Report - hotconfigs.com/

Report Overview

Submitted URL
hotconfigs.com/
IP
185.149.120.11
ASN
#57724 Ddos-Guard Ltd
Submitted
2024-05-05 06:07:19
Access
public
Website Title
MetaMask
Final URL
hotconfigs.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
52

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
metamask.io	81413	2015-07-02	2015-11-15	2024-04-15	423 B	2.9 kB	185.199.111.153
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	555 B	26 kB	142.250.74.106
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-04	850 B	288 kB	104.17.25.14
hotconfigs.com	unknown	unknown	No data	No data	6.1 kB	1.9 MB	185.149.120.11
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-05-04	1.4 kB	123 kB	151.101.1.229
unpkg.com	11693	2016-01-06	2016-01-08	2024-05-04	1.4 kB	107 kB	104.17.245.203
cdndelivery.pages.dev	unknown	2020-09-02	2024-01-11	2024-03-10	438 B	768 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet
2024-05-04	medium	hotconfigs.com/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed
2024-05-05	medium	hotconfigs.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	hotconfigs.com/encryption.js	84 kB	2023-10-15	2024-05-18
Pretty URL hotconfigs.com/encryption.js IP 185.149.120.11 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 16:15:19 Last Seen2024-05-18 11:55:47 Times Seen156 Hash 81e8c22ea207dece0624d6209db46cce cc6ab31cc685e11bfc69fda72ad6c295130cf2a7 0a9f0840be094f6fc48b6e8abff400e72e937aba6ceeb6eca4b60db4e8806fd7 Loading...

	unknown	34 B	2023-04-11	2024-05-18
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-18 15:55:20 Times Seen77521 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js	68 kB	2023-07-11	2024-05-18
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-11 17:54:11 Last Seen2024-05-18 11:55:47 Times Seen472 Hash 0aaaa3278d29d8b8d9b3795f60d3b836 519ef68609c1f595ee6a9cbb7660e4c8585a0d41 b030031299100b9d6c6b413bf9e9d712f59695f1384ef548c3f43b0a0faecbfa Loading...

	cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js	323 kB	2023-03-07	2024-05-18
Pretty URL cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:06 Last Seen2024-05-18 11:55:47 Times Seen877 Hash ca1104de538caea2d54265fbe90916b4 d6c416e5d153f500f7ac66d25a2b73db45867ad4 10d78c0a5e8664889dc8eb47c72bfa46ad0ed02c70a234be9acdefa27dbb24b0 Loading...

	cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js	760 kB	2023-03-13	2024-05-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:48:53 Last Seen2024-05-18 11:55:47 Times Seen976 Hash 71f8c498e792c6179d4e2840228f777a b651545587f6257345dc3de9ddaa444b10dedf3e a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73 Loading...

	cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js	638 kB	2023-07-13	2024-05-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-13 05:39:36 Last Seen2024-05-18 11:55:47 Times Seen463 Hash 1932881debf364cfed402e1d0c7a54e3 e53d84ee93cb7c4eae82bdce939e80307b2cb1b1 e95c1fc6aaa308b9bbfc7ba359f34b57c65e4932440416441fe7c8864ccbdd84 Loading...

	unknown	1.5 kB	2023-06-07	2024-05-18
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-06-07 22:44:52 Last Seen2024-05-18 11:55:47 Times Seen256 Hash 1884ef3dcd9482d5f21c955b13eab060 bce91cb9cb511d0cd0a19f8f0fc5bfe03f3fbabf 938cde8b9179eff487eed4b7e1d743302676b96ee0286cc8c2e095160e147db6 Loading...

	hotconfigs.com/	3.2 kB	2024-05-05	2024-05-05
Pretty URL hotconfigs.com/ IP 185.149.120.11 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 08:07:27 Last Seen2024-05-05 08:07:27 Times Seen1 Hash 36ece363bbd4aadd5f7f34698671614c fc562c35c1b9f85225603f160eef04ac6c39cbe3 a70707805bd88a617cce1ab027077bf3c60597b2e3e83c7a253b9dc8dfc54d2c Loading...

