Report - pandefi-staking.com

Report Overview

Submitted URL
pandefi-staking.com
IP
172.67.163.40
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-17 17:13:23
Access
public
Website Title
Pancakeswap & Cake DeFi
Final URL
pandefi-staking.com/#/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
192

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pandefi-staking.com	unknown	2023-03-22	2023-03-22	2024-04-17	48 kB	6.7 MB	104.21.81.173
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-17	492 B	130 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed
2024-04-17	medium	pandefi-staking.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	pandefi-staking.com/js/web3.min.js	1.4 MB	2023-05-06	2024-04-30
Pretty URL pandefi-staking.com/js/web3.min.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 12:41:05 Last Seen2024-04-30 13:52:36 Times Seen101 Hash a97024ed45bd5eddd01e6a131a06a351 2b951ff9d0a584cf91b46ee1880ccb72a95da0a8 1e7f64a08c20bf2f7c2e95516b6010e823ebedcf4f7ad12d9d85775f30562861 Loading...

	pandefi-staking.com/assets/js/chunk-vendors.f205fc2a.js	357 kB	2023-10-29	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-vendors.f205fc2a.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-29 22:04:24 Last Seen2024-04-19 17:28:07 Times Seen15 Hash 2b0cfdf6deb45a2ad81e392025513146 c3848874e575ae272514c1b3edc9e153d6430cbe c98e5863686089907c1418fa04194c391be79e96fd291113cf7d6048a10d7222 Loading...

	pandefi-staking.com/assets/js/chunk-fb038d66.44a28089.js	4.6 kB	2024-03-30	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-fb038d66.44a28089.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-30 12:07:59 Last Seen2024-04-19 17:28:07 Times Seen12 Hash 9dbf30cbba4adb1d4a3dc7c7d49b2648 22c325b8f2914ad90560369121c10e9b2817e227 6486c3d34fa8f29ae9a723e1bd996544716046362b8bc82ce9eeab079328d0fa Loading...

	pandefi-staking.com/assets/js/chunk-770d9b43.6307dd8d.js	104 B	2023-05-15	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-770d9b43.6307dd8d.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-15 15:23:20 Last Seen2024-04-19 17:28:07 Times Seen15 Hash b31b47f9103f72b7987e9b86d6aac61f e0f693197ed932407f49af384862080feef2ff56 ab484afb8a8b271f822531f1325f5477019529b703df537f55effcda4e531723 Loading...

	pandefi-staking.com/assets/js/chunk-3b730119.a48c7762.js	31 kB	2024-03-30	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-3b730119.a48c7762.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-30 12:07:59 Last Seen2024-04-19 17:28:07 Times Seen10 Hash e6bcbbdb962433af41c898aa7a558e67 df314217451bd79c939cd6d0a3134322ed68ccf6 5b80824a4e3c7335caf8b9572b621548b9332cec2fc9f40b46f16382f48a308c Loading...

	unknown	37 B	2023-04-11	2024-04-30
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-04-30 22:49:05 Times Seen233059 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	pandefi-staking.com/assets/js/index.5256acce.js	351 kB	2024-04-17	2024-04-19
Pretty URL pandefi-staking.com/assets/js/index.5256acce.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 00:05:52 Last Seen2024-04-19 17:28:07 Times Seen12 Hash c052e0787d20b0e6455cfd3b02d47dfc 5ea17a19b072468c0eac4037b80caa65b6719097 1b01cfe3916b5c57bcb36e4d86b349cec12c82897e1c6d89018b60ec1b48e125 Loading...

	pandefi-staking.com/assets/js/chunk-2d0c91a9.8409dbdc.js	55 kB	2024-03-30	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-2d0c91a9.8409dbdc.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-30 12:07:59 Last Seen2024-04-19 17:28:07 Times Seen10 Hash 7137154926c11cfa9ef03f95904a0494 bde4f090ef3865b4c3ded60d8c73ad0732c30be7 69c2a1266097660512da8f301249d17c8c93a72da5f33e98d3a2c30d8489f196 Loading...

	pandefi-staking.com/assets/js/chunk-09f7c2c8.6313560b.js	16 kB	2024-04-17	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-09f7c2c8.6313560b.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 00:05:52 Last Seen2024-04-19 17:28:07 Times Seen8 Hash 5cb59bc6f14f74f2191cde2356c079a1 db473e4e44a462a046c923605ee1d79f4ab4d018 5381c50a8bede519fb6b185ef5105a1e389213e24c1cf47e9b8deefee29864ef Loading...

	pandefi-staking.com/	347 B	2023-05-15	2024-04-19
Pretty URL pandefi-staking.com/ IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-15 15:23:19 Last Seen2024-04-19 17:28:07 Times Seen18 Hash 9308be4698d5ef38d0a6aaa5834ede57 e49fa29c35a34606061c3dee1ea3ff97474467bc ffbc56d9e1cb899b190f74aef9b7217931b7a1ad271a6e83d0bafd0e4ef35120 Loading...

	pandefi-staking.com/assets/js/chunk-a72cdb18.84ae5c6b.js	510 kB	2024-04-17	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-a72cdb18.84ae5c6b.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 00:05:52 Last Seen2024-04-19 17:28:07 Times Seen11 Hash deadf4119240ac2fb15a28180dab56e7 2d5d6ceb7320f6a853aa82708b8c42ce16e3b0b9 11a7879ea74bb70072dafd817760e00a7eb3c1aa7ea23363d48eb8cd00959371 Loading...

	pandefi-staking.com/assets/js/chunk-452abe5c.2e34421c.js	19 kB	2024-04-17	2024-04-19
Pretty URL pandefi-staking.com/assets/js/chunk-452abe5c.2e34421c.js IP 104.21.81.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 00:05:52 Last Seen2024-04-19 17:28:07 Times Seen9 Hash 92880a5faae6ea0afcefe42ca8644e7b 0d2824b4ab4c7a93dd6b600eec25986493dde831 cb28d12daad49a9f2cefedc10937de203b6877f8b06d125402d308a61953ab97 Loading...

HTTP Transactions (97)

URL IP Response Size

pandefi-staking.com/assets/css/chunk-91450588.501ef72f.css

104.21.81.173

200 OK

319 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-91450588.501ef72f.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (1085), with no line terminators
Size
319 kB (318736 bytes)
Hash
285b44218ec031e4d33e08478d13f8b8
b94b8ffd728534a84d9aa92c9a21e62a769c2b5a
755ef7a9edb3952baaabe31db6babf59ed5d291c9dbb31b7745c07a44e3b6284

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-91450588.501ef72f.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1085-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qGq066yvIR157hw5LxjvYrQ7nNriUqQbsN8RKOEH0JyKpXKq5VjP14UpQkRXC9p43DVO5mfn2x9xwg8asceHQxbk%2FCeFPTOoK0jY0uFbtqRKOWG%2BrkJtI1upV5RamcxEiu91uhdB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0aea79abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/favicon.png?v=2

104.21.81.173

200 OK

80 kB

URL GET HTTP/3
pandefi-staking.com/favicon.png?v=2
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced
Size
80 kB (80522 bytes)
Hash
b1368e4629697aa2e759a435e734e388
dfdcb102553667ac7cfc3d322ec95787414b5550
24fe990e86a3fcd91dd015c30e7d502feeff13f3b672c591723ce751bbe378e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.png?v=2 HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"2321-1681125494000"
last-modified: Mon, 10 Apr 2023 11:18:14 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BiCkctLhJNrm%2BRL65aEGSdbobqjCOllKXdserBrllw3i6xSVdhoe3ge42fcPeB3uEcLlBymKVLV2ZvKPQudxIwmr5wcd9WF3cNB7O0QZG2mZ7YwKLRYDPhKMZeZcQkVADiaSealK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0afdfda9abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-vendors.be622a32.css

104.21.81.173

200 OK

289 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-vendors.be622a32.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
289 kB (288595 bytes)
Hash
9b9a0820007e2b9fbd00a6f82dd69a2c
c3a7d7c17a552a3179172aadf1354db161b450ad
7c4cb3a5e03d7212bbe5c5365de15a70041c19113159f45a3f0dd10db3ece511

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-vendors.be622a32.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:56 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"71420-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cHy1goasEO5pZPBk9h0eB%2F0J6GLCDcPz16GDwpGYqqdWyc1AKlRACNUD%2BidRMAG%2BwOeekCf7gZbL90MtI64kaCoTGL1e3bTuHjKxGsJzJrIvIJ6x3ZhVxPyZVHw4U3NGkMKRP%2B93"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0af2bd46abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-4e58b970.f434949d.css

104.21.81.173

200 OK

172 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-4e58b970.f434949d.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (2403), with no line terminators
Size
172 kB (171991 bytes)
Hash
27249b674fb7d58d46985cb855b2a597
86e4cd1f3a7ba3f373244e38dc2b12b0630733a5
094e326fafceabef2b3e0e4d74893282e15c6665b3c16d9ab384e771e06555ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-4e58b970.f434949d.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"2403-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=btoVTY7LtkO4pEb2hftx5NQd1GKElBnCXEgDsOI3XWuGeXNA5Bkq82%2FRYMXBFkfbX6ur%2FX1JAIiIQZbjmmE0rlyJ1IBxPnd0xdhTURDtp%2BYKikJogb%2Fd%2F3G%2F%2Fn2FT1%2BwuSqRev1a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b05f89dabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Fredoka+One&family=Montserrat:wght@400;600;700;800;900&display=swap

142.250.74.106

200 OK

130 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Fredoka+One&family=Montserrat:wght@400;600;700;800;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
gzip compressed data, max compression
Size
130 kB (129492 bytes)
Hash
a254e67b173cd5b55e448ee96221562e
e8dc8159acb2e1814ff8608b84c11f1b8b9e536a
e4b19ea3e0917c18a882fd8939786a231b17ed10784846b0b494c57b5eff4a15

HTTP Headers

GET /css2?family=Fredoka+One&family=Montserrat:wght@400;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 17:12:55 GMT
date: Wed, 17 Apr 2024 17:12:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pandefi-staking.com/assets/css/chunk-3b730119.ea6af633.css

