44175311d2c98f86efff91c6ddacef8c87ec15ea50c1c89e","ssdeep":"","tlshash":"988186dab3d891a49c0cfb985b1e74b8656b30ed73918554c7983e4d6f080ae6cd8ec0","first_seen":"2025-11-24T18:21:59.093398Z","last_seen":"2026-06-02T17:52:39.083916Z","times_seen":10,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/asf_instagram.svg","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/asf_instagram.svg HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1541\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-605\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1541,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"35e21ef07a225ed0b7f5033b91c48975","sha1":"a9c159c72ed65d221ce039775ee8bb5d0f6b25f0","sha256":"020630c91cdb9a88c3ceab48c7231decd92e3b0292e81cec1653717dcf479b87","sha512":"bc058261d623751525a7e34e2759a90911d267571ea984911c7d1dbd989477a968d94c884b2028488d947e429d6a46fb0fe811e5267ec433cd19fc5a46321905","ssdeep":"","tlshash":"a931be3703b9c32a68ecd52c2f9090c7279050c3d276c490bb6f49a0cb588f7d71d1aa","first_seen":"2026-02-22T14:22:24.972649Z","last_seen":"2026-06-02T17:52:39.084444Z","times_seen":4,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/asf_blog.svg","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/asf_blog.svg HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1863\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-747\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1863,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5b84cce80db9f74d6f8a14a5a7162558","sha1":"3662c007e33dab901c1b8489de27de699feb6386","sha256":"93f1d267f2c2e7032f242bd594e668da9447decd4fbdddffb1ab780b39f2c469","sha512":"eb8240616f2b3dbd930bba30986cdffc65cc88420329b12e878c1412e05081fad42fa85f835e406a055ff26fe72794dc604b0d7f5f7e691dd3d6190fdcf99bed","ssdeep":"","tlshash":"5c312d139380d72c8cc2c185ef7a91e15742b0cae2e6d4dcfafbc714660b9f2e498524","first_seen":"2026-02-22T14:22:25.009561Z","last_seen":"2026-06-02T17:52:39.085266Z","times_seen":4,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:19.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:19 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:21.645Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:21 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:25.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:25 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/theme-bootstrap.css","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/theme-bootstrap.css HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: text/css\r\ncontent-length: 245507\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-3bf03\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":245507,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (64777)","md5":"a21b5c50ba8043608f380e1dbf361d33","sha1":"1eb643e60edabc04d4de065e7bda30aa792fc47b","sha256":"62ae6d89126d44d9305c4dc333531f1d5242ad65c9ee041febe5804d2afabf34","sha512":"9643ed3483bf0b3d14e7447ba4945d74dc542d903bdf46d821eb56d6a1bf2c1e7b2df9fc75cf13ac5dc26fbe7bed84ba351c3ff98ddbc8741839bff424df772c","ssdeep":"3072:qCS9ufmZ1k998LBNXtqcpjy00I4jBHQZ8:qCS9ufmZ1A98t+cpjy00I4jBHQZ8","tlshash":"c73474d6f5903979aca7c1459690fefd893f6885db221a96f003772847cabd30d229cc","first_seen":"2026-06-02T17:52:39.086114Z","last_seen":"2026-06-02T17:52:39.086114Z","times_seen":1,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":79,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/asf_facebook.svg","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/asf_facebook.svg HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 649\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-289\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":649,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d5c6ab1d94317e609e67968a446ef143","sha1":"8eba765d3150736c476c3e8e169c67cebbb4ea39","sha256":"48427e769c2580fe9a00303fc656673be7c09cc5622eff698074e91cd0c3f783","sha512":"f79f2b2b46a8e0a6df1e07f289e75875740d42074ffb576a10e2c026040676274b296e8b98060f9ee14028fa98b6d8a44f1a9b95dff090cb17a033ecc67b63fb","ssdeep":"","tlshash":"72f0d35b47d1cb3974d11a642f28618373a1d053c06091e076bf1e75ab155f204663b9","first_seen":"2026-02-22T14:22:24.986672Z","last_seen":"2026-06-02T17:52:39.087208Z","times_seen":4,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung.php","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-02T17:52:12.