{"report_id":"f4d94699-61b3-4c8c-a279-340ab5d68831","version":6,"status":"done","tags":[],"date":"2026-04-21T04:42:03Z","url":{"schema":"https","addr":"nextrade26.net/","fqdn":"nextrade26.net","domain":"nextrade26.net","tld":"net"},"ip":{"addr":"35.157.26.135","port":0,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"nextrade26.net/","fqdn":"nextrade26.net","domain":"nextrade26.net","tld":"net"},"title":"Domain Transferred | Nextrade26","dom":{"size":10154,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"ac824b166463d5fd98a917e224e62d4d","sha1":"34866f5a2493224fb8fde8cbac3c0ae8a401b673","sha256":"892d9db5d38d5ca6c24b09a0ff46037132dc8f710d736ca9fad2f1ecccec8d36","sha512":"aa27a09f7f0ab32ff7512173dda6bf186b65fbc539c5c81507711306fbc5d77d2747d0d2308cd278b3f0ad22483b570f55319824d45d0b2050aed84414e760b0","ssdeep":"192:Brx3PnYo9OcqNOon+MyFe7GuzVzOkyjA0Mr3q4B6d:BrxfY5+gRq7","tlshash":"252284a68253040db453d1896bf7128d7278e003c91bda087fdc23998f569cbfdb6768","dom_hash":"domhash62d963a00ae9d80da96dea578da22f09","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"nextrade26.net/","fqdn":"nextrade26.net","domain":"nextrade26.net","tld":"net"},"ip":{"addr":"35.157.26.135","port":0,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-26T04:42:03Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nextrade26.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"nextrade26.net","ip":{"addr":"63.176.8.218","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2026-03-29","domain_rank":0,"first_seen":"2026-04-21T04:42:03.935378Z","last_seen":"2026-04-21T04:42:03.935378Z","alert_count":2,"request_count":2,"received_data":14394,"sent_data":918,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"nextrade26.net/","fqdn":"nextrade26.net","domain":"nextrade26.net","tld":"net"},"ip":{"addr":"63.176.8.218","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-21T04:41:42.314Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nextrade26.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 19:49:16 GMT","end":"Sun, 28 Jun 2026 19:49:15 GMT"},"fingerprint":{"sha1":"C1:E4:30:CA:66:B5:BC:D8:36:31:C7:77:68:A9:DB:2A:08:76:06:75","sha256":"C7:45:A9:1C:E0:44:A4:B3:9E:4F:7C:2C:B1:BC:AC:81:24:DC:29:4D:8E:C0:A8:CA:56:37:B3:AD:4F:91:92:E6"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: nextrade26.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 0\r\ncache-control: public,max-age=0,must-revalidate\r\ncache-status: \"Netlify Edge\"; fwd=miss\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Tue, 21 Apr 2026 04:41:42 GMT\r\netag: \"b7b6e22279082d878d5e2facd2ebd916-ssl-df\"\r\nserver: Netlify\r\nstrict-transport-security: max-age=31536000\r\nvary: Accept-Encoding\r\nx-nf-request-id: 01KPQ5G6CTNCJY39A6QPNE4JS2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]}],"data":{"size":10116,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"12d8d14f1c05db54b3a6d6b6b6cc736e","sha1":"7a4daf2d579140f85ccc65d18aa0cc18361f339a","sha256":"d3d074ed620383c3bb775aed21c8fab994e242f859a8c67a81bc667001a3da95","sha512":"be7f40cfbffc09c13c9a37664e706b23ccb871a5d50961461d27f8a0b2ffd50d650e4ebb751d8b2e145326d5f968b5468db1c4a8bae6b9038bd90365c4fa4179","ssdeep":"192:d63PnYo9OcqNOon+MyFe7GuzVzOkyjA0Mrmq4n6h:d6fY5+g0q3","tlshash":"8a2293aa8253040db457d1986bf3128d3274e043c91bda0cbfdc27d98f569caedb6768","first_seen":"2026-04-21T04:42:13.576239Z","last_seen":"2026-04-21T04:46:25.07049Z","times_seen":2,"resource_available":true,"data":null}},"time_used":604,"timings":{"blocked":231,"dns":47,"connect":32,"send":0,"wait":141,"receive":0,"ssl":150},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nextrade26.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nextrade26.net/favicon.ico","fqdn":"nextrade26.net","domain":"nextrade26.net","tld":"net"},"ip":{"addr":"63.176.8.218","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nextrade26.net/","date":"2026-04-21T04:41:42.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nextrade26.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 19:49:16 GMT","end":"Sun, 28 Jun 2026 19:49:15 GMT"},"fingerprint":{"sha1":"C1:E4:30:CA:66:B5:BC:D8:36:31:C7:77:68:A9:DB:2A:08:76:06:75","sha256":"C7:45:A9:1C:E0:44:A4:B3:9E:4F:7C:2C:B1:BC:AC:81:24:DC:29:4D:8E:C0:A8:CA:56:37:B3:AD:4F:91:92:E6"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: nextrade26.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nextrade26.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nage: 0\r\ncache-control: public,max-age=0,must-revalidate\r\ncache-status: \"Netlify Edge\"; fwd=miss\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Tue, 21 Apr 2026 04:41:42 GMT\r\netag: 1774902810-ssl-df\r\nserver: Netlify\r\nstrict-transport-security: max-age=31536000\r\nvary: Accept-Encoding\r\nx-nf-request-id: 01KPQ5G6Q1E18SWEMAE36MGJ1W\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]}],"data":{"size":3449,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"0f89e18d0abacb99149c5e59bf69b5e1","sha1":"9e1ebb10be890c5855eec444233c028270d3e65a","sha256":"8514f0009a58c6e0acb5468f88037732b59b70af5e524f452e3bef8fb33effc5","sha512":"5275d80f3f8f1f5e0d1b6b6b0745732a69d669d66dcdab418fc5a2094bffcb81ff1d34252c97c6dffe5470f0d359a3be03cfd3dfe3d729bf186917c8cf21ece0","ssdeep":"","tlshash":"1f61848dc9a7209b5c93643e27eb560a2274a247cd46da4c3fde6348cf492f214d36ac","first_seen":"2024-12-12T10:00:11.490986Z","last_seen":"2026-04-21T16:15:19.799434Z","times_seen":9616,"resource_available":true,"data":null}},"time_used":136,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":136,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nextrade26.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}