104.21.81.173

200 OK

23 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-3b730119.ea6af633.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (1296), with no line terminators
Size
23 kB (23258 bytes)
Hash
462215b0c17def69b1d8775dd39084b8
3cc13de879caaca38e6ebe2ccda50909feae0d30
cd405cf2cd1f500aa91a239d510b4c388524a997b0b8f67cdd23edb736b2a39d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-3b730119.ea6af633.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1296-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DTrCnxnwcsP4oU%2BPozV1BMnne3UzDOMqUFFlZs%2Br13cixh5qAC4EC%2FFnhVMVpeETCghbiv7Il%2FkshYFKGlZigHgF%2FOtVC7haWRWWEZ7ciXeagu50S5jLpljSxrHJweO1ReEruXnk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b01af10abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-774ac8cd.dc369b16.js

104.21.81.173

200 OK

6.2 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-774ac8cd.dc369b16.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
6.2 kB (6160 bytes)
Hash
73dda9114dae7d878d3104ca0eb24bf7
5de9aa2f7f9d09a628208c185d37849a507f7526
8827a7caff734301d6508fc2b00f8f8026ed3844933c360a85e83a6edb717937

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-774ac8cd.dc369b16.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
etag: W/"104-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QGwTtQWCmynov9sMnc3jDLdwh3jtGB2Kg43RZOTX5tzhZkG4h1u8QIFt%2FXObqZFNt7wL%2BswlXqwSedRDK8XoxJ5xkT7jrdMDIRi3Ub1ini7eLBiAPNmEUijpBdqFxsBQfMWza3sC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b217beaabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-74a23f77.0e1185f1.css

104.21.81.173

200 OK

200 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-74a23f77.0e1185f1.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (18680), with no line terminators
Size
200 kB (199932 bytes)
Hash
300d4d09e11a3bc1c324e88140d269bc
847cedd5aed6c39754af1361ef9c053c83120838
6ef43cc5880583468de0304d015d40f52c8071482e2ec470464ecc586bec1d78

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-74a23f77.0e1185f1.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"18680-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oZXh4Z7%2B58h2ngnhhz50IV6qyByHl3eCLK8RYsF%2F5CbL%2F2Bwi7HhIDzCr72jkpGNf%2B%2Bqq%2F1JWlCHS%2BNqrpYa8MWhzMsq17Oa9uyvuUJYbcW6fp4M1ycWwBVn1aYmpJU13RxAzS1A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0618d6abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-76f08b24.1280f150.js

104.21.81.173

200 OK

10 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-76f08b24.1280f150.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
10 kB (10502 bytes)
Hash
daa2086c38cfd4b705371e16861b75d9
9aaba71af296bb6b48fef4c825c9df4397176aa9
dd5a7c6a7fae5e1676d937b2aa7601eafe747de7260e689388d83ae827ef5f82

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-76f08b24.1280f150.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
etag: W/"104-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LWruwveIw%2F31k8TV%2BcQOtmc0NYAfMl%2B9n%2FK6vf0lfxL091eKbWiYpCv5aDsceQlbai85LDGOBUmNtgNoM7yDMyNbf1VVCpjFBzsyTlAiI6b6DJ5q64juxOpkI7CoTmSbT%2F5EPbbM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b1e5c30abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0c91a9.8409dbdc.js

104.21.81.173

200 OK

55 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0c91a9.8409dbdc.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
55 kB (55084 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0c91a9.8409dbdc.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"55084-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 3
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gYILj1OlALjKcA84f3htLDzL3cDGHZTRw0ZWJ%2BVIM1rnZXOPr6N3GUdsdlC1IWgSXivCubAnP3eVB3ZlwMXigSKkU7UOsP9EklBu9vof4NN3v2MGQSsqpv30pryUS9QgTSzFdC8H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b167addabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-46a42536.fedb4861.js

104.21.81.173

200 OK

11 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-46a42536.fedb4861.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (11098), with no line terminators
Size
11 kB (11098 bytes)
Hash
eac11a3b1a7b85590026dc3757d2188d
b7f08fe77a0013fcf2fbaf014998e7b436d191ec
38dc91f5e849314b5e16b6a46c34027848233ff9c62830fb2a1e04486d50ee76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-46a42536.fedb4861.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"11098-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U7URI9TA69tJqvvYSQUIncUIj%2BR25zvcwHZOX6eiKTxFDq6%2BLFQ2nXDd1ZSWdFmN4jjsdmh4ZQatgiX9P%2FJLDe8YMM8FBPOmuHZNOeYsxoUdg%2FuCN0XWffPHeLuT9itWPYU2KPR4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b1959c1abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-770d9b43.6307dd8d.js

104.21.81.173

200 OK

104 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-770d9b43.6307dd8d.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
152dc321cef9fa84138c103b46582d90
332600d730a7a59eb271c3fe575b746d36ec809f
71ae99c9aa26e94c332df2bd9839d70c9c7c17055c932bc96eabe6727116b439

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-770d9b43.6307dd8d.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
etag: W/"104-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yFZptryHNBHoZYtWlBn4KObqgizlYvkbwrdqot%2BhNJPer%2F6pdcBfKOHBUgO3Ojr5g%2BDowv5OxNCts4PI%2FO3AokqZVMwalgyR%2BKH29eDDGGLimVg9tX5hX61vMhB3%2B2Dtus6%2FhQpG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b216bcbabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-91450588.89cda124.js

104.21.81.173

200 OK

19 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-91450588.89cda124.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
19 kB (18709 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-91450588.89cda124.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"18709-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cXAKdXHIOuyDn5fmX0SNWsAMg4pdYJsDE0sNHAgSS0ke02A%2By22cCHO42l5NfB%2BPd2TLwh2hAnCHq4SQTqWYkNUdq3K%2FNzLuVkxFMRIH0MmzvFm9QzYP00olnwSvP7UicfBk8Lcs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b21ac88abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0aeba7.1e6257a9.js

104.21.81.173

200 OK

10 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0aeba7.1e6257a9.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (10186), with no line terminators
Size
10 kB (10186 bytes)
Hash
cdb72f6430bbf5bedc0b47bb44f33125
8642f24a1222ecb1a67e0dfc6f6013e33fb134d5
b89e05b3ec51847ddba058b5a65fc3b39eea6d4a08dc5dbdba944064d0120e82

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0aeba7.1e6257a9.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"10186-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=945oIG9OvIDisRb5L3jB1BzAFs3dyB3YemTZ8gbzr%2FFijQrNP2VDXgjOEUYcd8PhmvYGzB5wY1gMYRg1YzGF3TICJSr5%2Bby7mKecAd8XrB7V6CS7Kz4RHC9xANAMRsvg5JLOPdZQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b11b84fabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-00856819.f434949d.css

104.21.81.173

200 OK

2.4 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-00856819.f434949d.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (2403), with no line terminators
Size
2.4 kB (2403 bytes)
Hash
27249b674fb7d58d46985cb855b2a597
86e4cd1f3a7ba3f373244e38dc2b12b0630733a5
094e326fafceabef2b3e0e4d74893282e15c6665b3c16d9ab384e771e06555ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-00856819.f434949d.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"2403-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o1kCZVV1pP4rCHLp5NiyyTFI1xjYbcP8FyFevRM958Q9B9%2Bai3xHRSGpxFNKMJU0fJpR%2Bl0SV4FYkWhMIhm2oM3Rzk6iwIV7IP4iEsVa75HXxTejI2I0hyrgPdooyAuFw%2Bpkudbn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b015e20abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-0397143c.8ed9e18a.js

104.21.81.173

200 OK

14 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-0397143c.8ed9e18a.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
14 kB (13946 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-0397143c.8ed9e18a.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"13946-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w2JXuEBVicZMvklcSUJWBetyzcvKxXbKtyYfM0a6O1XTAM2cmoVsJbJKP%2FmtwiQST2Ij%2FPFoCp8tFVZgwNjzZlD4gvcH8XaRJPzfrwaBBCWyMMgavDAV4%2FYyVq%2BFZ3gXH42RR6i0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0c4d1eabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/uploadFile/20231206/20231206004430.jpg

104.21.81.173

200 OK

78 kB

URL GET HTTP/3
pandefi-staking.com/uploadFile/20231206/20231206004430.jpg
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3
Size
78 kB (77845 bytes)
Hash
23ce1c0a456394edcb4e46480a20776a
e7f487c9bbaff55518f389607e95f99ff1694f7c
a8144ace1c763be20ba3bdb191187162e30fc87e4958e8b5df6ff7e58a757643

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploadFile/20231206/20231206004430.jpg HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: image/jpeg
content-length: 77845
last-modified: Tue, 05 Dec 2023 16:44:30 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QO%2F06I43qddQyDjx6IARRjkZZKT0LQb%2F45cvZTQzV%2Bdd7%2FRKdfSqWFR7HpWjp4xvkwgi9W2ewZ0fj8uSuJgppOFMBvVcvszTHVGi0PBGgx4VzeeSRZ1ney53dY%2FhgzzZbXDBeiq%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b109dceabdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-74adac00.452e3aec.css

104.21.81.173

200 OK

46 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-74adac00.452e3aec.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (45707), with no line terminators
Size
46 kB (45707 bytes)
Hash
070c75d6a98386699ba87e7e16e9597a
9dcd9d19d727d9ded2761df1a6333259c54fc499
07333514039d378277b96d5960361b57bd1b75e95f9655c88a55ef3485b5423a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-74adac00.452e3aec.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"45707-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NoFdmtQeiLzF4nhLqL19L4pIn16NBQZI7Gpi7j3n%2FU%2FeCODTgo2IuNIL7ERAG5vvo8AB%2Fkj1a1mGKZpQYGvUhl95XZGSkRLUSwD%2FwVK7GyGp95nBXTb1Olmv5qmgHfSAH2rQ9TBt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b064951abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-08d649d4.ec44a27a.js