HTTP Transactions (24)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js

104.17.25.14

200 OK

139 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hotconfigs.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
139 kB (139139 bytes)
Hash
71f8c498e792c6179d4e2840228f777a
b651545587f6257345dc3de9ddaa444b10dedf3e
a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73

HTTP Headers

GET /ajax/libs/ethers/5.7.2/ethers.umd.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hotconfigs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 06:06:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 139139
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6350cee7-21f83"
last-modified: Thu, 20 Oct 2022 04:30:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 394842
expires: Fri, 25 Apr 2025 06:06:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mq0GQbW4NcmXTIv8L0mERsbmyVc7p%2BFmw1q5ET7%2FB65WTmmmoImq4%2FxV%2B9UgUOpN%2FtBhOWReIC7vpG%2Ff3cKyf2mbMqN1SzMU4FJjssaidaUmum5qrgTPi5i%2FOP08CkoYNnnFGlLz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87ee8c0c3d89b511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js

104.17.25.14

200 OK

147 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hotconfigs.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65470)
Size
147 kB (147285 bytes)
Hash
1932881debf364cfed402e1d0c7a54e3
e53d84ee93cb7c4eae82bdce939e80307b2cb1b1
e95c1fc6aaa308b9bbfc7ba359f34b57c65e4932440416441fe7c8864ccbdd84

HTTP Headers

GET /ajax/libs/web3/4.0.3/web3.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hotconfigs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 06:06:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 147285
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64ad8554-23f55"
last-modified: Tue, 11 Jul 2023 16:37:40 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 387564
expires: Fri, 25 Apr 2025 06:06:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UN%2FVDtukAttUgrvJn5QFsna2Rpvsch0%2BPWZ4DuPLO1o9emmBYL7H7afMVgDG%2FQIwrpxwybdH5kubqExOiT1u8Efcnm97m34XObe7OJrTpIquRaSOsvYFgt5XFkPjX02J7Vvj0A7B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87ee8c0c3d8bb511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hotconfigs.com/css/carousel.css

185.149.120.11

200 OK

5.3 kB

URL GET HTTP/2
hotconfigs.com/css/carousel.css
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
ASCII text, with very long lines (5265)
Size
5.3 kB (5266 bytes)
Hash
b1d6a51c4fbbfe78bbc3d0dae8079884
a355ad9694e9999cc9e7633f080d5fd38e860371
27b7077f95f4e8b355a581630ed3c42c9915b24038e172fab346714584ad96b5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/carousel.css HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: text/css
content-length: 5266
last-modified: Sat, 04 May 2024 13:37:27 GMT
etag: "66363a17-1492"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

hotconfigs.com/css/toastr.min.css

185.149.120.11

200 OK

6.6 kB

URL GET HTTP/2
hotconfigs.com/css/toastr.min.css
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
ASCII text, with very long lines (6356)
Size
6.6 kB (6643 bytes)
Hash
afe7dc90f675af67e6a80f3655134bbb
636a7549b1a2d5d4f393b0594143f30d54e714a8
251ee4d79bda11a10162887652ed39fe3860a2c7790164c39f439e0a3d824b17

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/toastr.min.css HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: text/css
content-length: 6643
last-modified: Sat, 04 May 2024 13:37:29 GMT
etag: "66363a19-19f3"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

hotconfigs.com/images/usdt.svg

185.149.120.11

200 OK

758 B

URL GET HTTP/2
hotconfigs.com/images/usdt.svg
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
SVG Scalable Vector Graphics image
Size
758 B (758 bytes)
Hash
63e56f0cd3f8970fb763ee9a89813721
4e15f5959f9c682d980173c938e81ef794dc2d6e
12025aeef48b317ed9f299a5de7e913e58f72959c796c9264248f16a93a572c1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/usdt.svg HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: image/svg+xml
content-length: 758
last-modified: Sat, 04 May 2024 13:37:44 GMT
etag: "66363a28-2f6"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

hotconfigs.com/images/metamask-fox.svg

185.149.120.11

200 OK

3.2 kB

URL GET HTTP/2
hotconfigs.com/images/metamask-fox.svg
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
SVG Scalable Vector Graphics image
Size
3.2 kB (3231 bytes)
Hash
c06f3a3e804ebc7343949fdca3fdd7f8
d96957b5a42c4f69e11a55e388234a26daf4a039
b855851451c3eb7220bc7331d6cf7f19dad4580ebc35610211f028848ba7fc34

