{"report_id":"ee5c2bd4-047c-449e-bfe7-0d5d8031453a","version":6,"status":"done","tags":[],"date":"2026-04-05T18:41:28Z","url":{"schema":"http","addr":"cuyunco.com.ar/","fqdn":"cuyunco.com.ar","domain":"cuyunco.com.ar","tld":"com.ar"},"ip":{"addr":"167.250.5.66","port":0,"asn":264649,"as":"NUT HOST SRL","country":"Argentina","country_code":"AR"},"final":{"url":{"schema":"http","addr":"cuyunco.com.ar/","fqdn":"cuyunco.com.ar","domain":"cuyunco.com.ar","tld":"com.ar"},"title":"cuyunco.com.ar/","dom":{"size":124,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"3d5667e3c0518b4e92d1c61c96e232b9","sha1":"384082ff79ded16a2f8399abab103717183163c0","sha256":"bc5a71017e0ba536a6703ee365856f8c9c70496e9b78d4d17c9b472e74b5f89a","sha512":"09ecbffa23349597ef63accd9682389b53c1b61daf2cda2fa5c5a0dd7e219f588e01b6602f1c5f46e80a3b5c8070dadb8497cff85060856f2ba35e9314dff467","ssdeep":"","tlshash":"c6b022fa83a882088c2230800c82e28a8282c00ce002be0000c8b8888008a8cc823ac8","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"cuyunco.com.ar/","fqdn":"cuyunco.com.ar","domain":"cuyunco.com.ar","tld":"com.ar"},"ip":{"addr":"167.250.5.66","port":0,"asn":264649,"as":"NUT HOST SRL","country":"Argentina","country_code":"AR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-10T18:41:28Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"cuyunco.com.ar","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"cuyunco.com.ar","ip":{"addr":"167.250.5.66","port":443,"asn":264649,"as":"NUT HOST SRL","country":"Argentina","country_code":"AR"},"domain_registered":"1999-03-03","domain_rank":0,"first_seen":"2015-07-29T13:21:19Z","last_seen":"2025-12-07T14:11:57.358904Z","alert_count":3,"request_count":3,"received_data":750,"sent_data":1235,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cuyunco.com.ar/","fqdn":"cuyunco.com.ar","domain":"cuyunco.com.ar","tld":"com.ar"},"ip":{"addr":"167.250.5.66","port":443,"asn":264649,"as":"NUT HOST SRL","country":"Argentina","country_code":"AR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-05T18:41:05.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuyunco.com.ar","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 09:14:58 GMT","end":"Fri, 03 Jul 2026 09:14:57 GMT"},"fingerprint":{"sha1":"D8:B3:3C:E5:9D:2E:CA:3E:B5:59:B4:C9:90:70:34:0A:78:C4:8F:D1","sha256":"85:87:96:26:B5:6A:49:81:75:53:7B:DE:24:1A:2A:CB:EE:C5:0F:14:57:40:7D:9F:29:04:7B:AE:8D:2E:8E:04"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cuyunco.com.ar\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\nserver: nginx\r\ndate: Sun, 05 Apr 2026 18:41:06 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\ncontent-length: 85\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"ASCII text, with no line terminators","md5":"46c4f34f21111ccdb31b9584812960d9","sha1":"a7b5bcba5ab0a3c1abd8a0becdf7c0d0047b9082","sha256":"2409c992d44828204ebb5723c498a365cae8a100dc3dc05458b417e088a12726","sha512":"7b8a42160ef0dd54fa456df53c5ea44a0681ee15b23d82cc89fdac6b58f83b2dc5cb4ba55e4595b6ee5689ef3b22618adccd7f58cbd8e03571efdb268f5e9a43","ssdeep":"","tlshash":"c5a012620348d304440240005c06d01a9283c00dd5017851408db584404898c8057950","first_seen":"2023-04-10T10:16:28Z","last_seen":"2026-06-07T23:46:59.761577Z","times_seen":91,"resource_available":true,"data":null}},"time_used":1605,"timings":{"blocked":676,"dns":182,"connect":243,"send":0,"wait":252,"receive":0,"ssl":248},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"cuyunco.com.ar","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"cuyunco.com.ar/","fqdn":"cuyunco.com.ar","domain":"cuyunco.com.ar","tld":"com.ar"},"ip":{"addr":"167.250.5.66","port":80,"asn":264649,"as":"NUT HOST SRL","country":"Argentina","country_code":"AR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-05T18:41:06.239Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: cuyunco.com.ar\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate: Sun, 05 Apr 2026 18:41:06 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 85\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"ASCII text, with no line terminators","md5":"46c4f34f21111ccdb31b9584812960d9","sha1":"a7b5bcba5ab0a3c1abd8a0becdf7c0d0047b9082","sha256":"2409c992d44828204ebb5723c498a365cae8a100dc3dc05458b417e088a12726","sha512":"7b8a42160ef0dd54fa456df53c5ea44a0681ee15b23d82cc89fdac6b58f83b2dc5cb4ba55e4595b6ee5689ef3b22618adccd7f58cbd8e03571efdb268f5e9a43","ssdeep":"","tlshash":"c5a012620348d304440240005c06d01a9283c00dd5017851408db584404898c8057950","first_seen":"2023-04-10T10:16:28Z","last_seen":"2026-06-07T23:46:59.761577Z","times_seen":91,"resource_available":true,"data":null}},"time_used":723,"timings":{"blocked":240,"dns":1,"connect":240,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"cuyunco.com.ar","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"cuyunco.com.ar/favicon.ico","fqdn":"cuyunco.com.ar","domain":"cuyunco.com.ar","tld":"com.ar"},"ip":{"addr":"167.250.5.66","port":80,"asn":264649,"as":"NUT HOST SRL","country":"Argentina","country_code":"AR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://cuyunco.com.ar/","date":"2026-04-05T18:41:06.817Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: cuyunco.com.ar\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://cuyunco.com.ar/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate: Sun, 05 Apr 2026 18:41:06 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 85\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"ASCII text, with no line terminators","md5":"46c4f34f21111ccdb31b9584812960d9","sha1":"a7b5bcba5ab0a3c1abd8a0becdf7c0d0047b9082","sha256":"2409c992d44828204ebb5723c498a365cae8a100dc3dc05458b417e088a12726","sha512":"7b8a42160ef0dd54fa456df53c5ea44a0681ee15b23d82cc89fdac6b58f83b2dc5cb4ba55e4595b6ee5689ef3b22618adccd7f58cbd8e03571efdb268f5e9a43","ssdeep":"","tlshash":"c5a012620348d304440240005c06d01a9283c00dd5017851408db584404898c8057950","first_seen":"2023-04-10T10:16:28Z","last_seen":"2026-06-07T23:46:59.761577Z","times_seen":91,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"cuyunco.com.ar","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}