104.21.81.173

200 OK

4.7 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-08d649d4.ec44a27a.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (4883), with no line terminators
Size
4.7 kB (4657 bytes)
Hash
681fc8391d5df49857e64c8f9c22ceda
951978eaf31455eb0681ecaab276412a96948654
f3f91977abedbc11492d038a2b1d1a4c065f94182954da96c3bf984837a2a8c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-08d649d4.ec44a27a.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4657-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BYQBrkDTFmJdHh4cIe8cSWO2iVfJdmse2Gq7BHGFpQlUqg4%2BTkNZleSg%2BMI%2FPgRqNBaunnT%2BUEcK1H6xzdNalmRfOzVNi20OB6AE2ZIBjaoV0dEGnDuSsclJeev6e0hW%2BMayQF0y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0c5d3aabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/btn_peckshield.0fd3df38.png

104.21.81.173

200 OK

12 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/btn_peckshield.0fd3df38.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 350 x 75, 8-bit/color RGBA, non-interlaced
Size
12 kB (12084 bytes)
Hash
0fd3df3831e00f3ef6802b4ccde5c898
d4bcd003167e2dcb4f867b3d698c37021121dbd6
8734de1d6b938c2201055fb7f02aca2d9686ad9915772e240729d389d1596d80

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/btn_peckshield.0fd3df38.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"12084-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sixMVFjk544dKvJJ%2BqrfCN%2BLCJIFhACH1NqV7jOGH1TNHZT%2FYGcDby%2BS9zRhxle269zCQ0u3FFMxYMOwGQo%2FjfccVFNzelhlBpiZFsTp9zYB0iMmpY5UNQnNNqjOSQxyULC7Kc5B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b10be00abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-1dac3aa2.b0c7e319.css

104.21.81.173

200 OK

90 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-1dac3aa2.b0c7e319.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
90 kB (90423 bytes)
Hash
15690f07d8ab65d6ccb50c01ace8456c
fcac354e4469af95800610a7897769dcaa1af1b1
73ed0102a872d1a4215ffeaba46c40ac4a604f3b769d7d0682878921d5380859

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-1dac3aa2.b0c7e319.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"90423-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nhgjhHyy6T5%2Fl1hE6pzwtXiNCFlvqU8VcbcD3IiZOKLM6beShyd1N1xbJABmkVUsGP5YygbBjKn9wZipJGSLYLaXpFmrNeJru7pZ3dRQI1AwKCxzn2QJrGvDd5vO%2F5%2FFrqeOwEK1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b015e35abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-74adac00.c4ce1239.js

104.21.81.173

200 OK

106 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-74adac00.c4ce1239.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
106 B (106 bytes)
Hash
a342c4432b303d000d2c329ad1a9ce8f
c7bee0f4e858ad8b9014882381dbb3a58ad4a7f0
3eee204dfee11e27b94ffaddd269be3bcc4e159a79a68047f39d1030805007d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-74adac00.c4ce1239.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
etag: W/"106-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yvTKxJJeLBDs%2BzeiDbef5qDB47FJl0jtxmOe2Hx%2BvXC09OnwHgrG%2BgiCL%2B4yWUMdrfec%2BEgbK8Z2YSRPOQ0ao%2BOYFtxTPJV9XKfluNxY5Xmz%2BC4M5GnH3E2iKJR8t9VuawNJpXor"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b1e2bceabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-3b730119.a48c7762.js

104.21.81.173

200 OK

31 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-3b730119.a48c7762.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
31 kB (31138 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-3b730119.a48c7762.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"31138-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UC4dur1le1nOHxlQEyyLnTULuRxzVH%2B5suJw1qFY75yINbuMv8XUNfwaqBmVj8a7t0avzoWbBJfTnthm6%2B%2FSlczx9Gmn3hRDXiGedcFxgmv7Edwkt%2FglRmDPlCNxtz4SWA4vz3qR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b01af16abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-00856819.cc335583.js

104.21.81.173

200 OK

26 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-00856819.cc335583.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (25568), with no line terminators
Size
26 kB (25568 bytes)
Hash
acf3cf97ddde1c5d685e23401f0766e8
1199e2f659f3cb2e988514f58d265b10c1c9b363
f81a1e0717756eb41c0a704b3afc12db0dffc8ba9021cb6f95e6b0bcaf9598d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-00856819.cc335583.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"25568-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QsEKQSQvqIOXxn0Xh0eNChMlQmNmcJQiAmcL2MUQPDuxiYjUEwm9M8gKAMoxIztNeMzwgCFzBBthaIyL0%2FE9zNyABQ7IFMdRNeCjX7zeKCNPIbmTrI1FQt0d60gLIJ5teZd5JfVg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0b2afbabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-fb038d66.44a28089.js

104.21.81.173

200 OK

4.6 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-fb038d66.44a28089.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (5050), with no line terminators
Size
4.6 kB (4556 bytes)
Hash
e856a5743e4ee0d6f31c3e16dec1addc
b3a861358a85a46de71a7b44b93f89042d952ece
a435c96686136066ceb45e82fe561a7afeff23a6fd4d1577bf596ea01281e3e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-fb038d66.44a28089.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:57 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4556-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t8LrQ5XU8mW%2B21H41uMiGKEzic6tfTmeXxkfAi1JCjgvPdhjhrCiVVgceJ%2BzpryT9e8dnDDftuQsIhV4NswqR1OLdxYKFBjTI8hCcxxVASsHHh29WFHSO5oQ18xtfBl5eQjSN%2BP7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0afc7a68abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-452abe5c.2e34421c.js

104.21.81.173

200 OK

19 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-452abe5c.2e34421c.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
19 kB (19222 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-452abe5c.2e34421c.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"19222-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SoU4dDOqUheEm%2FqgTNGoHa8NT6CjDu69FpAzdSfH5Hj1uSYZS8%2FahYEGvu7AcwabG6Z3hwxt%2Flm8wlAVCwNccpC6D9e%2BsEd8vbPkx%2Beeo5mJME%2FhjKMZEtE5va6kBBtkkYFtX3bA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b089dfdabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-74a24a7c.26d8da81.css

104.21.81.173

200 OK

76 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-74a24a7c.26d8da81.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
76 kB (76426 bytes)
Hash
682373089b94280c5ca618d58feec172
42263d3a5f82cea9e3c5ed49813673dfe9d04639
47ecca8041d90e036667f8714bed826b6f823fa0c3a7e449428b62ca360e2b88

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-74a24a7c.26d8da81.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"76426-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BNygCnlAnVYuDaQ4L2ZCtT%2F5N9u42mRvaxO0gl1wUkdRn2NFZqDk7Q5HwBIwZUpy%2BiHxARvVnz9WUAEkFu%2BostFphxokKuTq8g8tWvP9nQzdWDMyySZhkg5ID7KaiFCr5WrOAHUY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0618d9abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2ed9aa7b.ad921a6a.js

104.21.81.173

200 OK

54 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2ed9aa7b.ad921a6a.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
54 kB (54201 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2ed9aa7b.ad921a6a.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"54201-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HFiTEmOHIomA%2FXwmn%2FVZVvF2Ao76xffm42hzB12rsnqkMtSP3J9Vy9ajcf7Z6owG9RWrmTOM1lLdZ3xp0AF44X0xrVhXJFKx9JI0M06owFrUCVfzHU5WA6kzmHWXS3Pez%2BhOLDtV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b17ce1cabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0c8d59.8fd5413c.js

104.21.81.173

200 OK

4.7 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0c8d59.8fd5413c.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (5002), with no line terminators
Size
4.7 kB (4700 bytes)
Hash
724327dad73e532cb0fcd8535cc90593
3fa9f846c5e4aa746fc47266f68f544806140533
56aa28a908a4cba8bc543a00351428138ab2f1d3dcb0e79057f1c192690b0e61

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0c8d59.8fd5413c.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4700-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GJFi4lu41S7xn2PkUdlo4m7nneuAgV4hGsRnT9GbxQ2OLSqgW7S6cfpPNF6cpIum0xsNRvO%2FtP%2BCLrS9TETGdhwk6agYvLeVNbZ5Lh4mx0FpOCwtu7AH9fZoHqwQVi5%2B5ADE6FeF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b164a8fabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/btn_slowmist.9a3d5947.png

104.21.81.173

200 OK

14 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/btn_slowmist.9a3d5947.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 350 x 75, 8-bit/color RGBA, non-interlaced
Size
14 kB (14065 bytes)
Hash
9a3d59470045fbe70b022be07b7d2785
5e589551481694de6c47da9af1f29d8c6540fa87
d11e8d7a6aab0f90c713ce23ee7ee8bfa21514436059b9a050cc6bf2d6a1780c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/btn_slowmist.9a3d5947.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"14065-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3SPf5exkuYDhcPQiq3xD05OnQvZKn8sGan9tHCrQ42wYXyrOUJRGtU1%2FxMltr2pJNmSifgmTF7eZRJKaTCq59PSZYsGqSetI2dUilmOSpWiqS1Xw0kHwgHnUA9p07ss6KUwmokKu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b10be02abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-747742d4.ebca4d9b.js

104.21.81.173

200 OK

106 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-747742d4.ebca4d9b.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
106 B (106 bytes)
Hash
e14296dd48a504ac2345e99dfdba5a72
8847395abf951901d3d692f1e8243b0a009f0de3
9ee9856ba906675415cf41dada50ab197a15678804c83bb113022cd1f6135631

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-747742d4.ebca4d9b.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
etag: W/"106-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ki%2BDxcnqUlTODr6y5dq4FjDInoYIrT%2BqIHghKA582CejvnxJUoD%2F8QM3s4KfZvyr%2FW2vMrZaUqaacuJKMYNx3Q60Dvi93jEIicT29QgS3Cua3C%2BltRgvjsdgKaxqMQ%2BSRA7MeagI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b1ca8a9abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css

104.21.81.173

200 OK

77 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (77215 bytes)
Hash
3745345e92852fe17691be351b78169a
baca1dc0b943db53e043639c9b888b5c2b278e4e
bec9389457cccc4f24e92e532025b1a9df12f0a4133880412d86d8a94cf80807