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/metamask-fox.svg HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: image/svg+xml
content-length: 3231
last-modified: Sat, 04 May 2024 13:37:42 GMT
etag: "66363a26-c9f"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

hotconfigs.com/images/usdc.svg

185.149.120.11

200 OK

1.8 kB

URL GET HTTP/2
hotconfigs.com/images/usdc.svg
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1754 bytes)
Hash
dbaf53e502f74074d91695d63e37ee27
e0877f621c926ea037f643fc250002d3bce12385
76ab4f3453b657765ee6fb8c81909103f9babf3d3bd78ceb745a44bfd071de36

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/usdc.svg HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: image/svg+xml
content-length: 1754
last-modified: Sat, 04 May 2024 13:37:43 GMT
etag: "66363a27-6da"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

hotconfigs.com/images/eth_logo.png

185.149.120.11

200 OK

3.8 kB

URL GET HTTP/2
hotconfigs.com/images/eth_logo.png
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
PNG image data, 500 x 500, 8-bit colormap, non-interlaced
Size
3.8 kB (3757 bytes)
Hash
137ab9aeae705421b72fe1c1bc02e1e8
41ee8eb1fa4f630f534a13ed94fddcaa9475ab8b
0cfd13cf20ac8544f23fe95fcc1a298ca67a5004488a14d8a1a3c29fd7bafbb7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/eth_logo.png HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: image/png
content-length: 3757
last-modified: Sat, 04 May 2024 13:37:40 GMT
etag: "66363a24-ead"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

hotconfigs.com/

185.149.120.11

200 OK

95 kB

URL User Request GET HTTP/2
hotconfigs.com/
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
gzip compressed data, from Unix
Size
95 kB (94674 bytes)
Hash
bf6274859c9ee9b41d9950b8128b0430
5c2b01a165276b326a248dfbe070810b5ce0b603
111bcb77263d282aeb3d16af17e5f089e26ef11cd60d8081755ef486a50f24cc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP; Domain=.hotconfigs.com; HttpOnly; Path=/; Expires=Mon, 05-May-2025 06:06:52 GMT
date: Sun, 05 May 2024 06:06:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2

hotconfigs.com/images/linea-logo-mainnet.png

185.149.120.11

200 OK

1.4 kB

URL GET HTTP/2
hotconfigs.com/images/linea-logo-mainnet.png
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1358 bytes)
Hash
b8e1858d50b546b5b352c798994c12d4
ac72ebf692c355db3cf3dbc2439994e3ead23f9f
6dbe7cb9953dea791aba5d796587720c374e88af58d348270809c11fe4f6e056

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/linea-logo-mainnet.png HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:53 GMT
content-type: image/png
content-length: 1358
last-modified: Sat, 04 May 2024 13:37:42 GMT
etag: "66363a26-54e"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.min.css

151.101.1.229

200 OK

4.6 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.min.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://hotconfigs.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (23850)
Size
4.6 kB (4573 bytes)
Hash
d849077e8b4cc93dd5c925165f2cded4
496b8e753292cc78d4964d94eee5c250d53ca13a
ee3512f8c59eaa415d996f68ce467b98f6a0cfe42631bb0196df90dccb04f855

