{"report_id":"ff3176da-9883-4056-ad1d-81c10341d340","version":6,"status":"done","tags":[],"date":"2025-02-04T14:19:54Z","url":{"schema":"http","addr":"download.qt.io/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe","fqdn":"download.qt.io","domain":"qt.io","tld":"io"},"ip":{"addr":"77.86.162.2","port":0,"asn":29422,"as":"Telia Cygate Oy","country":"Finland","country_code":"FI"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-04-15T14:19:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"download.qt.io","ip":{"addr":"77.86.162.2","port":0,"asn":29422,"as":"Telia Cygate Oy","country":"Finland","country_code":"FI"},"domain_registered":"2013-10-05","domain_rank":681032,"first_seen":"2017-02-02T06:16:49Z","last_seen":"2025-02-01T03:14:43.090946Z","alert_count":0,"request_count":1,"received_data":1819,"sent_data":538,"comment":"","tags":null,"fingerprints":null},{"fqdn":"mirrors.dotsrc.org","ip":{"addr":"130.225.254.116","port":443,"asn":1835,"as":"FSKNET-DK Forskningsnettet - Danish network for Research and Education","country":"Denmark","country_code":"DK"},"domain_registered":"2003-04-15","domain_rank":411439,"first_seen":"2014-03-19T12:46:59Z","last_seen":"2025-01-29T09:26:45.387176Z","alert_count":1,"request_count":1,"received_data":43539255,"sent_data":552,"comment":"","tags":null,"fingerprints":null}],"files":[{"md5":"6f1c1803b55fd0ae7c4761c62e1dd1aa","sha1":"b4dcee72c40bb58d09d3efdfa9d94d1a8fb13eca","sha256":"48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","sha512":"2064cbcdbaef9918d09aae8ce51ea3ed4729e833dd4f56c73297ca2f2a6f8952a19e69f6ded3f470b0e89503639be0938e9cc2789eae4d473863905134304da1","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 5 sections","size":43538931,"url":{"schema":"https","addr":"mirrors.dotsrc.org/qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe","fqdn":"mirrors.dotsrc.org","domain":"dotsrc.org","tld":"org"},"ip":{"addr":"130.225.254.116","port":443,"asn":1835,"as":"FSKNET-DK Forskningsnettet - Danish network for Research and Education","country":"Denmark","country_code":"DK"},"archive":null,"alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-06-06","alert":"Scan result 1/70","trigger":"48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","verdict":"suspicious","severity":"","comment":"suspicious - 1/70","link":"https://www.virustotal.com/gui/file/48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","meta":null}]}}],"artifacts":{"windows_shortcuts":null,"files":[{"md5":"6f1c1803b55fd0ae7c4761c62e1dd1aa","sha1":"b4dcee72c40bb58d09d3efdfa9d94d1a8fb13eca","sha256":"48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","sha512":"2064cbcdbaef9918d09aae8ce51ea3ed4729e833dd4f56c73297ca2f2a6f8952a19e69f6ded3f470b0e89503639be0938e9cc2789eae4d473863905134304da1","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 5 sections","size":43538931,"url":{"schema":"https","addr":"mirrors.dotsrc.org/qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe","fqdn":"mirrors.dotsrc.org","domain":"dotsrc.org","tld":"org"},"ip":{"addr":"130.225.254.116","port":443,"asn":1835,"as":"FSKNET-DK Forskningsnettet - Danish network for Research and Education","country":"Denmark","country_code":"DK"},"archive":null,"alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-06-06","alert":"Scan result 1/70","trigger":"48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","verdict":"suspicious","severity":"","comment":"suspicious - 1/70","link":"https://www.virustotal.com/gui/file/48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","meta":null}]}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"download.qt.io/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe","fqdn":"download.qt.io","domain":"qt.io","tld":"io"},"ip":{"addr":"77.86.162.2","port":0,"asn":29422,"as":"Telia Cygate Oy","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2025-02-04T14:19:25.164892883Z","timestamp":1738678765164,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe HTTP/1.1\r\nHost: download.qt.