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-770d9b43.f76bd6fa.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"77215-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J9GVvExEE2tKD7aBOKVTBJTQxrsMDFTIbY7zUUN1Lw8lwRfDeBbwT2x%2Bv4uLuhfWScHR1QEDZiHhTMWTM4GIB%2F7jVDzGt2ewYV6u7G7ty8SJB3JAuLTPAizqfXcLQNg8HOIfBn25"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0ada54abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0a555d.75519453.js

104.21.81.173

200 OK

52 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0a555d.75519453.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
52 kB (52423 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0a555d.75519453.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"52423-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CyxjYqvOB7jWf0v7PclTmTQObcKNldFkVGyvp3lScraCm6wziV%2FfDvRVRHif71gvxQ1osVyOnumNN0LqWSv95v7S2kOhHjdcQ%2Bq%2FCDt0xb31CwJLDsIWxtHbVms3fJ4gEgPDVgwJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b119813abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0ba4bf.2f3d238c.js

104.21.81.173

200 OK

25 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0ba4bf.2f3d238c.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
25 kB (25239 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0ba4bf.2f3d238c.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"25239-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OliHi0jj4W1gcAV3IuHR%2Fw7yHvB9bwmzvbs574neGrPRTGVzffbFleAvivkPWBDj9cUGnizQm4dVqztq%2FjJDKTK8wqb4GmPTcM%2BakBzC860Q9Tvgp%2B43%2BjiwWn6xpIWjPOxUtnnl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b132b2dabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/favicon7.png?v=2

104.21.81.173

200 OK

8.7 kB

URL GET HTTP/3
pandefi-staking.com/favicon7.png?v=2
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
8.7 kB (8689 bytes)
Hash
cd851f8135cf1095189909e3e8cc9342
5fd2da1926537ba60a2a79c089f296da528c168a
537859ce8d567d1b128988b94709f6b620faf4929e68cb28ca5c44c1968ac606

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon7.png?v=2 HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:04 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"8689-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0UFkVCinzV%2BRliWDtTEOJ5OGh54KA6AWszzO01VVO2VZFUDE81dzGwyvlBgbZfEvPEY1ozdVJ1ff5o2337EeF9G1VVPP6WwkIw8Y8JPKW1%2F0AqEIZWXuy7dkzDcxTzc9Th4Q3fQF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b294cd1abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/

104.21.81.173

200 OK

6.5 kB

URL User Request GET HTTP/2
pandefi-staking.com/
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
HTML document, ASCII text, with very long lines (6488), with no line terminators
Size
6.5 kB (6464 bytes)
Hash
7800cc462cc449f3b1a00493746df4c1
337bdda4f65dbbb882d199bf3f9d650eafd9ae60
55a7cf3d4c8250370edb5f6a8e7de59fbdff8d446fa2688b316e9ad3d0925ffd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:12:55 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YSLKl1BL%2Bca0NwwK1uPWirP3rpbWm5qQjWl8l9oCgJSH82qSu%2B064guBRUAGGKcgUJOoKuafVNK4JEtvup7qBFxTtBzuWYarTnZx84TPgGj%2B2Y9dMmBpktEa98DIZibfLSk87XIc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0aecee449305-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pandefi-staking.com/assets/css/chunk-74b6eb24.8ee5820a.css

104.21.81.173

200 OK

44 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-74b6eb24.8ee5820a.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (43722), with no line terminators
Size
44 kB (43722 bytes)
Hash
dcd8aab3f09f6b9cd013b4834eac801b
26d8ac3a323b250e4abe0396e1ece5af694c7136
28001f80112e7f8046e99b1d89dc2d9cf487e2e4950e1a335c6c1e5078b3e010

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-74b6eb24.8ee5820a.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"43722-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bwRkxcv5Q9pZep8UtldsCiirg6xpaZSGRtsLo%2F8QDJ4JUMYuYRbRyTxkosE58ejd9xWFCY2r2eY4clbdtwM4igolJGv1wuxhasN%2FEqwnNyxzrFaPPucNAHMg198CWszFDJEFG3Kx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b079c28abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-76f08b24.b3c0784b.css

104.21.81.173

200 OK

32 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-76f08b24.b3c0784b.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (31630), with no line terminators
Size
32 kB (31630 bytes)
Hash
eb85be849aa11d7ddc127f83b1831fd6
b2d14df1fb4ec378a45695c7d2bed743a3694049
1c3d48e29f4ed80a78b988ae2a009eeeb89be8c2b2fda0280c39383b83ad98ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-76f08b24.b3c0784b.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"31630-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vNSxXAUuZzX1TGf3oTjExbpq0%2F7TQZZFg7dybpMHnFrNC2jpsyRXW8lq2QlBpN1RiRPQzSZpHwbZIcf4MUV2ZoYINy4rB%2BEMC%2BYCrv8uhjb7bB2qFZ2Tsla6SeHOwOHh%2Bq%2FXl8LV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0aba31abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/api/config

104.21.81.173

200 OK

36 kB

URL POST HTTP/3
pandefi-staking.com/api/config
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
36 kB (35531 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/config HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate, br
lang: en-US
Content-Type: application/json
Content-Length: 58
Origin: https://pandefi-staking.com
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:57 GMT
content-type: application/json;charset=UTF-8
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://pandefi-staking.com, *
access-control-allow-credentials: true
set-cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE; Path=/; HttpOnly
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZVbmwhXVY9iqeTwPlNAvouqO%2F8jw0QHpy5La1qT0XAV%2FH35JUqPdtlfBytQS1OQb03KDTcWrrT6ERJh4Sur5wmbWIX6JLPjUd%2Fgaqn8%2BQsdu0c2LIcizHC7PXb2VDtApfRKQD9%2BP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0afcbae3abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-4e2bf731.758b0f39.js

104.21.81.173

200 OK

27 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-4e2bf731.758b0f39.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
27 kB (26814 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-4e2bf731.758b0f39.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"26814-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7IfvwSaSWZDg%2FZpF4ID3vywDOaB1SH4PCEp%2B9Uo0eIcxXE1d4IcalPy5siNnsEHkQO4uDyVVcp4sS5g28z2MME6aZRrAcYCI3h3Khhf49a1zoIS5cdnzGV2nQEFVApLIJI8rgvST"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b199a24abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-74b6eb24.5e2dcac3.js

104.21.81.173

200 OK

106 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-74b6eb24.5e2dcac3.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
106 B (106 bytes)
Hash
b47b922b07b7545f68e8c52cd62652be
6e8b2160e83fc4ea811383e59425f01f9c676fbe
11dda11f4b4bd1ae4ce002633f19c709cb0ab26f81673fb87b0c42409f47fc18

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-74b6eb24.5e2dcac3.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
etag: W/"106-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lSx5nQpbl4dDgiFJlyfdfKU0E5rIQNbhgDwEgAp4zG4o5uRoeKfC5UkgL9ZHffCymz2kOjSwUm5q3s%2FtCB9JmrxXdHOE%2FwqMQ4xszg8iowsTW3VIrB7gBHEqosay482qPdM%2Bohnx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b1e4c08abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-a2deb08c.cb1d9660.js

104.21.81.173

200 OK

28 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-a2deb08c.cb1d9660.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
28 kB (27785 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-a2deb08c.cb1d9660.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"27785-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=izRYL01wIDTfkbhYXgpHnjVGy5WtqIKPFIq8TyiLZ6NX0FQs2Zsy0OkBzYMf751BXGOMJws8F2LpT1QXqGe2K9TYznD3697F%2B0gfVrUubNOg8MjCPNZTHt2FC09MvCuzrfIE2TgJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b227e0fabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/floatingWindow4.dc66c349.png

104.21.81.173

200 OK

11 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/floatingWindow4.dc66c349.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Size
11 kB (11164 bytes)
Hash
dc66c34947d1eafd2df91de57cbfc9b0
4fd2d71cd2cfba17a3e32ae94f65089c48c79e6c
630a4272efa187512f669bfd38475695bd56cc448e15b5487451ddf8af8b59f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/floatingWindow4.dc66c349.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/index.97fbe7d0.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"11164-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FZc%2BnletPJMGf4ZhO6pY6q75JgqDU6pXG05U7YBYuH%2BMjmm7w9%2Fcyhr%2F0PkrtqISAO9Ug46oUrx%2Bx453v6bEReFk00sAjkvlQR77m74kTsIeMsCjU7l861TL9%2Bfv02kSuR4lhjYD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0d8fafabdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-a72cdb18.84ae5c6b.js

104.21.81.173

200 OK

510 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-a72cdb18.84ae5c6b.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
510 kB (509613 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-a72cdb18.84ae5c6b.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"509613-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FMbdib98%2F3LkQ7fdmohSfHlW9TBMo2pqOXc%2BUyrECQbCH0%2BZ0m8OfZj1ZBJ73ggR6t6IOckHW%2FRdfSYIs8HzS9l9ZMALz06RPeKqrElEvviHO91QeesTkLj1jc%2BcvRBEiPSKTCxK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b089dfcabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/api/plan/planOPtionsList

104.21.81.173

200 OK

207 B

URL POST HTTP/3
pandefi-staking.com/api/plan/planOPtionsList
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Size
207 B (207 bytes)
Hash
07e09d6e11b9a2c5171f51a9077ad35c
b0d9c0f7b000f3bab4318b00f76f7cf33c2ddbf6
6103356246a0e14a01f0642187325b6b32db0a83f27ede49df66fc349a29b40c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/plan/planOPtionsList HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate, br
lang: en-US
Content-Type: application/json
Content-Length: 58
Origin: https://pandefi-staking.com
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: application/json;charset=UTF-8
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://pandefi-staking.com, *
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=91L666rMeCL60yVUGsWB8%2FdDvZmy8xEfLpaVu0jhrRlZV4aZww9QNSmLzTajEpGhhX95XsHCuFC74y%2B8CkJkX3Kbg9xLSxbFRj%2BU3CmExGwuYR6RYId3rSLfwBlqT9UYMyfENEZ2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b08ce52abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-fb038d66.44a28089.js

