{"report_id":"e963be45-5db7-4479-a0bc-c1daa35d6b62","version":6,"status":"done","tags":[],"date":"2024-09-08T20:54:02Z","url":{"schema":"http","addr":"evideo.si","fqdn":"evideo.si","domain":"evideo.si","tld":"si"},"ip":{"addr":"89.212.118.80","port":0,"asn":34779,"as":"T-2, d.o.o.","country":"Slovenia","country_code":"SI"},"final":{"url":{"schema":"http","addr":"evideo.si/","fqdn":"evideo.si","domain":"evideo.si","tld":"si"},"title":"Not Found"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-28T21:47:57Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-09-07 18:12:17","alert_count":0,"request_count":3,"received_data":2663,"sent_data":981,"comment":"","tags":null,"fingerprints":null},{"fqdn":"evideo.si","ip":{"addr":"89.212.118.80","port":80,"asn":34779,"as":"T-2, d.o.o.","country":"Slovenia","country_code":"SI"},"domain_registered":"2009-03-19","domain_rank":0,"first_seen":"2015-03-15 14:51:04","last_seen":"2021-02-03 20:34:30","alert_count":0,"request_count":2,"received_data":980,"sent_data":709,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-08T20:53:36.589484099Z","timestamp":1725828816589,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"CCCC9314CA2D07FB6A2A5D91A8D7B37F16FD78A5D14B0E6A27DE0DF82E47F1F3\"\r\nLast-Modified: Sat, 07 Sep 2024 12:20:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=14627\r\nExpires: Mon, 09 Sep 2024 00:57:23 GMT\r\nDate: Sun, 08 Sep 2024 20:53:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"80f3aada09a34a0d6e43e77f160ac485","sha1":"8feee259be181420c2c17ccb3d81ce9bc980b577","sha256":"cccc9314ca2d07fb6a2a5d91a8d7b37f16fd78a5d14b0e6a27de0df82e47f1f3","sha512":"a4cbd203e2522f0f35f8b87aa0dca07ac42716003815d82df9da64583b3a4710f00096297f4640364a965a09534d14c0de7b948e74b9465d71a5fe812a286b1a","ssdeep":"","tlshash":"a0f005262b967d01fef41b8726e4e94c6d3068ab7c1165e615500eb3f8027dd5900148","first_seen":"2024-09-07T19:12:05Z","last_seen":"2024-09-19T22:02:03.703929Z","times_seen":25206,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-08T20:53:36.933145695Z","timestamp":1725828816933,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"A05CDBBE566F996D3A5C23FAE87B41CF39B35004089DA526A83A07180308F6F6\"\r\nLast-Modified: Sat, 07 Sep 2024 14:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=10130\r\nExpires: Sun, 08 Sep 2024 23:42:26 GMT\r\nDate: Sun, 08 Sep 2024 20:53:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"68947424372edfcda7c1609aafc81154","sha1":"ccc0889b1f048816a1e87783c576457408413ea7","sha256":"a05cdbbe566f996d3a5c23fae87b41cf39b35004089da526a83a07180308f6f6","sha512":"2b0ef9bf517508c598f6f0805af1ed7592d6579e6604d6fef6eb81e8a6892b8315117e4d7adbfae3415c60fe9676aa12c1faccd3b740c4287612141b8748b060","ssdeep":"","tlshash":"9af005b231f5ed0486e409445df4da2d99105ebd344441d614a406e2a3597a46754ecd","first_seen":"2024-09-07T21:06:16Z","last_seen":"2024-09-19T22:01:04.90973Z","times_seen":11554,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-08T20:53:37.313163634Z","timestamp":1725828817313,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EDDD5AF125077F387F37956C09C275A35BE27C88FBCB02B1D789F352C0DFA5BA\"\r\nLast-Modified: Sat, 07 Sep 2024 14:38:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2925\r\nExpires: Sun, 08 Sep 2024 21:42:22 GMT\r\nDate: Sun, 08 Sep 2024 20:53:37 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b73e5b140c4c19e7e5450cce90348dec","sha1":"c2186b718c50a53bf30e1093713305403a8bd673","sha256":"eddd5af125077f387f37956c09c275a35be27c88fbcb02b1d789f352c0dfa5ba","sha512":"2a7f4b76c448c27ff864147496607149b0566a0245737190f0e0d387b038c1ff91c0ed4efb7e57cc497f878713e3730324e87b5cfbe8dcf91fa7edf2f496a000","ssdeep":"","tlshash":"ddf00e625af5f920fdb8080c1897c21add30e9ed3cf13aa261a501d3e451bfd52c80ac","first_seen":"2024-09-08T01:31:27Z","last_seen":"2024-09-19T21:59:08.402611Z","times_seen":15712,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"evideo.si/","fqdn":"evideo.si","domain":"evideo.si","tld":"si"},"ip":{"addr":"89.212.118.80","port":80,"asn":34779,"as":"T-2, d.o.o.","country":"Slovenia","country_code":"SI"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-08T20:53:37.897Z","timestamp":1725828817897,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: evideo.si\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nContent-Type: text/html; charset=us-ascii\r\nServer: Microsoft-HTTPAPI/2.0\r\nDate: Sun, 08 Sep 2024 20:53:51 GMT\r\nConnection: close\r\nContent-Length: 315\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":315,"size_decoded":315,"mime_type":"text/html; charset=us-ascii","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"67932d4b695e1d6b19dfc2e3610761ff","sha1":"a66898b36c94c53766e66c1a7aaeb149447ec083","sha256":"ce7127c38e30e92a021ed2bd09287713c6a923db9ffdb43f126e8965d777fbf0","sha512":"97408b30995b72417494daca4c67488b77e3121a9db8bb3c2f204b49944457caa1af4b75730511b39fc9babcca5e1440168c3dbf3377b072866295bd490710fe","ssdeep":"","tlshash":"8be07d6d9856aac542a0f4bc75d193b48115038fd4e547d90051b21714891bcc1f0dcf","first_seen":"2023-04-05T14:02:50Z","last_seen":"2026-04-05T11:22:47.471031Z","times_seen":2136,"resource_available":true,"data":null}},"time_used":125,"timings":{"blocked":42,"dns":1,"connect":41,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"evideo.si/favicon.ico","fqdn":"evideo.si","domain":"evideo.si","tld":"si"},"ip":{"addr":"89.212.118.80","port":80,"asn":34779,"as":"T-2, d.o.o.","country":"Slovenia","country_code":"SI"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://evideo.si/","date":"2024-09-08T20:53:38.078Z","timestamp":1725828818078,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: evideo.si\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://evideo.si/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nContent-Type: text/html; charset=us-ascii\r\nServer: Microsoft-HTTPAPI/2.0\r\nDate: Sun, 08 Sep 2024 20:53:52 GMT\r\nConnection: close\r\nContent-Length: 315\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":315,"size_decoded":315,"mime_type":"text/html; charset=us-ascii","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"67932d4b695e1d6b19dfc2e3610761ff","sha1":"a66898b36c94c53766e66c1a7aaeb149447ec083","sha256":"ce7127c38e30e92a021ed2bd09287713c6a923db9ffdb43f126e8965d777fbf0","sha512":"97408b30995b72417494daca4c67488b77e3121a9db8bb3c2f204b49944457caa1af4b75730511b39fc9babcca5e1440168c3dbf3377b072866295bd490710fe","ssdeep":"","tlshash":"8be07d6d9856aac542a0f4bc75d193b48115038fd4e547d90051b21714891bcc1f0dcf","first_seen":"2023-04-05T14:02:50Z","last_seen":"2026-04-05T11:22:47.471031Z","times_seen":2136,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":6,"connect":42,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}