{"report_id":"154cd1aa-ecc2-4c28-9cde-257a7194736d","version":6,"status":"done","tags":[],"date":"2026-01-24T22:16:28Z","url":{"schema":"https","addr":"mixerusdt.com/","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"104.21.39.171","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"mixerusdt.com/","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"title":"USDT Mixer Analysis: Privacy Tools for Stablecoin Transactions","dom":{"size":14267,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (663)","md5":"c666074c34254872bf8ffa29c59c5ef8","sha1":"bfe6e5c8ce9f9d9364d0d25f4ae6c48bc7ba5070","sha256":"94776163166c486f97f563e221ca1f7e72634892660d5041c7ecc2fa208c0266","sha512":"d598f926fe5280ec4a5afdaa43c44331cd9b5d1e8bdaac6c7efd5a2a786d3a1cf74f53a4f88cddc17cdc4381d52e93d21f0e8d1f4186bc54ab9179502b5cc754","ssdeep":"384:h3MKtLtSwYS2G9Lk33YDvnlV/Yv9l0Fl0N7C:hcKtLtSwYSL9k3cvnlV/Yv9l0f0dC","tlshash":"ca52b71375f03524435260a17eb32b5e7ea64107aa4c6d60729c85aeafc08ed8d7772f","dom_hash":"domhash1a4b343e11ab295e9608eda17be49614","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"mixerusdt.com/","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"104.21.39.171","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-28T22:16:28Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"mixerusdt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"mixerusdt.com","ip":{"addr":"172.67.147.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-04","domain_rank":0,"first_seen":"2026-01-24T18:56:38.974603Z","last_seen":"2026-01-24T18:56:38.974603Z","alert_count":4,"request_count":4,"received_data":86635,"sent_data":1761,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mixerusdt.com/assets/main.js","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"172.67.147.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"53a90d05681945a9b48493fff05a343e","sha1":"ed8984fcf771e41fd396f103e4d536b4fdf3e565","sha256":"d9d941fc63980d7d98e60b4303d8eb64aec30d5bc9515d4f8b2195585a67b032","sha512":"36f8d6aaf3b2eab87cfed52d24d2d1128ba598303fe09b96ebd0e29491f8842f47658dae5ed0095a76b6094720e7b256498ecc583bef559acaaa5e7248ca3f8c","ssdeep":"","tlshash":"1861cf6819e226a2cb12ad2867df7508b03185b332489d04bf7f07589fc93e4d9707ec","size":3179,"data":"","first_seen":"2026-01-24T18:56:42.920659Z","last_seen":"2026-02-20T18:53:50.047172Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mixerusdt.com/","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"172.67.147.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3f8f599aa3f1ac6dc53d08ddbf6fdf94","sha1":"8fe954c2748ee23159334da4ac5d34b91268e247","sha256":"dfb5e98e2be0629e23ab3a4c797b8ace469933e4e3e68a8eda3a784238540666","sha512":"f92f4273add63d58f3ae09403c80f9d1352bedad87f0c8c7a67b2ace9cc3225dacb7ef31002a3f62ff305d512137b18f704635da386bcfd5a48c39549d4fd50c","ssdeep":"","tlshash":"85f09ea73c459578c67903a96733669878222a2d7c4bbc62c98c4c8514a0faa489b95c","size":495,"data":"","first_seen":"2026-01-24T18:56:42.923294Z","last_seen":"2026-04-04T15:17:17.745691Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"mixerusdt.com/","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"172.67.147.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-24T22:16:06.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixerusdt.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 04 Jan 2026 06:07:29 GMT","end":"Sat, 04 Apr 2026 07:06:04 GMT"},"fingerprint":{"sha1":"37:20:AB:54:C2:80:92:E0:1B:F0:51:DF:A7:7C:9A:EC:EE:B6:72:D3","sha256":"54:DD:D0:CA:B1:D0:10:F6:3B:E6:AD:CE:12:39:78:80:98:D9:B0:A5:E5:58:B8:F2:0A:AA:1B:99:D0:F5:36:C9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: mixerusdt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 24 Jan 2026 22:16:06 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sun, 04 Jan 2026 15:03:07 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AoLKT1IWQmUCaETpIMSQJ89D8hM2m7%2BqrW%2BLksgGH8WIvUDGLja9HqtDR0EJXOflhf4rs2DhThEIBglesORfRa8J1EMnrMs9R3%2BRHg8%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9c32e4b21f248deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14180,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (663)","md5":"6ad4f3b7b5159debd7dbfc7cc600e57d","sha1":"2a4498b2190497623f3351f9626c4ad3e244ed39","sha256":"df92f90335ed66e38218fe939df10cce251869466d8f639533021ba97a65a724","sha512":"a97ddf6eaaea0f3a2de1bde73e7a5ffccbf6032a9846fc733a79419d365804dea98271b526ee2bb6b7b643046422d9b08363ab5e615a3d33cd94343e45194baa","ssdeep":"384:D37KtLtSwYS2G9Lk33YDvnlVDDt9lmFl0NeE:DrKtLtSwYSL9k3cvnlVDDt9lmf0EE","tlshash":"2852b75375f03524435260a17eb32b5fbea64103aa4c6d60715c85aeafc08ed8d7372f","first_seen":"2026-01-24T18:56:42.914121Z","last_seen":"2026-01-24T22:16:28.434916Z","times_seen":2,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":34,"dns":16,"connect":1,"send":0,"wait":225,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"mixerusdt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixerusdt.com/assets/style.css","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"172.67.147.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mixerusdt.com/","date":"2026-01-24T22:16:07.151Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixerusdt.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 04 Jan 2026 06:07:29 GMT","end":"Sat, 04 Apr 2026 07:06:04 GMT"},"fingerprint":{"sha1":"37:20:AB:54:C2:80:92:E0:1B:F0:51:DF:A7:7C:9A:EC:EE:B6:72:D3","sha256":"54:DD:D0:CA:B1:D0:10:F6:3B:E6:AD:CE:12:39:78:80:98:D9:B0:A5:E5:58:B8:F2:0A:AA:1B:99:D0:F5:36:C9"}}},"request":{"raw":"GET /assets/style.css HTTP/1.1\r\nHost: mixerusdt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mixerusdt.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 22:16:07 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 04 Jan 2026 09:04:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"695a2d23-2012\"\r\nexpires: Sun, 25 Jan 2026 06:56:19 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nage: 11987\r\npriority: u=2,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=duJEEbk5feI8Tu7wkLTyK76QSaTb9AzE%2FaQiQmyl%2FwHDAwbNudN2bMoCFfyHVyjTTQxaeEjHtx2yNQuRLQgJCrT6yg0BkMSNRuew\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c32e4b4ae1356af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8210,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"4418e574709b7650ee50697f95cc001a","sha1":"270cc36a38874f1e45c91649b236dd7f58db3309","sha256":"0600f09db575cddc02631357b73bdca7ecba6af6681726e0b1336dfbf3d42ef8","sha512":"33eb8234c9161fa60c7aff2bb4f9ee52a22b5fbaf8c191ed9598c3bc1e31b1490207f08f6842f537b5ad2487567a27d7ac13cc336a9a55edffa8a7b89ade3b1c","ssdeep":"192:GeoYTMgNCGx+ErCBpdX9EHT+x9nt6fuwnlc:B4WrMlKc","tlshash":"8802f218abb359a1686b956ca3efd6c4339894478c4ade3dbecd6204cf4c3b47151b8c","first_seen":"2026-01-24T18:56:42.917623Z","last_seen":"2026-02-20T18:53:50.046099Z","times_seen":6,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"mixerusdt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixerusdt.com/assets/main.js","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"172.67.147.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mixerusdt.com/","date":"2026-01-24T22:16:07.153Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixerusdt.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 04 Jan 2026 06:07:29 GMT","end":"Sat, 04 Apr 2026 07:06:04 GMT"},"fingerprint":{"sha1":"37:20:AB:54:C2:80:92:E0:1B:F0:51:DF:A7:7C:9A:EC:EE:B6:72:D3","sha256":"54:DD:D0:CA:B1:D0:10:F6:3B:E6:AD:CE:12:39:78:80:98:D9:B0:A5:E5:58:B8:F2:0A:AA:1B:99:D0:F5:36:C9"}}},"request":{"raw":"GET /assets/main.js HTTP/1.1\r\nHost: mixerusdt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mixerusdt.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 22:16:07 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 04 Jan 2026 09:04:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"695a2d23-c6b\"\r\nexpires: Sun, 25 Jan 2026 06:56:19 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nage: 11987\r\npriority: u=3,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2QLyEI%2B4h129PkP%2BskF4eiD%2FnKvj6Mu%2B4Xj2AFSRrppqEwjpop5gP%2Fdz%2FoUoENkBsWyvD2fPuGb4NG2z2Pog%2B9GoRjXbT6FrKdhK\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c32e4b4be1456af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3179,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"53a90d05681945a9b48493fff05a343e","sha1":"ed8984fcf771e41fd396f103e4d536b4fdf3e565","sha256":"d9d941fc63980d7d98e60b4303d8eb64aec30d5bc9515d4f8b2195585a67b032","sha512":"36f8d6aaf3b2eab87cfed52d24d2d1128ba598303fe09b96ebd0e29491f8842f47658dae5ed0095a76b6094720e7b256498ecc583bef559acaaa5e7248ca3f8c","ssdeep":"","tlshash":"1861cf6819e226a2cb12ad2867df7508b03185b332489d04bf7f07589fc93e4d9707ec","first_seen":"2026-01-24T18:56:42.920659Z","last_seen":"2026-02-20T18:53:50.047172Z","times_seen":4,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"mixerusdt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mixerusdt.com/favicon.ico","fqdn":"mixerusdt.com","domain":"mixerusdt.com","tld":"com"},"ip":{"addr":"172.67.147.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mixerusdt.com/","date":"2026-01-24T22:16:07.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mixerusdt.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 04 Jan 2026 06:07:29 GMT","end":"Sat, 04 Apr 2026 07:06:04 GMT"},"fingerprint":{"sha1":"37:20:AB:54:C2:80:92:E0:1B:F0:51:DF:A7:7C:9A:EC:EE:B6:72:D3","sha256":"54:DD:D0:CA:B1:D0:10:F6:3B:E6:AD:CE:12:39:78:80:98:D9:B0:A5:E5:58:B8:F2:0A:AA:1B:99:D0:F5:36:C9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: mixerusdt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mixerusdt.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 22:16:07 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6SuHjUu1%2BpyiFUAsuinPighgHyTMJbqoljIi0VR2gdC0w3JukkwxnPgT2hlz4x5ALnMlVUexen7kF7pA3ShzTsvDCFyDQ7H6P4rV\"}]}\r\ncf-ray: 9c32e4b4fe1c56af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":58296,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (56756)","md5":"cbb42513032d6c09e496731ac16c20a9","sha1":"c92f38a701aad58408451d24dd4c47b05f158cf0","sha256":"d189695b2f3bb92369881f2428fa861dca9d9a94c638d9bdc4e2fa747d6f315b","sha512":"3d76f1018afceaba7cbb4083f4a5b5758966ec2aa5d5c6b07d72361782809f7ed4bd34ed9e0c4154d01a2db7192155de8251e5a834dd90b8d9823d916e1b7285","ssdeep":"768:cHJYDDQHVZHIs91TXESJBjgBSp00yCqJ3Z+IYM3WiesRQiULO0bpD9tcNQEfdom2:cmDD6oeFUycwpk06hWp1b99c7VM","tlshash":"8443021803de40a2cd8978d9426f2f3d842a1863da1c94bd1f5b6df4ca0d8a4767f1e9","first_seen":"2024-11-25T13:26:01.204756Z","last_seen":"2026-04-21T19:05:50.052871Z","times_seen":10872,"resource_available":true,"data":null}},"time_used":442,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":356,"receive":86,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"mixerusdt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}