HTTP Headers

GET /npm/sweetalert2@11.7.16/dist/sweetalert2.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 11.7.16
x-jsd-version-type: version
etag: W/"5d2b-SWuOdTKSzHjUlk2U7uXCUNU8oTo"
content-encoding: br
accept-ranges: bytes
date: Sun, 05 May 2024 06:06:53 GMT
age: 3373092
x-served-by: cache-fra-eddf8230076-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4573
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js

151.101.1.229

200 OK

19 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://hotconfigs.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (43691)
Size
19 kB (19370 bytes)
Hash
0aaaa3278d29d8b8d9b3795f60d3b836
519ef68609c1f595ee6a9cbb7660e4c8585a0d41
b030031299100b9d6c6b413bf9e9d712f59695f1384ef548c3f43b0a0faecbfa

HTTP Headers

GET /npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.7.16
x-jsd-version-type: version
etag: W/"10917-UZ72hgnB9ZXuapy7dmDkyFhaDUE"
content-encoding: br
accept-ranges: bytes
date: Sun, 05 May 2024 06:06:53 GMT
age: 4661893
x-served-by: cache-fra-eddf8230055-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 19370
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js

151.101.1.229

200 OK

97 kB

URL GET HTTP/2
cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://hotconfigs.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (43040)
Size
97 kB (96826 bytes)
Hash
ca1104de538caea2d54265fbe90916b4
d6c416e5d153f500f7ac66d25a2b73db45867ad4
10d78c0a5e8664889dc8eb47c72bfa46ad0ed02c70a234be9acdefa27dbb24b0

HTTP Headers

GET /gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"4edeb-1sQW5dFT9QD3rGbSWitz20WGetQ"
content-encoding: br
accept-ranges: bytes
date: Sun, 05 May 2024 06:06:53 GMT
age: 36055
x-served-by: cache-fra-etou8220137-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 96826
X-Firefox-Spdy: h2

hotconfigs.com/css/index.css

185.149.120.11

200 OK

1.7 MB

URL GET HTTP/2
hotconfigs.com/css/index.css
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
Unicode text, UTF-8 text
Size
1.7 MB (1684321 bytes)
Hash
a9c4808e955f4b171cad43b769e9228a
7dd2dc2028fd93d701d27befb2ad4166a85db4ff
cddbc9b92979953c2d5596f2adafa7cd9c1d30b2ffdf4924c82a11c6198c1701

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/index.css HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: text/css
content-length: 1684321
last-modified: Sat, 04 May 2024 13:37:28 GMT
etag: "66363a18-19b361"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js

104.17.245.203

200 OK

100 kB

URL GET HTTP/2
unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js
IP
104.17.245.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hotconfigs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
JavaScript source, ASCII text, with very long lines (18875)
Size
100 kB (100247 bytes)
Hash
7d8348176a8bb75544030d3f2be92d49
03d81ce4b033dd99566148c33f77b56fa37e2135
89e11baee7d5cf5645ec30f3b92208f4497867d4cab79823180d9be9021b79d9

HTTP Headers

GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hotconfigs.com
DNT: 1
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 06:06:53 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "4031b-A9gc5LAz3ZlWYUjDP3e1b6N+ITU"
via: 1.1 fly.io
fly-request-id: 01HWR79EP918HQ801PM3594R8S-arn
cf-cache-status: HIT
age: 384303
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87ee8c11ebf15694-OSL
X-Firefox-Spdy: h2

cdndelivery.pages.dev/web3-ethers.js

188.114.96.1

200 OK

767 kB

URL GET HTTP/2
cdndelivery.pages.dev/web3-ethers.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hotconfigs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcdndelivery.pages.dev
FingerprintFF:3E:93:FA:EB:73:73:41:97:5D:45:2F:1D:E5:E3:44:97:A5:FB:58
ValiditySun, 10 Mar 2024 20:10:44 GMT - Sat, 08 Jun 2024 20:10:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
767 kB (766686 bytes)
Hash
e0c1d043992f8beeef2cc178cfe643d4
fa0714af592c6d3c37d10c7849557399057a1476
21f18c33f0b5b860b54efb011f94ab1f32b8ff3459b12576c92c67277ee0921a