104.21.81.173

200 OK

4.6 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-fb038d66.44a28089.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (5050), with no line terminators
Size
4.6 kB (4556 bytes)
Hash
e856a5743e4ee0d6f31c3e16dec1addc
b3a861358a85a46de71a7b44b93f89042d952ece
a435c96686136066ceb45e82fe561a7afeff23a6fd4d1577bf596ea01281e3e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-fb038d66.44a28089.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4556-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 6
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aj7w8pUGikWg9jqZZQ%2BfYPNNAvfgOVjFPd7gRs1GKuvfWuUyDBWZoL7kn16eeUSmYHa2Ib3aCk8AwTpg3swu8OpxdZitWp%2FaIC4EZk0PKJvQP7tzfKLBl%2FQWPEoK%2F%2BrEsEE5qPeY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b261d86abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/js/web3.min.js

104.21.81.173

200 OK

1.4 MB

URL GET HTTP/3
pandefi-staking.com/js/web3.min.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
1.4 MB (1412199 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/web3.min.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:56 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1412199-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tzUNETrCJSXU9z07gf%2BmrcQwv1pMURxAqPTE4%2F8U1zBX288FPDvhL%2Fl2gW6dInc0VS2Qez9TFrKVHWINl5WW5g1RHVesD9T%2FywrgedkRHGUkjU05fbfq0HEQN2Tik5T12PAjRM5K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0af2bd40abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-1dac3aa2.2596ab60.js

104.21.81.173

200 OK

106 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-1dac3aa2.2596ab60.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
106 B (106 bytes)
Hash
ada431e9567aa9d994dd47249e96b94d
e6152aaa36c4428305fa1cdeeff3c0b039f1ed75
85bc7cdb3c71e43ff0b99cf9f99e53289ea60ba9b219a5bf5a101e3c62af0e21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-1dac3aa2.2596ab60.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
etag: W/"106-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qCJt8KLM06YApz2rlTsu89uEdoFzw2EcRQ8gg3e5jrAiSArggALwS6kYJMyDBnniktM8eEvp6dxBYY9653C%2BJ%2Bh88hWRSVyKkwqddttvPVACWyNwWswMfKMs2BVHqxRf5x1AOsp2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b117fd7abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-ed5e33d0.48f73460.js

104.21.81.173

200 OK

11 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-ed5e33d0.48f73460.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (11069), with no line terminators
Size
11 kB (11069 bytes)
Hash
c920a90241b24b358b603f80af2240bf
910c8b5bb0fc2dc1d80ea52f342f27b8f7a3c691
06b73670dae423265a92563af8519fcb9ccc0f2b121b6edbca2a8c6e16dc07ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-ed5e33d0.48f73460.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:04 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"11069-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2cUlkTAYbIze2Uuz5PNi8fzUmutAPgHl9tIyPnmDm%2F8902XVp2i47KTfcA5KHK2ljxS2wQNXxh%2BWNUQQ4Fc6yewill7ap%2FR%2FBEyHb5GRYjBdBQ80YFIuCxHoUBNYctd6%2BH2B9NOY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b23f947abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d21b2d7.8dcaf3e4.js

104.21.81.173

200 OK

4.7 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d21b2d7.8dcaf3e4.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (5002), with no line terminators
Size
4.7 kB (4700 bytes)
Hash
3d37f9968dd1f7e526d8e8a70266f8e0
13750d88465fc88039388ce70af8d03d59a368e5
0cae3468d7cfaf4f2e4c2756a5f6ad542c9d62380e9e9c4f23ffd9b2926787f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d21b2d7.8dcaf3e4.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4700-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R3G9FDpm3dO%2FX2qsMbjbblAps62TcjPsmo0qUVu2KFOnSKD3D4P3UFCcEvUs46FH4gWkdBAmj0ktGSngz21TNXJxVO65KOECj%2Fl1HnNHFVXbwuoNRDueOaF9jtuzkHzB335LjDMB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b167b06abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d22670c.4043f624.js

104.21.81.173

200 OK

3.0 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d22670c.4043f624.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (3173), with no line terminators
Size
3.0 kB (2985 bytes)
Hash
e53f9a31357a0225411f0f1e16184c7a
951e28be541f4af24a61b27faa1b6bf59f0bc6d6
8c139847c9d19593746a74306fb19b4ed6ab277ca1144adb78684f7ea9cbc5aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d22670c.4043f624.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2985-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PrDCadEo3PtqacISPsVtmw1OOzxa6J7ywDSK6pRR4WCvWWRMv%2FWM8NPr%2BFGm9DRuIfdGPHqyLJITE2hicrdWkWBYAG%2Bin01TQOU1jy%2FJUZVVThvIGTISbXw8iIXoVcDjhQ47W5fO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b16dbb4abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/tg.2a10e07d.png

104.21.81.173

200 OK

30 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/tg.2a10e07d.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 768 x 768, 8-bit/color RGBA, non-interlaced
Size
30 kB (30313 bytes)
Hash
2a10e07d117817cb123a23bc9f57c324
4a93750f7eb521aa55293e642f73635fe4b1fa06
a18519470bab187f0c371b09c3201568bd7ae6395ed9eac58a1b0a0951551c15

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/tg.2a10e07d.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/index.97fbe7d0.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:12 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"30313-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Os%2BpyvuXcLsC4h5hgiQYIFasvwpLBdWTI1ob8SkS1JCqanARbhY78xtv0srSGhg7S1qTgv%2BOnfQ4o9Za71ZdHA9qs2f5BwZxsOPyB5ihOvqklL6LrBkgSKik1FXOKjaj1DI40oFC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b55edf5abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/index.5256acce.js

104.21.81.173

200 OK

351 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/index.5256acce.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
351 kB (351275 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/index.5256acce.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:56 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"351275-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=clhX68KFnbeiOWWG97fbt7wWMR6o63%2FwcZQp%2BTFSRpov%2FgEVscBxuXqKmgQj0KudhKWPCDO6KLtOwTqrqr%2BkT1tWBg5JVkwjjJIwjvSnBAs0VHVq8%2BuA9ubjoI5f7p%2B%2BExfQn1tu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0af2bd4fabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-08d649d4.1dbd1b8e.css

104.21.81.173

200 OK

2.5 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-08d649d4.1dbd1b8e.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (2515), with no line terminators
Size
2.5 kB (2515 bytes)
Hash
08a2bfcf13af366ac9f36d46a945c101
feebe0c8697a404adb3a7ee8946eba0170be3ef9
565c2c2089653997f3dec9f919dd1d6769609bf3a9febeb8250893da7dead8c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-08d649d4.1dbd1b8e.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"2515-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cgjWsKrT2tWjDwWZMh5izQ9zAHoJXQR8bIFjhT76XbBEsyqQ3k3vSJ24qOeUeVWeb3si6AD%2BWWAeWZPVb7uyzkviM7jTk3g8FdDwy0l27Py1LnT%2BuRhj1hINeC9Mc4xaiAU%2BKYYt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b015e2cabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-09f7c2c8.6313560b.js

104.21.81.173

200 OK

16 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-09f7c2c8.6313560b.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
16 kB (16464 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-09f7c2c8.6313560b.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"16464-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hp6IfjPAVCiiyUqBnjX%2FyAugR7GRJyStYG0nbtwpPXjkPTW%2Bx2%2Fk8iWsBQA9c3jNMKceXaJ7WNCeFHhBgfbdFWiD6WYM5Ihw%2FzDINcuAdnVYkeAcgv0XRpjwDJM7YVm5MFOczK7I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0cbe23abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-35196bf8.ec107b76.js

104.21.81.173

200 OK

21 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-35196bf8.ec107b76.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
21 kB (21212 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-35196bf8.ec107b76.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"21212-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aw9c4ZOXdR9vHmtFdOXQ8KEXfth4GgF9%2FcWZSSHgE1BgKjV%2F9TTwlDv9TStgSDo6NDk3mTOHr3BKnokMYg5z6TtuQeeE02ifr2p84OAjP7MAJV6GMuoM6BMzxh0pTSCAJgkoKAhX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b180ed4abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-452abe5c.2e34421c.js

104.21.81.173

200 OK

19 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-452abe5c.2e34421c.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
19 kB (19222 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-452abe5c.2e34421c.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"19222-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1IO1QWru48nzbczsuwqDdtAV6AsMIJA%2B1f5mPWqn3Ee66jAwR101kzTkQRRXk5KcuI6jimIpM7vkNPoeocQWs3yeoyuqoQCzhsdcq5xAIW7lWisPVOmHfrGLiyHwP5WsW433uM2t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b19398fabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-fad743c2.b58afa6e.js

104.21.81.173

200 OK

12 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-fad743c2.b58afa6e.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
12 kB (12115 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-fad743c2.b58afa6e.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:04 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"12115-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W6qjH5%2BbtyQgSLau3H4HNbqAGHv8wQ8wcF6XcuqlQa8G93JCUGCFJhbX6PtSBSdEWOPsjwf10x%2FSSNo3qWAAMjk%2BYktTmvKxxJrRqWvWXLgD%2FiHzqTUkHKY7AD3XGN7idWYe%2BXBr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b249a75abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css

104.21.81.173

200 OK

77 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (77215 bytes)
Hash
3745345e92852fe17691be351b78169a
baca1dc0b943db53e043639c9b888b5c2b278e4e
bec9389457cccc4f24e92e532025b1a9df12f0a4133880412d86d8a94cf80807

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-770d9b43.f76bd6fa.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"77215-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3q0S70xq84VQVKyrVGfNqpEktT28thATFGmwtWCYI5%2FAR%2BlRZV%2BAtoY57LFXNj5x%2BvL9nwHwmvC4i3h0JsVrLC8UruTFk51vAPf46IW75qy4sy%2FrqBOozznt0kU1fhBLAQP3DsWb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b019eddabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/uploadFile/20230226/20230226005333.jpg