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung.php HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27077,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (413)","md5":"37afd40d111431763ae3a7be12d32759","sha1":"a35b9ed9c50590096d4ee44aa8cb9e1a0fdb72dd","sha256":"4ec210960e83e7e5a115da65766f4fdec1c0ab014955fb189e645e20daa46671","sha512":"4cd416272fea5dbd5cdcef472d28a20d46b7f8fabe69befaf9e897311b8b9403d1c76e66a856524642537e9baf560158b1735bec0cc603390596ebd987678a27","ssdeep":"384:onJzF+vil/heMIivMs6NEZMA1llEoWzHQ0NDdDKM:8rsiFlvMs4EZXlEdN","tlshash":"22c2c60162f1052b9563c26c5be75f182e90e103860be99eb7ec0bad8fcae51cd9375d","first_seen":"2026-06-02T17:52:39.088113Z","last_seen":"2026-06-02T17:52:39.088113Z","times_seen":1,"resource_available":true,"data":null}},"time_used":432,"timings":{"blocked":190,"dns":141,"connect":24,"send":0,"wait":46,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:15.460Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:15 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:27.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:27 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/asf_youtube.svg","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/asf_youtube.svg HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 917\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-395\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":917,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d14b19afe763c2cccc9b34ed872a4c9f","sha1":"3f89d77dccc4b6254b057a221046b1939a5215fe","sha256":"dec70f741458c764f8966b257a3ad7d86a2d8510f4bbe30acca71c58e23772d3","sha512":"cfeef1677be85fb75078a146def756214a3f1f33f1c906b938cfc06059be252b678f332587a53810d1bd3a014079e5632de6fd33330f67b54668761df84809a9","ssdeep":"","tlshash":"b2117a264691c32d69c48714db30b0d273666142758271dcf3ef5ab0ea088fa01592f8","first_seen":"2026-02-22T14:22:25.015715Z","last_seen":"2026-06-02T17:52:39.088993Z","times_seen":4,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:17.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:17 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/check-redirect.php?session_id=session_ojbdcewdq","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:31.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /check-redirect.php?session_id=session_ojbdcewdq HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:31 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-powered-by: PHP/7.2.24\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.2.24","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"2cbbe033c1bdf7b9f6d20f561306a342","sha1":"ac5d59bbe700008ceb2b93b3178f4ab090560b05","sha256":"8ab81e1bbc93a06fcc7f215c9df1dcda4253b3038361355b651cf9b087967444","sha512":"c13060292fa932594e9ea821aba287a42a6beb0bcf5e21b5dd177c40516773ef68efdd107526ccbe548702deb5515bcd0dfd6720e7b9f5a977fe9ba77c691018","ssdeep":"","tlshash":"11600000c03c303300c000c000000000030c3003c0300c000300cf0c00c00300330cc0","first_seen":"2023-12-13T00:00:30Z","last_seen":"2026-06-18T16:44:26.573936Z","times_seen":43,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"asfinag.at.kaufen-vignette.digital/bezahlung_files/theme-mautshop.css","fqdn":"asfinag.at.kaufen-vignette.digital","domain":"kaufen-vignette.digital","tld":"digital"},"ip":{"addr":"152.232.8.190","port":443,"asn":7738,"as":"V tal","country":"Brazil","country_code":"BR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://asfinag.at.kaufen-vignette.digital/bezahlung.php","date":"2026-06-02T17:52:13.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asfinag.at.kaufen-vignette.digital","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:46:25 GMT","end":"Mon, 24 Aug 2026 12:46:24 GMT"},"fingerprint":{"sha1":"A7:B7:6B:4B:E4:20:8E:CF:13:9A:AA:40:99:B8:E4:4F:A8:36:E7:55","sha256":"5B:CE:42:C3:D2:3A:F8:6D:F5:1C:A7:F4:F6:1A:BC:87:9A:ED:A5:7E:56:FF:52:D4:13:4C:E7:C7:91:7B:E8:A6"}}},"request":{"raw":"GET /bezahlung_files/theme-mautshop.css HTTP/1.1\r\nHost: asfinag.at.kaufen-vignette.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asfinag.at.kaufen-vignette.digital/bezahlung.php\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 17:52:13 GMT\r\ncontent-type: text/css\r\ncontent-length: 43751\r\nlast-modified: Fri, 17 Apr 2026 09:32:53 GMT\r\netag: \"69e1fe45-aae7\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43751,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (42934)","md5":"d715aa4dd5b0d500ef756a2f8695cf42","sha1":"9006f67121a0afcc947eec44281dc3674ba8027b","sha256":"652cbf07e0653f29ccda6d6a685a9fcc0b2cb4f6b76f4397654679089ffe7a94","sha512":"cad9019b92712dabf0c66d0b5edf503b6c4d8d088b4d2d414f8fd963d17ec031497ef56e364245c76e404fcc9e74fdf888a71a290ca29467030cc3735352e31b","ssdeep":"384:h/j2N44+v83YIb8ti94BVWj4CbDT6OI31ABj43+hgWu/u983FmR/M4p44E/6fcfv:AN44y83vb8tiSVoP01ABj43cgWuSeBR7","tlshash":"9113d8b5e1f01cf97b63c6279b947bc94539f817d6124a9af017f06885cfbe00662b88","first_seen":"2026-06-02T17:52:39.089828Z","last_seen":"2026-06-02T17:52:39.089828Z","times_seen":1,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"asfinag.at.kaufen-vignette.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}