{"id":"0dca2f7f-ab88-488b-85a2-e998a221bdb0","url":"https://bicex.robertgoeritzer.com/","status":"completed","submitted_at":"2026-06-19T12:10:25.712893Z","started_at":"2026-06-19T12:10:38.878490Z","completed_at":"2026-06-19T12:11:42.743729Z","final_url":"https://bicex.robertgoeritzer.com/","http_status":404,"error":null,"artifacts":{"html_url":"/artifact/html/c8c07e59d2649d23e615ec030c08f90fbe8d8d39b067c2cb7eb47a1b178fefeb.html","screenshot_url":"/artifact/screenshot/569a89372b63182dae06563e1bb37712010f1d129379fb8c8c0996e8aa7866ea.png","har_url":"/artifact/har/36e74c33001cac051941abfcb2e17811e16c8a173e2d2bf5202b0b9444bb5db7.har","annotations_url":null},"metadata":{"redirect_chain":[],"network_summary":[{"url":"https://bicex.robertgoeritzer.com/","status":404,"type":"document"}],"captured_js_bytes":3591,"turnstile":null,"cloudflare":null,"enrichment":{"registered":"robertgoeritzer.com","host":"bicex.robertgoeritzer.com","host_ip":"158.94.208.15","domain":{"key":"robertgoeritzer.com","status":"ok","data":{"registrar":"NameCheap, Inc.","created":"2016-09-29T14:03:54Z","expires":"2026-09-29T14:03:54Z","updated":"2026-06-19T12:10:18Z","status":["client transfer prohibited"],"nameservers":["ns1.digitalocean.com","ns2.digitalocean.com","ns3.digitalocean.com"],"registrant_org":null,"registrant_redacted":false,"source":"rdap"},"fetched_at":"2026-06-19T12:10:35.509815+00:00","expires_at":"2026-07-19T12:10:35.509815+00:00","fresh":true,"error":null},"ip":{"key":"158.94.208.15","status":"ok","data":{"asn":202412,"asn_org":"Omegatech LTD","source":"geolite2-asn"},"fetched_at":"2026-06-09T16:37:30.624223+00:00","expires_at":"2026-07-09T16:37:30.624223+00:00","fresh":true,"error":null}},"timings":{"dns_ms":225,"scrape_ms":3263,"artifacts_ms":297,"enrichment_ms":143,"detection_ms":348,"per_detector_ms":{"domain":0,"forms":0,"yara":0,"urlhaus":345,"feeds":0,"brand_watch":0,"redirect_chain":0},"investigation_ms":0,"total_ms":63845,"ai_review_ms":59295},"investigation":{"hashes":{"html_sha256":"c8c07e59d2649d23e615ec030c08f90fbe8d8d39b067c2cb7eb47a1b178fefeb","screenshot_sha256":"569a89372b63182dae06563e1bb37712010f1d129379fb8c8c0996e8aa7866ea","har_sha256":"36e74c33001cac051941abfcb2e17811e16c8a173e2d2bf5202b0b9444bb5db7"},"iocs":{"emails":[],"crypto_wallets":[],"telegram_bots":[],"telegram_handles":[],"telegram_chat_ids":[],"discord_webhooks":[],"phone_numbers":[],"exfil_endpoints":[],"urls":["https://bicex.robertgoeritzer.com/"]},"urls_by_type":{"document":["https://bicex.robertgoeritzer.com/"]},"captured_resource_urls":["https://bicex.robertgoeritzer.com/"],"hosts":[{"host":"bicex.robertgoeritzer.com","request_count":1,"resource_types":["document"],"asn":202412,"asn_org":"Omegatech LTD","ip":"158.94.208.15","registrar":"NameCheap, Inc.","created":"2016-09-29T14:03:54Z","expires":"2026-09-29T14:03:54Z","registrant_org":null,"nameservers":["ns1.digitalocean.com","ns2.digitalocean.com","ns3.digitalocean.com"],"registered":"robertgoeritzer.com"}],"redirect_chain":[],"chain_signature":null,"host_count_total":1,"host_count_enriched":1,"tls":{"host":"bicex.robertgoeritzer.com","validated":true,"subject":{"commonName":"bicex.robertgoeritzer.com"},"issuer":{"countryName":"US","organizationName":"Let's Encrypt","commonName":"YR1"},"not_before":"2026-06-19T06:37:16+00:00","not_after":"2026-09-17T06:37:15+00:00","serial_number":"05A226D212C4DD8A809B238AC3747D783A28","subject_alt_names":["bicex.robertgoeritzer.com"],"fingerprint_sha256":"8e2a2821d06f41c3b68df6bddc36443963bd245d02322d1d1c3468de6121e3bb","tls_version":"TLSv1.3","cipher":"TLS_AES_128_GCM_SHA256"},"kit":null,"page_links":[],"cookies":[{"name":"4e4315b5","value":"3ada8fba1cff10c55cf823602d4a8f9bbe3d71a1aacb85c15bcae3b869a7481d|1781871039","domain":"bicex.robertgoeritzer.com","path":"/"}]},"worker_host":"scraper-21","annotations_key":null,"c2_endpoints":[],"screenshot_is_decoded_kit":false},"queue_wait_ms":13165,"duration_ms":77030,"score":70,"verdict":"malicious","signals":[{"id":"domain.asn_info","severity":"info","weight":0,"detector":"domain","message":"Hosted on ASN 202412 (Omegatech LTD).","evidence":{"host_ip":"158.94.208.15","asn":202412,"asn_org":"Omegatech LTD"}},{"id":"cert_pl.domain_hit","severity":"critical","weight":55,"detector":"feeds","message":"CERT-PL lists this host as a phishing domain.","evidence":{"host":"bicex.robertgoeritzer.com","feed":"cert_pl"}},{"id":"trust.aged_domain","severity":"info","weight":-15,"detector":"trust","message":"Domain has been registered for 9.7 years - established domains earn a trust offset against accidental rule matches.","evidence":{"created":"2016-09-29T14:03:54Z","age_days":3549}}],"ai_review":{"verdict":{"verdict":"malicious","score_adjustment":0,"brand_impersonated":null,"kit_fingerprint":null,"iocs":[],"rationale":"The rule-based detection correctly flagged this page as malicious due to a critical CERT-PL signal identifying the host as a phishing domain. Although the page returns a 404 error and the domain is aged, the CERT-PL listing overrides these mitigating factors, indicating active use in a phishing campaign.","confidence":0.95},"skipped":false,"skipped_reason":null,"error":null,"model_text":"qwen3.5:4b","model_vlm":null,"prompt_version_text":"verdict_v1","prompt_version_vlm":null,"latency_ms":59219,"served_by":"primary"},"ai_skipped":false,"ai_skipped_reason":null,"ai_pending":false}