104.21.81.173

200 OK

155 kB

URL GET HTTP/3
pandefi-staking.com/uploadFile/20230226/20230226005333.jpg
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=176, yresolution=184, resolutionunit=2], baseline, precision 8, 1600x425, components 3
Size
155 kB (154928 bytes)
Hash
e47176c2d857951c9be180958f3183f9
a500f6969dd2d68e162c79aa1553a4eb9c3ba013
a111263441e57e73c89bf921fd377b6285edf81b93aff3d6f304e0067b38cc9a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploadFile/20230226/20230226005333.jpg HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: image/jpeg
content-length: 154928
last-modified: Sat, 25 Feb 2023 16:53:33 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JKH3FxAQ1LeO4bItvrfm00AHul5tz5iWuUUZNlkJdnOInOzQU51F3X%2BKeECnAzhD8y1uMmpzcQ7nhMIKKvUp6yACaVsrLDPvOT8FVXqj7VDUZfNL6WPCrpvUz%2F64UVDtW6XxbJJp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b10add7abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-230a6bf6.27795474.js

104.21.81.173

200 OK

930 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-230a6bf6.27795474.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (978), with no line terminators
Size
930 B (930 bytes)
Hash
26c42394d6b54f69f57f187fa448811a
ea0ee194844cc436cbcbff723d636ac5009ffc04
54a45c6296411d3deee0d079c943faa6f7fc376d20ceb8fc114ae1037a48c3e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-230a6bf6.27795474.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
etag: W/"930-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=28%2FOu5Jhi1OwPQ16U%2F7ZeAfFVAQqizjBe1yGGPeWxC2fyG8WbGaQfsJ6Yg7WYcBtf3Ns89PYrYKv%2FgDZSZTai3Th7NiUegfPUHxJUA75E3gKTl91HGKVtgPJVa2%2Brm9B177XfSnr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b117fdaabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-b121c5fe.c51a232d.js

104.21.81.173

200 OK

15 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-b121c5fe.c51a232d.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
15 kB (14678 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-b121c5fe.c51a232d.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"14678-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nKHA9MmO8kVI2nE%2FNZ%2F74DtDXBydrzeGfHG%2FU3qiw%2FQMPSFM1zCb7dwIBMG%2Bw5Jmup4DBvNl9AlN7NzFO1281q%2FsA8ZTywT3%2B%2BAICQUmM07xpWEoSjr2CQnPf0sWzgOuRtbY0aDU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b231f67abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-747742d4.1155e5d2.css

104.21.81.173

200 OK

76 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-747742d4.1155e5d2.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
76 kB (76282 bytes)
Hash
bdaf70584c894dab32a048f8b9fd00ff
e42bd47a79f0e2d1111cf01fb762ba06fe3ed4d3
4cc4f77cd23ffd4e2919ad503a16074e8103af4c5a9ef978ceddd2f7d608bca7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-747742d4.1155e5d2.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"76282-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4WeQA0wn%2BPZ4noDfEP2A6gPpjZBY1z%2Be%2F1OwECH4XmL4t94SKnyKIbzpt2bGqgT6sCGVNesez3onmLqM%2FJAXIfBCBUbaxUT0Exp9JyTTKaYtfPzBXsT4K86Dcn9gqmUjG%2BGrHX6I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0618ceabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-eb2c8ff2.501ef72f.css

104.21.81.173

200 OK

1.1 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-eb2c8ff2.501ef72f.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (1085), with no line terminators
Size
1.1 kB (1085 bytes)
Hash
285b44218ec031e4d33e08478d13f8b8
b94b8ffd728534a84d9aa92c9a21e62a769c2b5a
755ef7a9edb3952baaabe31db6babf59ed5d291c9dbb31b7745c07a44e3b6284

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-eb2c8ff2.501ef72f.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1085-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rhSVaDk4HMlPTKq1ZPh7YohoIMqg3Ddb2OtnwWCppOgVR7K56gAnsvdXu09Up7T4p9dGqBGTB%2B%2FV7QV2WhnHjkBUALAZOh42%2FxpvJYRa72mbv%2FO1Z%2F6pfvUFuH76r1vmWRNL8wA%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0b2aeaabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/home_invite_illustration.1862c451.png

104.21.81.173

200 OK

9.6 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/home_invite_illustration.1862c451.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 422 x 335, 8-bit colormap, non-interlaced
Size
9.6 kB (9566 bytes)
Hash
1862c451a05f8edf1d41d2d765ace525
5e566dcc02d91be809bb1d893a9399767c9dc90a
ef2bd7ccd31f7f7ce0581700b0e517613611833d7f18bbd35396477335403919

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/home_invite_illustration.1862c451.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"9566-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RFTyq1b0Yase7nK%2B%2BWgU7Y8tQM6y%2Feyue6Vg%2B8E%2B%2FtzNLkOGOWnK%2B6NIVIJcXai5PCZ2ht9xj3GukCfSEeIweyNTsfGW5%2Ba4P3y%2FLBEzhrjAFSJwatxqNIQSU5X%2FQxjlnX%2BJdEFx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b10adf0abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-74a23f77.0586c8d8.js

104.21.81.173

200 OK

106 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-74a23f77.0586c8d8.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
106 B (106 bytes)
Hash
40cd35f51d32d01e8eee53dddf26bc5f
deab998ff4cf7897b0214785c15e3fe6db49891f
bb24d8371642199b87806065e498ed18ab7f15c272ae89d6415aba4e9dacab36

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-74a23f77.0586c8d8.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
etag: W/"106-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=znnSfIxULUeYWNLHBoypQU654XsbZnmRXtzuLaCPeTq5IEfeSTvopTzVRaqN%2FHczBG5TU3erPFILDLr3mJ4Ahu9DG2dfv%2BdjZt1r7PZ%2BM4FHSJwJztALSd8LAaE2a3zLM5%2FItlyc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b1ca8c5abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-de2f8820.b1f94a1c.js

104.21.81.173

200 OK

14 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-de2f8820.b1f94a1c.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
14 kB (13977 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-de2f8820.b1f94a1c.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"13977-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MPYJ6BGCEpl%2FGerpvX5vRSbB7zSCC4zwfnzlagcc6W1qvnhCmtxfZWjzYOOiQS5%2Bvb%2F6cwa2n7fxb8oS5Cj2zn%2B5WiN0FckyuelxoZLrCc%2FI4pvTXEntDbQQZMgDtdbrd2xd0UrG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b233fa6abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-eb2c8ff2.a6a88d7a.js

104.21.81.173

200 OK

18 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-eb2c8ff2.a6a88d7a.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
18 kB (18277 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-eb2c8ff2.a6a88d7a.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:04 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"18277-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8pvMUFkubfWBjU3Nvj%2FzNuCE9sffgeWAdBlmEyiVr6alpoHFFHlyzXFgDTZb3xwpxPncOR4VqGP10pGnTRuufW%2Fkf6xSl%2BflxT%2FbhfNJKj5c2HebqFFCKoz4CfCirJuQZEp%2BB3yR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b23782aabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-a72cdb18.84ae5c6b.js

104.21.81.173

200 OK

510 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-a72cdb18.84ae5c6b.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
510 kB (509613 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-a72cdb18.84ae5c6b.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"509613-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3j7W3ucESObGKaILbj5gG3EWFIphNV9XMHJlRO%2BdFL7uCtPyXCwbuM1gqsPipmybtStwAWF%2FC7oydYIHWaJDKt7XkFijscOJEtf33vattAAecNv89XPGRPcWkiLtiPaYLtHE6Msu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b22ff34abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0bd3fa.e995bdd5.js

104.21.81.173

200 OK

10 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0bd3fa.e995bdd5.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (10215), with no line terminators
Size
10 kB (10215 bytes)
Hash
675b13efee52a4748045dd6e457f6435
89e1efc2ad940fb378d3bc36336adceb0aa0a887
498b7a94f9adfcc0a96adbff52cde5030b06a6976596b956f1f96f4c3617d0f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0bd3fa.e995bdd5.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"10215-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=42UbsW6t%2B6aV5IcfEvMiohcQ1IhPFJVl911N%2F%2FiwW5J7fMDlln%2BxvRMs5fIbqJE4Gc2XDlkm0TrJn06rxWY9BOvbGYd%2BcVY7ZaxCga59XKwFJ%2BGoEMBnxkaB5eK0WHDXp5%2FWsZ0G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b164a8babdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0cfa56.89787042.js

104.21.81.173

200 OK

4.7 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0cfa56.89787042.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (5042), with no line terminators
Size
4.7 kB (4736 bytes)
Hash
3854924a5337a4b19abdaee2447c24a8
748f67235d9a1b4bfa6359ca4d578b7c22b91549
92483de9794530a8cff4f55beca3496f7dfbd7bb67a865864a2f6b952d9db3ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0cfa56.89787042.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4736-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RsNkT80Yj8kvPU45jk9XlLrruSCogMLixinIkqxtsQLm0f%2F2PMA2UuA4KMT7eSks0ShRcBgefFxIGL7jsm%2FV7V1P7WS6Xb6Sf5lUaPTN2FBXk02AiVzGPWvPkfLiHvs8%2Bhl1uOQH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b167af1abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-09f7c2c8.6313560b.js

104.21.81.173

200 OK

16 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-09f7c2c8.6313560b.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
16 kB (16464 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-09f7c2c8.6313560b.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"16464-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bhgL41VWWJjwMG5VRyCHTudEWJAUqyH5oBmJISJmuVlKzqY%2FLZEHuziyPVW4ZOA9nj61dWJbQJ%2BjiDQzVr39NsKVcJ07jWHspgHqe7YSgGK46hWxA9BU7CIzZIjm%2BmorN4yIKz3e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b01af29abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d226935.62d57cb4.js

104.21.81.173

200 OK

25 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d226935.62d57cb4.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
25 kB (25079 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d226935.62d57cb4.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"25079-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gNZTRxodWVqLqWt0Cu%2B%2BhnTHiYKODDvqmnH%2FtcsPl%2FcetVejpYKWrEuZLsx%2BIOtL3WYzIRAmqMlbydl5gAHRArOceZLkjuUBCY7Zg%2FDgTxO80h7f5yRFkvXXq0HT8r%2FDA0fUJ7QL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b17be08abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-331d1d65.a06beb8c.js

