{"report_id":"e9be6ea1-91c2-431c-bdb8-6bcba5d5c99e","version":6,"status":"done","tags":[],"date":"2026-01-03T08:55:35Z","url":{"schema":"http","addr":"download.yd.3dyd.com/3dyd_1.25.exe","fqdn":"download.yd.3dyd.com","domain":"3dyd.com","tld":"com"},"ip":{"addr":"3.164.240.88","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing","dom":{"size":4657,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"fe35bdaf36b8c8f997812072ada742dc","sha1":"0fa22f9ab91518f50bbfa37f362ff3b7c34e7bbd","sha256":"cd3ee02ab59d008b419980d9dfd7ec72d60414382dc991b9a46312276cec6e9a","sha512":"7e8ff764cf2b9486280a8e45b4f3e275a343147a3453027c526f279647ac08fde1affdddc477d7434a283f95db04e1f3355033c6478dd4067266477e05d2950a","ssdeep":"96:AMDFs1Bx1U3b61j1XS7gx10UFZV2WOzCBTjl22D+i8kDNLerlS:n561Fp/mULV2jUjM2D+z0sJS","tlshash":"cfa133a944f0653b189397a9e9c17f57af81a607cb8d29807baf40f31f87d54886f10d","dom_hash":"domhash0f75e96bbe12b34f36b59d8eab215780","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"download.yd.3dyd.com/3dyd_1.25.exe","fqdn":"download.yd.3dyd.com","domain":"3dyd.com","tld":"com"},"ip":{"addr":"3.164.240.88","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-07T08:55:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"tq2tmylv9quqkoe"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"download.yd.3dyd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"download.yd.3dyd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"download.yd.3dyd.com","ip":{"addr":"3.164.240.56","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2013-05-15","domain_rank":0,"first_seen":"2015-01-12T20:03:27Z","last_seen":"2025-12-21T18:46:31.220192Z","alert_count":2,"request_count":1,"received_data":34526287,"sent_data":502,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"cf2a4329c943eeb47fe1a1edef6dcaed","sha1":"51b2fb95cb9669c482929d3570efe99f1c6a8a35","sha256":"30ff84aabeaf4de64c99e8b1ee611261cf7e953dccce1a334c3b5f8369c60f1f","sha512":"2b7505f410173d1f4235d138668a6dc31e87d7db43bbffae867b236b5e046599710f5ad081b211077f31dce2c7b70eb6fa2fe6aeb7d8d4abc417a3b2ec588412","magic":"PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive, 5 sections","size":34525771,"url":{"schema":"https","addr":"download.yd.3dyd.com/3dyd_1.25.exe","fqdn":"download.yd.3dyd.com","domain":"3dyd.com","tld":"com"},"ip":{"addr":"3.164.240.56","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"download.yd.3dyd.com/3dyd_1.25.exe","fqdn":"download.yd.3dyd.com","domain":"3dyd.com","tld":"com"},"ip":{"addr":"3.164.240.56","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-03T08:55:09.913Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"download.yd.3dyd.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Mon, 27 Jan 2025 00:00:00 GMT","end":"Tue, 24 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"B9:FA:F8:6A:65:51:42:83:4A:12:5D:C8:AA:DB:00:06:69:5B:C5:0E","sha256":"B4:05:5D:5C:51:A6:B2:6A:C5:18:35:36:4E:B6:4D:5B:43:5C:E7:5A:75:3B:E5:A6:E6:A8:D5:BC:BA:0B:B8:B3"}}},"request":{"raw":"GET /3dyd_1.25.exe HTTP/1.1\r\nHost: download.yd.3dyd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/x-msdownload\r\ncontent-length: 34525771\r\nlast-modified: Mon, 08 Dec 2025 19:47:00 GMT\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Fri, 02 Jan 2026 18:10:41 GMT\r\netag: \"f43cc23a020ecac0150e88432dc4dfcc-5\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fb60bb37778839b51bfea3a34907efd0.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: KT5CZF_nDPyUFBDIuL1M8uGaXQhX7477KJYgrFyOicKNQLmqyfjKjw==\r\nage: 53070\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":34525771,"size_decoded":0,"mime_type":"application/x-msdownload","magic":"PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive, 5 sections","md5":"cf2a4329c943eeb47fe1a1edef6dcaed","sha1":"51b2fb95cb9669c482929d3570efe99f1c6a8a35","sha256":"30ff84aabeaf4de64c99e8b1ee611261cf7e953dccce1a334c3b5f8369c60f1f","sha512":"2b7505f410173d1f4235d138668a6dc31e87d7db43bbffae867b236b5e046599710f5ad081b211077f31dce2c7b70eb6fa2fe6aeb7d8d4abc417a3b2ec588412","ssdeep":"24576:Na4U+5HpMcx22Cp7/y1+bD1kgZjkgdFFT:Xp5HpjxH0DCgZog/d","tlshash":"c825f1502556c09fd9e98db3aa4cd1f271a02c3c67a6114fb7c6bf373482ba12c5d399","first_seen":"2026-01-03T08:55:39.401519Z","last_seen":"2026-01-03T08:55:39.401519Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1278,"timings":{"blocked":117,"dns":0,"connect":9,"send":0,"wait":69,"receive":975,"ssl":106},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"download.yd.3dyd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"download.yd.3dyd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}