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 302 Found\r\nDate: Tue, 04 Feb 2025 14:19:25 GMT\r\nServer: Apache\r\nStrict-Transport-Security: max-age=63072000; includeSubdomains;\r\nX-Prefix: 91.90.40.0/21\r\nX-AS: 50304\r\nX-MirrorBrain-Mirror: dotsrc.org\r\nX-MirrorBrain-Realm: region\r\nLink: \u003chttps://download.qt.io/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe.meta4\u003e; rel=describedby; type=\"application/metalink4+xml\", \u003chttps://download.qt.io/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe.torrent\u003e; rel=describedby; type=\"application/x-bittorrent\", \u003chttps://mirrors.dotsrc.org/qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe\u003e; rel=duplicate; pri=1; geo=dk, \u003chttps://qt-mirror.dannhauer.de/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe\u003e; rel=duplicate; pri=2; geo=de, \u003chttps://mirror.accum.se/mirror/qt.io/qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe\u003e; rel=duplicate; pri=3; geo=se, \u003chttps://ftp.fau.de/qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe\u003e; rel=duplicate; pri=4; geo=de, \u003chttps://www.mirrorservice.org/sites/download.qt-project.org/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe\u003e; rel=duplicate; pri=5; geo=gb\r\nDigest: MD5=bxwYA7Vf0K58R2HGLh3Rqg==, SHA=tNzucsQLtY0J0+/fqdlNGo+xPso=, SHA-256=SK3g4pcBiGyDnsISo94y63LQQ29x0mZwD6gg2CG4Qg8=\r\nLocation: https://mirrors.dotsrc.org/qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe\r\nContent-Length: 278\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":278,"size_decoded":278,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"61ede5eabe446e4f4fca2f8f569303bb","sha1":"55fb68cf06f733b2be90409ce0e9e4a38cd5d64f","sha256":"34348eb4b0177041ebc45dde23b4fb246c25d23507da4ba8a54c7687f4f15188","sha512":"cbecd6ad02eb057facd81adbf96e47ce05f9bc763c701c77b0347e65e1299589bd8ab4d4fc69bec228cc1f369cfc0b246695cec240e027a8b9e3387eece3ea96","ssdeep":"","tlshash":"d6d02bbf50876455ab733780adc120c5240715b76644a9ac19d768c1c428674848f2df","first_seen":"2025-02-04T14:19:55.629344Z","last_seen":"2025-02-04T14:19:55.629344Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mirrors.dotsrc.org/qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe","fqdn":"mirrors.dotsrc.org","domain":"dotsrc.org","tld":"org"},"ip":{"addr":"130.225.254.116","port":443,"asn":1835,"as":"FSKNET-DK Forskningsnettet - Danish network for Research and Education","country":"Denmark","country_code":"DK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-02-04T14:19:25.173Z","timestamp":1738678765173,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mirrors.dotsrc.org","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Dec 2024 16:39:53 GMT","end":"Thu, 27 Mar 2025 16:39:52 GMT"},"fingerprint":{"sha1":"2E:EB:E9:F3:01:3E:6E:AA:90:F1:EC:FD:50:99:B1:90:B2:7F:58:7C","sha256":"6F:41:D1:97:0D:A8:71:FD:F8:71:75:74:9B:EF:1E:B9:D6:24:E8:47:55:31:75:B3:FE:66:0D:E0:3F:55:BF:A4"}}},"request":{"raw":"GET /qtproject/official_releases/pyside/PySide-1.2.2.win-amd64-py3.4.exe HTTP/1.1\r\nHost: mirrors.dotsrc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0 (Ubuntu)\r\ndate: Tue, 04 Feb 2025 14:19:25 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 43538931\r\nlast-modified: Fri, 25 Apr 2014 09:20:12 GMT\r\netag: \"535a28cc-29859f3\"\r\nx-frame-options: SAMEORIGIN\r\nreferrer-policy: strict-origin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43538931,"size_decoded":43538931,"mime_type":"application/octet-stream","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 5 sections","md5":"6f1c1803b55fd0ae7c4761c62e1dd1aa","sha1":"b4dcee72c40bb58d09d3efdfa9d94d1a8fb13eca","sha256":"48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","sha512":"2064cbcdbaef9918d09aae8ce51ea3ed4729e833dd4f56c73297ca2f2a6f8952a19e69f6ded3f470b0e89503639be0938e9cc2789eae4d473863905134304da1","ssdeep":"786432:OyA98PYO0+mvuaOcMsAWjGbaqliGgqJ7A+n2VljAAezXyjqwE:OFm03vvCsAOESq1A+mlUXOqX","tlshash":"0797334b574469fbdc13b371c24a14a2d43f992e9312d83f1a8e8671ce032d67b26b5b","first_seen":"2025-02-04T14:19:55.63136Z","last_seen":"2025-02-04T14:19:55.63136Z","times_seen":1,"resource_available":false,"data":null}},"time_used":6035,"timings":{"blocked":107,"dns":0,"connect":49,"send":0,"wait":132,"receive":5687,"ssl":57},"alerts":{"ids":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-06-06","alert":"Scan result 1/70","trigger":"48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","verdict":"suspicious","severity":"","comment":"suspicious - 1/70","link":"https://www.virustotal.com/gui/file/48ade0e29701886c839ec212a3de32eb72d0436f71d266700fa820d821b8420f","meta":null}],"urlquery":null}}]}