104.21.81.173

200 OK

64 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-331d1d65.a06beb8c.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
64 kB (63753 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-331d1d65.a06beb8c.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"63753-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I3Csw8GSEzrhNhRAdaj%2Fugpo3JVVu2alvW%2Fq85WsSX%2BAD6S%2FxziLK65Mbm0mF90W0AGGPY9o%2FZEJ25%2FVfgrRhNwWHn26A7WzCAbwB%2FlRSsdlvQZd67TXFKlNcHQwb0NFold4H8yO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b17de37abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-4e58b970.a8b9640e.js

104.21.81.173

200 OK

15 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-4e58b970.a8b9640e.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (15040), with no line terminators
Size
15 kB (15040 bytes)
Hash
a9b1789c0f3f76b6ce32962b98d9592d
905d476b59245917fb09822b9a8947e6e9fbbe63
75e78f7d2830f5a56cb40355143da0a26a9691d60b104d9316a8b129febaaf8e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-4e58b970.a8b9640e.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"15040-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hoZg4OiMgekjmFK%2BvennGAQ84FmxXu4B3n964AYMiGHmg7wbRmvtwe4KlXPfNGLC1Ce0KR8jF%2F2B7VLAEKJk9t6RWfW%2BvddlKJId2gR2En2WA80ANnhm6meu7xG73u3See%2BLi2GN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b1b3d9aabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-770d9b43.6307dd8d.js

104.21.81.173

200 OK

104 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-770d9b43.6307dd8d.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
104 B (104 bytes)
Hash
152dc321cef9fa84138c103b46582d90
332600d730a7a59eb271c3fe575b746d36ec809f
71ae99c9aa26e94c332df2bd9839d70c9c7c17055c932bc96eabe6727116b439

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-770d9b43.6307dd8d.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: application/javascript
etag: W/"104-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZtdsrkTcWflYsXJSRR1NEqOPScwYhwY3AXbBB4%2BK87kfgH4uyySl34v01ImVQfozWedqODwgOklZJ1XdjTC757q537dcsAU6z6ehJzMU8K5gKPWpZ6H2V3IycuyLCp8%2Bg7SauBKp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b019ee2abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-2c867955.501ef72f.css

104.21.81.173

200 OK

1.1 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-2c867955.501ef72f.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (1085), with no line terminators
Size
1.1 kB (1085 bytes)
Hash
285b44218ec031e4d33e08478d13f8b8
b94b8ffd728534a84d9aa92c9a21e62a769c2b5a
755ef7a9edb3952baaabe31db6babf59ed5d291c9dbb31b7745c07a44e3b6284

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-2c867955.501ef72f.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1085-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FXYPiVa7sv8VjflYtMjTnN1QAlIkrw4X8Zc1w8xD4qIAscLs7dnLtr5N%2BH3jTijWiH1rWkiQvtuLK2HIL7BahuGQkAdaUqrQKvd4kOWbrOzdHsue%2BRNHC%2FO%2BHZ%2FP9V7U2L%2F7Sixc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b015e3eabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/uploadFile/20231206/20231206010710.png

104.21.81.173

200 OK

318 kB

URL GET HTTP/3
pandefi-staking.com/uploadFile/20231206/20231206010710.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 865 x 571, 8-bit/color RGBA, non-interlaced
Size
318 kB (318380 bytes)
Hash
15d7fc11f298c90586dabd0bd847f24b
3560fd011bc680194ef6dda85751c0bcb3668350
d545db0a2347a53023f43198c1c7189248517459988165669289e46fa45f4d9f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploadFile/20231206/20231206010710.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: image/png
content-length: 318380
last-modified: Tue, 05 Dec 2023 17:07:10 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HCnahZXoEI6%2Fh5HwKHZEHSopSf5f3RHf0RW5EWzFb%2FsHnFujvww9oVVqYMU%2Fm5jW5Wqfpxmm34Ie%2FySsVeh1j2f5ec5Px1qiDxLi6Z4HaTXhi6sjjCWmACZIhmO7Xu26GtltwH3y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b109dd0abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-474acec5.6739ca34.js

104.21.81.173

200 OK

18 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-474acec5.6739ca34.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
18 kB (18124 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-474acec5.6739ca34.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"18124-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ddQtfyMHYiAP56CnC8DXXC3C3GQXupI8wps0ZUJVR5vDZBl%2FnMjYtVQ6GEOJyVI8Lc5rfw7Zu%2B4HQ%2BPg%2BqQqLUfahEKPyi1Xd4lmiKNvii6U4knsmMkDnGdMBIVaSLwCxolyma3z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b1989fdabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/api/help

104.21.81.173

200 OK

126 B

URL POST HTTP/3
pandefi-staking.com/api/help
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Size
126 B (126 bytes)
Hash
a2067c0ec47cdeeefec2e40bab045063
07f14097c06a815f0d3e0116a0f745cf52f3bf70
ad5b2bf617cdccf54f871e3d3671e1f78dc7c4490ffe5a9769b41fab8d85ea3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/help HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate, br
lang: en-US
Content-Type: application/json
Content-Length: 58
Origin: https://pandefi-staking.com
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: application/json;charset=UTF-8
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://pandefi-staking.com, *
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QMFzd%2F1E4rZB2YPO0OfokoSOHJWfjo71Pr77tlRDCTmZmfe8nFYlz%2BsWjtgjxHwgA%2FU9QlLhTsDS7L017X3jW%2BZnQvqCatuPNpnZRmwCYIRpVZgTt7JO%2BrsUrPzjcrE5HBHZxQsc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b08ce55abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/uploadFile/20230226/20230226032032.jpg

104.21.81.173

200 OK

91 kB

URL GET HTTP/3
pandefi-staking.com/uploadFile/20230226/20230226032032.jpg
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x601, components 3
Size
91 kB (90814 bytes)
Hash
745b312634ceaa11c2b2944c8c93eec1
ca7d83b3c9c8faa7e4e83e4cefe454afdd754519
fdcc43b33dc9fd6272224b11d8ddbc44e7aeea4b692c7ecbc9892fc770d0504c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploadFile/20230226/20230226032032.jpg HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: image/jpeg
content-length: 90814
last-modified: Sat, 25 Feb 2023 19:20:32 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XNGNCOTZN3x5ZeXKEBxm2CzXFOOyLd0r%2F%2F77WljZvGlk05eDjGRhm8Z94TbD5WATw0Utt4KoqKrokdlZSmoESQc5Kw7rkbsjBnD%2BJqzDRJq1T8yCxBByo0U2SKUiMmqc3YtgHwOa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b109dc8abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/home_step_bg.13160dfe.png

104.21.81.173

200 OK

15 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/home_step_bg.13160dfe.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 357 x 276, 8-bit colormap, non-interlaced
Size
15 kB (14552 bytes)
Hash
13160dfe53c7edcd6e2e72b2485948c6
291414ff473a4a3a73d00fc9f6ae2cc94fdf85de
d79e9edb91d37883bbbec2cfb4ced6d86a3139b5fe37bb7dec3ff524adb964d7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/home_step_bg.13160dfe.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"14552-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KKCit1SIyhz0A0GXFub8g5QnqpFvZH31oZ6%2Beg9I6RUUCaAn7dCIxW9p9qzPDqlpMvUVhbdRAmDQUTuIMQejARLAd4VUDdnfouLuya9JaFPfsk8iBUvowNrDV9M1kXQh8z4ZDp65"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b10adecabdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-3bd05e44.36f3a404.js

104.21.81.173

200 OK

26 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-3bd05e44.36f3a404.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
26 kB (25716 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-3bd05e44.36f3a404.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"25716-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CtVQYjLVmudcQo3aU9Vw6Ijtt4kNuEYqniHsOPpC5JWb3SE8SHSG7m56Lo0GlB6F%2FQZuNUsG9WTtUyjv%2BumPg4eZUo8R9KJ468miOrQDc8LT5VKsTBGIxeahzz5T4NYx4mX1MESo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b18c8b0abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/online.0bb9c38d.png

104.21.81.173

200 OK

10 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/online.0bb9c38d.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
10 kB (10382 bytes)
Hash
0bb9c38d027930278f0aba4c60f76783
2a2d5af3c451a79df5a97cfbf70a728513259696
9f3df30342878e4040593ff285b859df4936a8451755a3caba9a7d3caaf07642

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/online.0bb9c38d.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/index.97fbe7d0.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:11 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"10382-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2BFz4z91m7pd8YDoIV0KzCt1MNbsgBGhUkTDz8biAVJwFxlr8Itwf7RsgQZsiIv9e8v8iqoobnxtY9%2FmkZJXrbyuobYEK9QX4FRtwrxb2WfJHAwVk3Kx5bMBpQoob1DgDRnfzCtz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b55edfcabdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-vendors.f205fc2a.js

104.21.81.173

200 OK

357 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-vendors.f205fc2a.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
357 kB (356979 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-vendors.f205fc2a.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:56 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"356979-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Of47A2NrX9KvVmYYoipkO7Wk1GD08hkqM8j%2Fpsqy%2B1cnW4NtkqHdW4NMdq2A9anpUcoXyYYsjP%2FXE0FfSgif%2Ft9WuEYy2nLii%2Bn0o4xNY13IkE6J%2FO0d1HAaz064y%2FaT6zBxAO%2B5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0af2bd4cabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-4e2bf731.ea6af633.css

104.21.81.173

200 OK

1.3 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-4e2bf731.ea6af633.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (1296), with no line terminators
Size
1.3 kB (1296 bytes)
Hash
462215b0c17def69b1d8775dd39084b8
3cc13de879caaca38e6ebe2ccda50909feae0d30
cd405cf2cd1f500aa91a239d510b4c388524a997b0b8f67cdd23edb736b2a39d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-4e2bf731.ea6af633.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1296-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b0Aav4zw9mu36cTkmfoKxK6IOaZTOv8ciZ0d%2Ffzj6QivvUfOfpk9iiUDYLjF2CYvsyu1yAs7pVSriWgzdgLpV4dFNM2oYfg1E2oZpfPBhg7Bjwf9cwL%2B1qo8%2FruKEyS9gPxL092K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b02c9daabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2c867955.a648ef5a.js