HTTP Headers

GET /web3-ethers.js HTTP/1.1
Host: cdndelivery.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hotconfigs.com
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 06:06:53 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0660d9750fac28bcfdbd530bf6283907"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bAmnp3JSqq0KZuNtgyDWC87SAgE63oH%2FwrNreZjBi%2FAabGqY51uIWqmgYd49YBD%2F2uLedBHa0rNuDZ9kz2Hepz0qzaCAefoBTrSbuui9ZT%2FKY7RzCwQyrDSUyWrm4VYfl2AXQIb2DcQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee8c0deead56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

metamask.io/favicon-32x32.png

185.199.111.153

200 OK

2.2 kB

URL GET HTTP/2
metamask.io/favicon-32x32.png
IP
185.199.111.153:443
ASN
#54113 FASTLY

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjectmetamask.io
Fingerprint57:38:77:EC:4D:50:0A:4E:6C:2E:0A:BD:23:D5:61:5E:66:33:32:56
ValidityTue, 30 Apr 2024 10:14:57 GMT - Mon, 29 Jul 2024 10:14:56 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
91516ee931622cc04ff32e6faab859ee
21509164f65500e8ab82cbbc21be0ec128d0ff70
0d1233a78555b58544d634be26bd0216da1166b2cf64b13fe2b7c9cb6bff1641

HTTP Headers

GET /favicon-32x32.png HTTP/1.1
Host: metamask.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sat, 04 May 2024 18:03:47 GMT
access-control-allow-origin: *
etag: "66367883-8b4"
expires: Sat, 04 May 2024 18:14:07 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 6356:3AEDCF:1D36C4D:1E0EC14:66367897
accept-ranges: bytes
date: Sun, 05 May 2024 06:06:54 GMT
via: 1.1 varnish
age: 509
x-served-by: cache-hel1410020-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1714889214.473078,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: c5b18e27d45c313e179cb88e73c82b820a251a28
content-length: 2228
X-Firefox-Spdy: h2

unpkg.com/@web3modal/ethereum@2.6.2

104.17.245.203

302 Found

4.4 kB

URL GET HTTP/2
unpkg.com/@web3modal/ethereum@2.6.2
IP
104.17.245.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hotconfigs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
ASCII text, with no line terminators
Size
4.4 kB (4365 bytes)
Hash
5b60373f13e136d4a0455830a0327e96
7077c20ca90f799489ab333ebbb06a3cce94916a
337822d18d6de5835300f65b7d55bceea1c8b0f6ddf506c6d6327cc4674188f9

HTTP Headers

GET /@web3modal/ethereum@2.6.2 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hotconfigs.com
DNT: 1
Connection: keep-alive
Referer: https://cdndelivery.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 05 May 2024 06:06:53 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
location: /@web3modal/ethereum@2.6.2/dist/cdn/bundle.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01HWR79E4101DXPWT5M64PD5JC-arn
cf-cache-status: HIT
age: 384306
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87ee8c115ba05694-OSL
X-Firefox-Spdy: h2

hotconfigs.com/encryption.js

185.149.120.11

200 OK

84 kB

URL GET HTTP/2
hotconfigs.com/encryption.js
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
84 kB (83670 bytes)
Hash
81e8c22ea207dece0624d6209db46cce
cc6ab31cc685e11bfc69fda72ad6c295130cf2a7
0a9f0840be094f6fc48b6e8abff400e72e937aba6ceeb6eca4b60db4e8806fd7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /encryption.js HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Sun, 05 May 2024 06:06:52 GMT
content-type: application/javascript
content-length: 83670
last-modified: Sat, 04 May 2024 13:37:30 GMT
etag: "66363a1a-146d6"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

hotconfigs.com/js/jquery-3.6.0.js

185.149.120.11

404 Not Found

276 B

URL GET HTTP/2
hotconfigs.com/js/jquery-3.6.0.js
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
HTML document, ASCII text, with no line terminators
Size
276 B (276 bytes)
Hash
6a7adee3b93b486bb3a44980e64602f1
97a153709cf94b8adc58bb5e08c3f3a9c2bb4f6f
6f7c33c106fdaa25c1bd7f4d5a2b2a6687b82a1bf6a35b89d1e46ee6ad6b03a4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-3.6.0.js HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: ddos-guard
date: Sun, 05 May 2024 06:06:53 GMT
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

hotconfigs.com/js/toastr.min.js

185.149.120.11

404 Not Found

276 B

URL GET HTTP/2
hotconfigs.com/js/toastr.min.js
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
HTML document, ASCII text, with no line terminators
Size
276 B (276 bytes)
Hash
6a7adee3b93b486bb3a44980e64602f1
97a153709cf94b8adc58bb5e08c3f3a9c2bb4f6f
6f7c33c106fdaa25c1bd7f4d5a2b2a6687b82a1bf6a35b89d1e46ee6ad6b03a4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/toastr.min.js HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: ddos-guard
date: Sun, 05 May 2024 06:06:53 GMT
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle.js

104.17.245.203

200 OK

237 B

URL GET HTTP/2
unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle.js
IP
104.17.245.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hotconfigs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
ASCII text, with no line terminators
Size
237 B (237 bytes)
Hash
1d637044576e5dc3a29be6cdf29ee8c6
49e6e7ed7d8109177d1c3c697333e37b47c25d61
a0e7a144bc96c58bcd7286346ced0b997b3d7da2c1707e1e3ae6808181bfe544

HTTP Headers

GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hotconfigs.com
Referer: https://cdndelivery.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 06:06:53 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "ed-roMohOGYS54fwikNAqzVmlSiPV8"
via: 1.1 fly.io
fly-request-id: 01HWQX8E700NN746BED3JT63SZ-arn
cf-cache-status: HIT
age: 394824
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87ee8c117bac5694-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@400;500;700&family=Montserrat:wght@400;500;700&family=Raleway:wght@400;500;700&family=Roboto:wght@400;500;700&display=swap

142.250.74.106

200 OK

25 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@400;500;700&family=Montserrat:wght@400;500;700&family=Raleway:wght@400;500;700&family=Roboto:wght@400;500;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://hotconfigs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
25 kB (25076 bytes)
Hash
6fecda30a359603dcc3d3cf3b7028749
0cc2a3e532d445323028611087dce6c5fb5a6ad6
453e1303e4b318f6d3bdbb546901d68412355084c54b11d37d235d184ad8e862

HTTP Headers

GET /css2?family=Inter:wght@400;500;700&family=Montserrat:wght@400;500;700&family=Raleway:wght@400;500;700&family=Roboto:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 06:06:53 GMT
date: Sun, 05 May 2024 06:06:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hotconfigs.com/js/script.js

185.149.120.11

404 Not Found

276 B

URL GET HTTP/2
hotconfigs.com/js/script.js
IP
185.149.120.11:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://hotconfigs.com/
Certificate
IssuerLet's Encrypt
Subjecthotconfigs.com
Fingerprint61:F1:2E:76:FB:B4:59:76:1A:8A:2E:6F:BC:3F:76:6F:E0:C7:DD:E8
ValiditySat, 04 May 2024 12:37:00 GMT - Fri, 02 Aug 2024 12:36:59 GMT

File type
HTML document, ASCII text, with no line terminators
Size
276 B (276 bytes)
Hash
6a7adee3b93b486bb3a44980e64602f1
97a153709cf94b8adc58bb5e08c3f3a9c2bb4f6f
6f7c33c106fdaa25c1bd7f4d5a2b2a6687b82a1bf6a35b89d1e46ee6ad6b03a4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/script.js HTTP/1.1
Host: hotconfigs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hotconfigs.com/
Cookie: __ddg1_=MnbktPWAQ59aqm3nWgvP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: ddos-guard
date: Sun, 05 May 2024 06:06:53 GMT
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (24)

URL GET HTTP/2

IP

ASN