104.21.81.173

200 OK

104 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2c867955.a648ef5a.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
104 kB (104436 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2c867955.a648ef5a.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"104436-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4HubFzkHRAAjgjwu2ho4foDfzUbTo82O4YsDmZ7HFAznG2cvt95C%2BV1%2FkHMN%2BVhp069RqjaeihxnPrt5ryWGrTYH8oPR%2Fht57mHnOQGYON6mX%2Fql6VDXWPJM32FZfeo8Zt7kXooH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b11980eabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/index.97fbe7d0.css

104.21.81.173

200 OK

29 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/index.97fbe7d0.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (29422), with no line terminators
Size
29 kB (29422 bytes)
Hash
fb74a6fc940ad906c5005f8f650a2875
9851649bdcda6dcd4afab02377b5b0af04f339db
ef794a86db6bf9b4d9695e7b85be83180be658e875c7ffd3b031fe82f2ef3041

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/index.97fbe7d0.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:56 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"29422-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FbRgJpG1PTI7IKkw%2Boc8aDqeLoZbz2LFXzGP6rGhrwZvAKXpIFbTpP6qsse1OlbSSsDa3v1b3AIYPQWpbXTMjJslYNwXEmVBQvwe8jvSe4hEXulQlxRrhNt3qzhuCnm3DEEs4CI1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0af2bd48abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/api/get_config

104.21.81.173

200 OK

131 B

URL POST HTTP/3
pandefi-staking.com/api/get_config
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Size
131 B (131 bytes)
Hash
a62144ed915cf122f04c08ad34e18778
efaad34aeb8b0bc94ec86fdca915ce98d3dcd051
b8b2f8aaca929cfdae163498c57b46d05592af55315059bdd6e8535e32287646

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/get_config HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate, br
lang: en-US
Content-Type: application/json
Content-Length: 87
Origin: https://pandefi-staking.com
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: application/json;charset=UTF-8
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://pandefi-staking.com, *
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dY2YssB31LVQoa%2BUmKQAOMvemX3Xwcd5iIS%2FgI0NrM0ik6mvlgaXagXNcwctp0tdE0wS6vChjQkocDMj5eihyARPfHgoGti9eOtgfct8enbEomBqnRW%2FOV3wD3Qp%2F1phNYlEUZge"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b08ce68abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-774ac8cd.452e3aec.css

104.21.81.173

200 OK

46 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-774ac8cd.452e3aec.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (45707), with no line terminators
Size
46 kB (45707 bytes)
Hash
070c75d6a98386699ba87e7e16e9597a
9dcd9d19d727d9ded2761df1a6333259c54fc499
07333514039d378277b96d5960361b57bd1b75e95f9655c88a55ef3485b5423a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-774ac8cd.452e3aec.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:59 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"45707-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JUGvN5efXU680ZWBybFRc%2FF2UqmQ1JZm8xeIKdufocbigJFwSW1ytUQiWI%2B46yfO2%2Bh73VM3M5d6Mt0iy0I6Z7nEgcGQBpn7FRg6%2F752B%2FJPnQfTVR4XbhCV7cd93CtyzXseeDKa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0aea6fabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/img/home_invite_bg.6e836c34.png

104.21.81.173

200 OK

43 kB

URL GET HTTP/3
pandefi-staking.com/assets/img/home_invite_bg.6e836c34.png
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
PNG image data, 690 x 519, 8-bit colormap, non-interlaced
Size
43 kB (43292 bytes)
Hash
6e836c34b77528096571c8b35ceaa055
335856ce213584ea53fd07db47cdb38fe093e085
fe04bc1ae54c5d17bd53fc0d6b70aa6e0dbe69c091ba9547be9cd7e34cb7e6a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/img/home_invite_bg.6e836c34.png HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/assets/css/chunk-770d9b43.f76bd6fa.css
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: image/png
vary: Accept-Encoding
etag: W/"43292-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1x8CFrBsCuk1TPc%2BZ0TbmBiE%2FpWh%2Bg1QuqLajMzUyuChKaCwFrTikoskRMPTXcYWIWaaScvMayJChA2qcY45PxaaMQ3I%2Bo3geDlqapU5yajhTSBZxAqCoJISQP2m3HAUr%2BNW32Gx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b10adf2abdb-CPH
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-3b730119.a48c7762.js

104.21.81.173

200 OK

31 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-3b730119.a48c7762.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
31 kB (31138 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-3b730119.a48c7762.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"31138-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: HIT
age: 3
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wy9B2%2B5Mzx9%2FLcp6tGEUkORE%2FIaIQOhYag%2BLyWu5pZJ1HzSedd8tu5I3ANGcM%2F308YpWNScU0piQ3rQyyZ1qb9r3yB0RSAxBCt%2B6HKmXZ4t1jSZzDdp6jyhQ52m4wSWYEjmwtJOW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b185f9babdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-74a24a7c.c8298477.js

104.21.81.173

200 OK

106 B

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-74a24a7c.c8298477.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with no line terminators
Size
106 B (106 bytes)
Hash
69e61b58f8b36196b288dba8a767add2
b02b7971ad994fb1c14dcffba1db356a7599dd6e
0c110c7d21e5ad84d9a5ea1733baa5871aeda48f8dcc89ea11de85e2e98c012c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-74a24a7c.c8298477.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:03 GMT
content-type: application/javascript
etag: W/"106-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M7VmDKQzRCoTp9cJXCrcd%2F4bIVZvLNgB5jABmJdFHcFqKK6n6kt8%2Bo55D7Z0HNRWmMSdvM7ivkR0buNjlNZf0pcSZZrpQhECN8lVUR5gfIz5T7kr6rs4rHpMA4iGI1DAtaSkC3uC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e0b1dbad3abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-2d0c91a9.8409dbdc.js

104.21.81.173

200 OK

55 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-2d0c91a9.8409dbdc.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type

Size
55 kB (55084 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-2d0c91a9.8409dbdc.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"55084-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bw37rqHH4gujZVQG8NF5YrhRCoMKZ56Mbs%2Frnvw2R16WUpSrqB05YSairo0D4SSke8KRkYI5GId8kdGXn8TWaiV929hVRzKnCg3ShujffnWuxWqky55Fhqv2TBriqRq15pZ8ZEv1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b01af1babdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-17b6bbed.55e25e3e.js

104.21.81.173

200 OK

16 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-17b6bbed.55e25e3e.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (15899), with no line terminators
Size
16 kB (15899 bytes)
Hash
e499e73d96baf85a437a7057e8b4fb21
0d4de92d665a7de10c2e0511e0095f2aff197626
54e1a66ec95db6a1ac37babb4d367401ed81b8c6db3ecb8fd10ac8cf4e3bf61b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-17b6bbed.55e25e3e.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:00 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"15899-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4ISiWVH8hkWuWED0GQ6AtDWyzx4ZBizX7UJfmAb42pF3Qtybg6HdA%2FDpRJOEWLeSu1v70gQv71uxuGdTkBDyO68xpB4%2B6DZJodBllFk8iCC9Yn%2Fjl4l0ExG%2BR0tvEuFr%2F%2B7TYJ5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b0cfebaabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/js/chunk-24c337ed.67120ce0.js

104.21.81.173

200 OK

20 kB

URL GET HTTP/3
pandefi-staking.com/assets/js/chunk-24c337ed.67120ce0.js
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
JavaScript source, ASCII text, with very long lines (20498), with no line terminators
Size
20 kB (20498 bytes)
Hash
18d1ed5f637f031e5b609da8828b1a0d
40cd30466761e0c9d755e637bd63d1c9c9ec1124
b6d9c3ff99cb0bb2b2c7e254ef77b596027440369677ff6997b9150e1df23b00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/chunk-24c337ed.67120ce0.js HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Cookie: JSESSIONID=C15E59A7EE8655D389C16907884A3FDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:13:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"20498-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OL9T63Xj0GCq23lpp2n2F5yy8IM9y4eiSwuf8oOD8%2Bma%2F1bCIDsn1pPeFl2C4LTRGW3ezm78YI5Xx4lVvuPnsbhHO2P9f%2BrHmX5VN64S5Iky42tg6kuUKuK0vCZlelC8U1brunXe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b118ff6abdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

pandefi-staking.com/assets/css/chunk-3bd05e44.ea6af633.css

104.21.81.173

200 OK

1.3 kB

URL GET HTTP/3
pandefi-staking.com/assets/css/chunk-3bd05e44.ea6af633.css
IP
104.21.81.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pandefi-staking.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectpandefi-staking.com
Fingerprint23:62:B5:F7:A9:A0:C0:BB:21:B4:6E:E8:25:B2:42:34:51:9D:2E:5B
ValiditySun, 10 Mar 2024 09:24:02 GMT - Sat, 08 Jun 2024 09:24:01 GMT

File type
ASCII text, with very long lines (1296), with no line terminators
Size
1.3 kB (1296 bytes)
Hash
462215b0c17def69b1d8775dd39084b8
3cc13de879caaca38e6ebe2ccda50909feae0d30
cd405cf2cd1f500aa91a239d510b4c388524a997b0b8f67cdd23edb736b2a39d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/chunk-3bd05e44.ea6af633.css HTTP/1.1
Host: pandefi-staking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pandefi-staking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:12:58 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1296-1701402091000"
last-modified: Fri, 01 Dec 2023 03:41:31 GMT
access-control-allow-origin: *, *
access-control-allow-headers: X-Requested-With, X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS, GET,POST,OPTIONS
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wh7VSbOqufk9A6MjeLYzKyQWxpA7XxXGRQVTiEDgSqi5gCakVokQnfE0oH7cpunjl3Y2oeQHBLb0dMeunwXAY9YLoXSbZCjcacMJmdGmrz5LRemidxukYvqL3mT8V9%2BZD%2F6s1gf%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e0b016e5fabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL