{"report_id":"17fd4bf4-e7e1-4fe6-ba1a-0ded293ee017","version":6,"status":"done","tags":[],"date":"2026-05-18T14:03:23Z","url":{"schema":"http","addr":"nasdaqmaxflc.com","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":0,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"nasdaqmaxflc.com/#/home","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"title":"Nasdaqmax","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"nasdaqmaxflc.com","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":0,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-22T14:03:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"admin-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"h5-api.nasdaqmaxflc.com","ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":9,"request_count":9,"received_data":58734,"sent_data":4917,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"nasdaqmaxflc.com","ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":25,"request_count":25,"received_data":42744871,"sent_data":10854,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"admin-api.nasdaqmaxflc.com","ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"domain_registered":"2026-05-12","domain_rank":0,"first_seen":"2026-05-18T14:03:26.500426Z","last_seen":"2026-05-18T14:03:26.500426Z","alert_count":4,"request_count":4,"received_data":4704,"sent_data":1940,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/index.aba275e4.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5a55c204019f9f9fb55ef865b6ae3261","sha1":"10879ced78bc2ae7f7533a9268ec94dc740664b1","sha256":"2e77fe1f50a56b90e93a86a2966ebd9d6be8cc1c0ea218f05f2351949531e5fa","sha512":"40b11dc3063cca4ca0a3b403e54a35a97f4040e01d50fcb7932f7bc76619d5b603ad32bf41a7a89f9f8fcfa8fe22fd3a1a7fac384a3eba48bf8f17be0c4a3008","ssdeep":"384:/K2qBKjOzuNFu955WaNQYduoPtfFZsC2hX9/soXLkZhOO7fGE:yx6euNFu954kQwFf4C2ht/szZhQE","tlshash":"9eb20e65fa2e963aedb749221a1c1406314cbfe685008117f2fc1e377b879f86b0db65","size":24378,"data":"","first_seen":"2026-05-18T14:03:31.802532Z","last_seen":"2026-05-18T14:03:31.93404Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/core.esm.6acae16e.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"06bc9227ff60fdc8c65cafa207585013","sha1":"fbae10690730cebd8aab27313213da41c0c407fc","sha256":"463a2fbeb108dd1473e2c4fca5c42a90efa2fbd7705698dd62b192981f937e2e","sha512":"a09c620631ae201603ce55489eafcdabb6715b9440814e67f56945285fea1b19b316b43c5bf5efe51285e11658a2ea972f06487d16c58c47f5de48773fd8c397","ssdeep":"384:/dZKhOnxV7Iq0kQcW0sYyXk9SCjEa1w46jcZHbFk562HqJ/u:FnVT04sb9cZHbFkA2HqY","tlshash":"c003d78bf620386003cfa2b5e35f2b095136544db10644fcb869dffa1db992d516bbb8","size":38909,"data":"","first_seen":"2024-08-19T17:34:46.617759Z","last_seen":"2026-05-18T14:03:31.911093Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/charting_library/charting_library.min.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8573e89d9ec535663d75f21b1f08109c","sha1":"a8d9eea0b157ceeffc38d4254e6f6abc9d697d10","sha256":"cb0c6c9f1771d252eee7caa043bdd7cfffbd52c2cc4b18b7be7c4554ed069151","sha512":"55d728fa1e0682725f94b17387c6790792d3d34b43652a00097876118575bd6cefa20916d80674519005d72f20ecbb745e9645516c056e6f9bb6691d5efbcb33","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffam:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvu","tlshash":"6e224f58ed2478720acb54f0427f180f8239e278d84944ed3cc4e6ec59fd44a6a6fbb8","size":10858,"data":"","first_seen":"2023-08-16T00:37:19Z","last_seen":"2026-05-18T14:03:31.90498Z","times_seen":496,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"51ee58317b68e62d14ea294e09c11800","sha1":"9f43b42eb473f85737f5b6628a3fc990525c5bf2","sha256":"e2f52bfffe1a77db2953d067cce2fe7fe024551488e93d3f3f6d5653edeb58d9","sha512":"ceb222f4a54cf044df5c6ca131698a8354ff492a6e6348807e489a1a06aaca7cf026b50e35d4c6612e63d36bc3a52a17a642a10817dede198d246566ce8369c2","ssdeep":"","tlshash":"2911abfe291aa0296303405f976b7811643250a9000a584177cc9eadab9ab6dd0cfb8d","size":1054,"data":"","first_seen":"2026-05-18T14:03:31.823799Z","last_seen":"2026-05-18T14:03:31.942384Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/CommonMethod.20682bc8.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"d97ebafab0302d2d67456d51720b7452","sha1":"09ccc2764e1ae385ee5dbedaf7cae4b1289b5090","sha256":"834f5319040d182993c0650757e8a1f0d51eca8e43d398d0478c97f0d9b66035","sha512":"3f6a5ea653e96d6a447339b8908690f639819a615fe281b8866dc759148d21098b7a38843cf76e417ae6bb9da49a555767999bb949ba64eddc2b421ae9d72d69","ssdeep":"","tlshash":"8d1116f5a4c6f7a6032c5d49d03cc063e35d99de2d104dacd0969c64e36b885f1ce617","size":866,"data":"","first_seen":"2026-05-18T14:03:31.77098Z","last_seen":"2026-05-18T14:03:31.909782Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/en.95bf3ac4.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5227018b85f625e15ced457014c8b1ea","sha1":"8d380cd38b6c2db488eaad381cf09ac739938354","sha256":"a70aa9d6c5b8093cf5d77bb8794ce4fca33cb78dc4a2b149501863c1267406f8","sha512":"258935aa0730e0a67ae88008e0e80c42609948deae5dd0deca995a0d08ab28819fbece1abc368092808d788e9a80b8615a59de6d9d0f475af734920242d879d3","ssdeep":"768:KGtZcEw/o7rUOdAFsifnAMC2rAaAMFVoP6+6sPnhmDLqAIo7hR1mwO6fpk7aOL09:uponUOdebE2rdFVLsPhORqL0WXjx8P","tlshash":"1d43198e7e0a98aa05f3537279ce2f5150fa05c18365881f4bfcc5fc53e2b5a6367628","size":55948,"data":"","first_seen":"2026-05-18T14:03:31.783742Z","last_seen":"2026-05-18T14:03:31.924898Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"cda33e0e6a4d990f1937a5851b8f48ec","sha1":"42adeb9bc8945b924b2969a758038e1cc739e0d4","sha256":"cbd46fba023a6ae60b651ab181939a95f01a5df0e2a5100b42763c9bc214e337","sha512":"9d0a657f92926ea6fdc8c9a5bfa0f029e003b60fed9262ef422674f7f215c882a8a77cd646fa606454cefead42c655a7b85852ab70ddb02b64dc23bf82181b5d","ssdeep":"","tlshash":"4101c21a51b544b040abb33c9b6fa780223100d76408ae057e0e9f846f2863d5be0bde","size":729,"data":"","first_seen":"2025-05-11T21:27:13.391538Z","last_seen":"2026-05-18T14:03:31.943813Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/#/","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"bbe18e80a3bb3ffcb3237570d91519f3","sha1":"fb3d2943de83bc0a133c6de47e2ef6e8117f3c19","sha256":"b5d4bbc6a02d20ccd7599478404b07323dd181340a097d8ece5be8ca2a7a5bb0","sha512":"3c75d74522e01e0f171619a8609a6c7548f5aef7d0838682d46b4e4b2448a46c0475d2276a0c37c5bb29c58d73adc7e82a560994e79044994ae329164e0fc46d","ssdeep":"","tlshash":"50e0c9fa35b695453c56516e1dcd1c7171a18177ccee7a0c788dac002faf91c1ab8536","size":306,"data":"","first_seen":"2026-05-18T14:03:31.826683Z","last_seen":"2026-05-18T14:03:31.944708Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"wss","addr":"h5-api.nasdaqmaxflc.com/ws/d131b46f-e914-4434-a503-cf5e1c6538f9","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.915Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"GET /ws/d131b46f-e914-4434-a503-cf5e1c6538f9 HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://nasdaqmaxflc.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: ED3n2QeVDAwyeeRxTbOjSw==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx\r\nDate: Mon, 18 May 2026 14:03:07 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: bBv4f7M+mV8oZhYIzfan38Lpn1U=\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-18T17:41:04.444986Z","times_seen":15397661,"resource_available":true,"data":null}},"time_used":3510,"timings":{"blocked":-1,"dns":1360,"connect":1618,"send":0,"wait":264,"receive":0,"ssl":1066},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/CommonMethod.20682bc8.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/CommonMethod.20682bc8.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:07 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 866\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\netag: \"67d7bf20-362\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":866,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (865)","md5":"d97ebafab0302d2d67456d51720b7452","sha1":"09ccc2764e1ae385ee5dbedaf7cae4b1289b5090","sha256":"834f5319040d182993c0650757e8a1f0d51eca8e43d398d0478c97f0d9b66035","sha512":"3f6a5ea653e96d6a447339b8908690f639819a615fe281b8866dc759148d21098b7a38843cf76e417ae6bb9da49a555767999bb949ba64eddc2b421ae9d72d69","ssdeep":"","tlshash":"8d1116f5a4c6f7a6032c5d49d03cc063e35d99de2d104dacd0969c64e36b885f1ce617","first_seen":"2026-05-18T14:03:31.77098Z","last_seen":"2026-05-18T14:03:31.909782Z","times_seen":2,"resource_available":true,"data":null}},"time_used":269,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":268,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/core.esm.6acae16e.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/core.esm.6acae16e.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:07 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-97fd\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38909,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (38908)","md5":"06bc9227ff60fdc8c65cafa207585013","sha1":"fbae10690730cebd8aab27313213da41c0c407fc","sha256":"463a2fbeb108dd1473e2c4fca5c42a90efa2fbd7705698dd62b192981f937e2e","sha512":"a09c620631ae201603ce55489eafcdabb6715b9440814e67f56945285fea1b19b316b43c5bf5efe51285e11658a2ea972f06487d16c58c47f5de48773fd8c397","ssdeep":"384:/dZKhOnxV7Iq0kQcW0sYyXk9SCjEa1w46jcZHbFk562HqJ/u:FnVT04sb9cZHbFkA2HqY","tlshash":"c003d78bf620386003cfa2b5e35f2b095136544db10644fcb869dffa1db992d516bbb8","first_seen":"2024-08-19T17:34:46.617759Z","last_seen":"2026-05-18T14:03:31.911093Z","times_seen":19,"resource_available":true,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/images/common/home/Selection-a.png","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.019Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/images/common/home/Selection-a.png HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-848c\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33932,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 202 x 208, 8-bit/color RGBA, non-interlaced","md5":"98ea552e10d86e53328dc8d18d44bae9","sha1":"59c539d2e9b067f595cef7c535e61cab3a220c3b","sha256":"b577328331f73a9b4e1119f3d508b43d18a7ad64c5b769a00c9519c073cd925d","sha512":"79c98ee0ca56579b0cbbb58532cee7adfbc38df3e543ab56e163982fea060ae8610681d61cea7243a989f0da8b0e75f2896ac3289151b753d62a14804d10ed72","ssdeep":"768:3tPv9MDiCemCQX9nN2gH/zw1DgWrIMprMZ3PzmZ5OIqyjWGnE:3t39YiCUQNn3HMDgFMprqfzmZ5Or","tlshash":"d6e2f176dd4cdd9e4adc6da0ac96991cb1e28943001cdeb6202a7ddfe3145e5bc8c4ce","first_seen":"2026-05-18T14:03:31.780781Z","last_seen":"2026-05-18T14:03:31.923251Z","times_seen":2,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/en.95bf3ac4.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/en.95bf3ac4.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:07 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-da8e\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":55950,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (55916)","md5":"5227018b85f625e15ced457014c8b1ea","sha1":"8d380cd38b6c2db488eaad381cf09ac739938354","sha256":"a70aa9d6c5b8093cf5d77bb8794ce4fca33cb78dc4a2b149501863c1267406f8","sha512":"258935aa0730e0a67ae88008e0e80c42609948deae5dd0deca995a0d08ab28819fbece1abc368092808d788e9a80b8615a59de6d9d0f475af734920242d879d3","ssdeep":"768:KGtZcEw/o7rUOdAFsifnAMC2rAaAMFVoP6+6sPnhmDLqAIo7hR1mwO6fpk7aOL09:uponUOdebE2rdFVLsPhORqL0WXjx8P","tlshash":"1d43198e7e0a98aa05f3537279ce2f5150fa05c18365881f4bfcc5fc53e2b5a6367628","first_seen":"2026-05-18T14:03:31.783742Z","last_seen":"2026-05-18T14:03:31.924898Z","times_seen":2,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"admin-api.nasdaqmaxflc.com/profile/upload/2025/02/16/4766a9cc-8545-4c2b-bfa4-cad2be91c135_20250216111627A016.png","fqdn":"admin-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:12:10 GMT","end":"Mon, 10 Aug 2026 08:12:09 GMT"},"fingerprint":{"sha1":"B7:94:39:8A:CD:64:D8:A3:36:AF:C5:C8:B5:4C:6B:0B:F8:51:37:6F","sha256":"44:66:1D:4E:CB:DB:2C:5C:6C:E9:24:29:93:C4:B7:3A:D6:13:8F:BB:0B:BD:CB:48:FF:EA:FD:DA:36:0D:64:89"}}},"request":{"raw":"GET /profile/upload/2025/02/16/4766a9cc-8545-4c2b-bfa4-cad2be91c135_20250216111627A016.png HTTP/1.1\r\nHost: admin-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 953\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 16 Feb 2025 03:16:27 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cache: MISS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"92f9d15be55070c0f267e7b9609211da","sha1":"d25e8395244487e169b16cb9508e434ea1ea61dd","sha256":"0e7d0965ce52308846834de79ad8305ea31542444a1ba54888843fc0214418f4","sha512":"d39d1087b689cf8f8d543a282dfc802e0e996ddbdb0553b7376958b0be63dd8f6230451cc3cd3df7d63748ab2165e8e82433c35d4131a7a2c137445ecfeee95b","ssdeep":"","tlshash":"e91188a14b659e01632bcd7fcb2a0142b20b22efb465d716a88f533d0795d871059f85","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-05-18T14:03:31.912057Z","times_seen":1485,"resource_available":false,"data":null}},"time_used":1429,"timings":{"blocked":470,"dns":0,"connect":0,"send":0,"wait":959,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"admin-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/platform/bitbox/logo.png?2.0.1742192417254","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.890Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /platform/bitbox/logo.png?2.0.1742192417254 HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-3f6fa\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":259834,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1140 x 1280, 8-bit colormap, non-interlaced","md5":"f6609f5c7b8a0c011ca13b5dfd8bb776","sha1":"91922ed3f37a6bbe738a38467df696708dbb1803","sha256":"ee72163a216d597f7091bf44ea8211f2b5542a3fa329edb7b4a9588223433cb9","sha512":"01ba059cf766f44696e86d22455fccf0bad0b57df86f770c6299c3746622614cb9f71d793c000cdae594a4f7cf375e2a58f6c9a56ab8e1453b9c7e7660907e10","ssdeep":"6144:CN/0gAid8SZ8MHk0wVEZzLFZv9s00HCWJUmlEzMkH:+N8ME0HnZv970HC/pDH","tlshash":"f54423540de559ba10d83095851fc9e31711b96417dacc8e3dc2b69e3bc9c0bcaf8b6d","first_seen":"2026-05-18T14:03:31.787053Z","last_seen":"2026-05-18T14:03:31.912917Z","times_seen":2,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"admin-api.nasdaqmaxflc.com/profile/upload/2025/02/16/b2f0c70f-4fb2-4472-9fe7-480ad1592421_20250216111118A012.png","fqdn":"admin-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:12:10 GMT","end":"Mon, 10 Aug 2026 08:12:09 GMT"},"fingerprint":{"sha1":"B7:94:39:8A:CD:64:D8:A3:36:AF:C5:C8:B5:4C:6B:0B:F8:51:37:6F","sha256":"44:66:1D:4E:CB:DB:2C:5C:6C:E9:24:29:93:C4:B7:3A:D6:13:8F:BB:0B:BD:CB:48:FF:EA:FD:DA:36:0D:64:89"}}},"request":{"raw":"GET /profile/upload/2025/02/16/b2f0c70f-4fb2-4472-9fe7-480ad1592421_20250216111118A012.png HTTP/1.1\r\nHost: admin-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 404\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 16 Feb 2025 03:11:18 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cache: MISS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":404,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"5e22a9302a4383454bfe530f0ddffb53","sha1":"be5b706cd340c21bd9be3a3ce56647ec384d6624","sha256":"b4f74a2541dbe53158395e8b054ec169ffe18124b55a0b5e027ebd9c22b5ba11","sha512":"0d94a417d4f0c678faea64e59463ab5c6cd582168ae7e744d44c1d6878deffec49dec89d5b5ca176bb15767eae10cdf9aa1691d4b033367becb08caf8ec56889","ssdeep":"","tlshash":"c9e0f1f27d245ca97f5642050fe80ff2d03c66f515119c861db2ca2d554105545d5453","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-05-18T14:03:31.914252Z","times_seen":924,"resource_available":false,"data":null}},"time_used":1526,"timings":{"blocked":471,"dns":0,"connect":0,"send":0,"wait":1055,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"admin-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/notice/list?key=ROLL_NOTICE","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-18T17:41:04.444986Z","times_seen":15397661,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/common/getAllSetting","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.324Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: \r\nSatoken: \r\nlang: en\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:07 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18270,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (17537), with no line terminators","md5":"dff3ed3c9e552071cc2e903e386f0cf9","sha1":"9c15c0f77361418b13553a3161660af3b1813081","sha256":"d798c0568e4825db6396770453c761a473565d6852dec3f25b0d0ded666a1489","sha512":"a3125f1a6122e624d22187f839994bcf01709db0df19595872e152f363101153c90ad5e375be7bab7527bd2d765b89dc018f46db228a3fbb2259f046db647740","ssdeep":"384:YyjbvjJy6zYqq7zyHaoogBfyp3lBv01aXJ9gC1DEkAmRmhLu2Ui5TDlgnZAl4+c/:YyjbvVy6zYqQzy69ofyp3lBv0UXHgC1B","tlshash":"1d82210a25edddba53cb6fc110e67950e99c215be855e88ab1efefdcdcd1520884b00b","first_seen":"2026-05-18T14:03:31.790551Z","last_seen":"2026-05-18T14:03:31.790551Z","times_seen":1,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/images/common/home/Selection-b.png","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/images/common/home/Selection-b.png HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-6af1\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27377,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 216 x 212, 8-bit/color RGBA, non-interlaced","md5":"d1c4a29038c08ab3224e5ddd82a34f24","sha1":"52005448d336e8d5dd395a1d64c92eeeb601453d","sha256":"93366182d431b4618f6048d5e7a6e81fb9d587230af791511086f6fd73c6acea","sha512":"2f273e6ec65edef8d51d1891d0dd8f36eab8d5a116af8f1756ac1073c50134a552b25f1374dc2c6bd0f23896dd23074b601dbb075fc9b70e12758e19c20d8eda","ssdeep":"384:Y+oaQhacDWGeMbu/4OF24TnLRZHXWJyCGaiaVeP0Rdja0WNrzO6StReuCfjypFbn:YHLhacD2MS4G9LvrAiapmcbyeh5O6wi","tlshash":"92c2f173e294ff98240c093ef0195285e6d61788eb1240a4e9d9edb6935fc1b81b46fb","first_seen":"2026-05-18T14:03:31.792449Z","last_seen":"2026-05-18T14:03:31.90683Z","times_seen":2,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/common/getWhitePaperSetting","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"OPTIONS /api/common/getWhitePaperSetting HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-18T17:41:04.444986Z","times_seen":15397661,"resource_available":true,"data":null}},"time_used":268,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/notice/list?key=ROLL_NOTICE","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nAuthorization: \r\nSatoken: \r\nlanguage: en\r\nlang: en\r\nContent-Length: 11\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":11,"data":"ROLL_NOTICE"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2076,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"b32e9a4105c5086300ff41f9c9030f7f","sha1":"233561a1320ffa0f6576c12ff5d49bef6a27b7f8","sha256":"85aebb26db074c9a8607e283b1e46cbf4c004baa8ba6450696e0af2e6772b89d","sha512":"86940fcd5e79547a036df9c767006d40b78b932a7667f56388d4e1ca8a75947a227f807d9644796ff21a1ad253f468887ba52044cae46f6add90036f1c353333","ssdeep":"","tlshash":"3441531b2a281671690714c233df38cc532fd64777155cb9e6aa9f1167c68bf633b481","first_seen":"2026-05-18T14:03:31.794235Z","last_seen":"2026-05-18T14:03:31.919006Z","times_seen":2,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/platform/bitbox/favicon.ico?2.0.1742192417254","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /platform/bitbox/favicon.ico?2.0.1742192417254 HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:05 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 241726\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\netag: \"67d7bf0c-3b03e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":241726,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, -28x256, 32 bits/pixel","md5":"b3c69991ca757144d9056694a3f79f93","sha1":"8402dec1cb505ecb9ce10b9bb74e5a839df37c37","sha256":"19423f47e93c25ac448a0cad20f9d45915af0c33d3b5b6331ef3c7d6a9cdce9a","sha512":"1e0bd34fb4ca4f08ba73426ce9634c2e1f5c0f0051fdd796431fd188da499ea5bd683fd1b33bf07c253d979d85ec26e596f1baaf5c1601c1e5a2e5be95405040","ssdeep":"3072:/GtttnauCTtt87tytx7S4QNKHNoimMhHUSX6eG5:Otttnaustt87tytZQfSUuG5","tlshash":"e43472186f41a051d0a8e0f59260eae0f3647cee5d14af98721bfe5835be8fde025673","first_seen":"2026-05-18T14:03:31.795888Z","last_seen":"2026-05-18T14:03:31.92875Z","times_seen":2,"resource_available":false,"data":null}},"time_used":402,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":98,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/common/getCoinList","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: \r\nSatoken: \r\nlang: en\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:07 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34316,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"4a36436ea1ea89abe7cff24b35f2480d","sha1":"769fa94f2eec507649ad35435a848c0be28b7977","sha256":"68e658fed329f54ce155afeaecc9bca83d0142dc96472fa19576b4279a341e33","sha512":"5daf4667f0d5b5ed59fd551994590f8168e0dfe72e5a752db704cd9f1a0ecd32ee2c4e763aad66a3d8b548d2c0c5f85282feee8169605528787b60592754f627","ssdeep":"768:Huyec3j2eaBMYEiq1r1mZwl2adYJbicxywmM/dF1LRdgJww0jdH/XYKcAszZ1:Huyec3j2eaBMYEiq1r1mZwl2adYJbicW","tlshash":"79f24256012c95bec5aed2c12eef791190dc326fecc68d5b92ce8dc9ced4a70560ae06","first_seen":"2026-05-18T14:03:31.797375Z","last_seen":"2026-05-18T14:03:31.797375Z","times_seen":1,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/fonts/PINGFANG-SC-HEAVY.ttf","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.347Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/fonts/PINGFANG-SC-HEAVY.ttf HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nasdaqmaxflc.com/assets/index.f5037c5c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 11114788\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\netag: \"67d7bf0c-a99924\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11114788,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"BASE\", name offset 0xa256ec","md5":"c11d4835ea9813d0e654d4c375257421","sha1":"44bdbe2b862dd5f236417788db8b286ebb2265af","sha256":"61a3b6d3ef3960a85ea310f8667b8615da678e9edea8b5036c8d9a09aea7169c","sha512":"1fe75b597c55aa2319b1d0efb5b02e4fd4b4e8a4772cf321100658f80957481254e68756b2e90f2cc7bdc0f585043659a10af097d18995037bd4e59917c18938","ssdeep":"24576:BkgBFPX1+oxFnjOPwVgsVDQezA7FEWXS5ltkCbudYqrj2wn0:BkkZC1q","tlshash":"07256dd3c7c87d299a21fd3c2510f66bf48e50088a25d2f9cf672f3618569744ea8eb1","first_seen":"2025-07-29T21:26:30.325138Z","last_seen":"2026-05-18T14:03:31.908671Z","times_seen":40,"resource_available":false,"data":null}},"time_used":2014,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":269,"receive":1745,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/fonts/PINGFANG-SC-BOLD.ttf","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.351Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/fonts/PINGFANG-SC-BOLD.ttf HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nasdaqmaxflc.com/assets/index.f5037c5c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 11139412\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\netag: \"67d7bf0c-a9f954\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11139412,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"BASE\", name offset 0xa2b728","md5":"a5f40309207afeb657ed9436536d0d0c","sha1":"e08b67e9d2d1836268cdc905d4a7bc8aaf46d583","sha256":"b03430452ce3669613d60acaf8d799052aa1fdc03012feb481b5a27fe8a89fb8","sha512":"2a5d9eaeec304955d870d9e68b8efeb3a9ed268b1922a8750cc2fbc79b1eafbfde68f74b6dbddaae97950f0f722790d6a24ccda0c5e28ec0f5a7d252f9fd68f3","ssdeep":"24576:Jk3368WWqmO8+RYKjcpbR8z0AuxRbTn1tET64wBQFFlUqIY7NMIbvW:Jk336M5BI1E","tlshash":"36256d93c7c47d2d9b22fe3c6410f26ff48e5409892ad2f9cf632f36185656449a8eb1","first_seen":"2025-07-29T21:26:30.322215Z","last_seen":"2026-05-18T14:03:31.924118Z","times_seen":42,"resource_available":false,"data":null}},"time_used":3246,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":553,"receive":2693,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/charting_library/charting_library.min.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:02.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nasdaqmaxflc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:02 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-2a6a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10858,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857)","md5":"8573e89d9ec535663d75f21b1f08109c","sha1":"a8d9eea0b157ceeffc38d4254e6f6abc9d697d10","sha256":"cb0c6c9f1771d252eee7caa043bdd7cfffbd52c2cc4b18b7be7c4554ed069151","sha512":"55d728fa1e0682725f94b17387c6790792d3d34b43652a00097876118575bd6cefa20916d80674519005d72f20ecbb745e9645516c056e6f9bb6691d5efbcb33","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffam:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvu","tlshash":"6e224f58ed2478720acb54f0427f180f8239e278d84944ed3cc4e6ec59fd44a6a6fbb8","first_seen":"2023-08-16T00:37:19Z","last_seen":"2026-05-18T14:03:31.90498Z","times_seen":496,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/index.aba275e4.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:06.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/index.aba275e4.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-5f3a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24378,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (24365)","md5":"5a55c204019f9f9fb55ef865b6ae3261","sha1":"10879ced78bc2ae7f7533a9268ec94dc740664b1","sha256":"2e77fe1f50a56b90e93a86a2966ebd9d6be8cc1c0ea218f05f2351949531e5fa","sha512":"40b11dc3063cca4ca0a3b403e54a35a97f4040e01d50fcb7932f7bc76619d5b603ad32bf41a7a89f9f8fcfa8fe22fd3a1a7fac384a3eba48bf8f17be0c4a3008","ssdeep":"384:/K2qBKjOzuNFu955WaNQYduoPtfFZsC2hX9/soXLkZhOO7fGE:yx6euNFu954kQwFf4C2ht/szZhQE","tlshash":"9eb20e65fa2e963aedb749221a1c1406314cbfe685008117f2fc1e377b879f86b0db65","first_seen":"2026-05-18T14:03:31.802532Z","last_seen":"2026-05-18T14:03:31.93404Z","times_seen":2,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/images/common/home/Selection-c.png","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/images/common/home/Selection-c.png HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-86a8\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34472,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 196, 8-bit/color RGBA, non-interlaced","md5":"8f74993107905bf15e1695fb90e955c7","sha1":"8c57a3e05bd2f563223b3a79a690fce2e1c9022b","sha256":"28f6598434982a59fe0586de9460a591b76c8a059af0bc063a526b1d80a9a05e","sha512":"d703eb9ac0a31bc74d900809b22f06d2b5dc616bbdd4eba67987dd306a52804fed44fe50e82f56ba5b6717e51143ab982525e30242983db18d1f1de148238ff3","ssdeep":"768:K+Ntg3s87hjm0tb7/YBag9hV9blhWH/NN0:K6C3s87p9Js39JhWlN0","tlshash":"5bf2f2677248552175a64201b41de52789cab9f67c3369432caff8b113c89304bde5f5","first_seen":"2026-05-18T14:03:31.804013Z","last_seen":"2026-05-18T14:03:31.925766Z","times_seen":2,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/CommonMethod.20682bc8.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.905Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/CommonMethod.20682bc8.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:06 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 866\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\netag: \"67d7bf20-362\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":866,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (865)","md5":"d97ebafab0302d2d67456d51720b7452","sha1":"09ccc2764e1ae385ee5dbedaf7cae4b1289b5090","sha256":"834f5319040d182993c0650757e8a1f0d51eca8e43d398d0478c97f0d9b66035","sha512":"3f6a5ea653e96d6a447339b8908690f639819a615fe281b8866dc759148d21098b7a38843cf76e417ae6bb9da49a555767999bb949ba64eddc2b421ae9d72d69","ssdeep":"","tlshash":"8d1116f5a4c6f7a6032c5d49d03cc063e35d99de2d104dacd0969c64e36b885f1ce617","first_seen":"2026-05-18T14:03:31.77098Z","last_seen":"2026-05-18T14:03:31.909782Z","times_seen":2,"resource_available":true,"data":null}},"time_used":815,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":815,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/core.esm.6acae16e.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/core.esm.6acae16e.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-97fd\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":38909,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (38908)","md5":"06bc9227ff60fdc8c65cafa207585013","sha1":"fbae10690730cebd8aab27313213da41c0c407fc","sha256":"463a2fbeb108dd1473e2c4fca5c42a90efa2fbd7705698dd62b192981f937e2e","sha512":"a09c620631ae201603ce55489eafcdabb6715b9440814e67f56945285fea1b19b316b43c5bf5efe51285e11658a2ea972f06487d16c58c47f5de48773fd8c397","ssdeep":"384:/dZKhOnxV7Iq0kQcW0sYyXk9SCjEa1w46jcZHbFk562HqJ/u:FnVT04sb9cZHbFkA2HqY","tlshash":"c003d78bf620386003cfa2b5e35f2b095136544db10644fcb869dffa1db992d516bbb8","first_seen":"2024-08-19T17:34:46.617759Z","last_seen":"2026-05-18T14:03:31.911093Z","times_seen":19,"resource_available":true,"data":null}},"time_used":815,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":815,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/images/common/home/bannerimg.png","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:07.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/images/common/home/bannerimg.png HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-2faa2\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":195234,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1082 x 1160, 8-bit/color RGBA, non-interlaced","md5":"0b32f8d04b98643844134f46f4e7e69f","sha1":"f42293582f7308d2f85413408808f6c92e64ed95","sha256":"078fe032e45b647a4d655b00ace95848fa6a8a81c2641ab4a327e24c4181d31c","sha512":"3ab86797ed72ef971783d7012d424d15e6e99dc11b05dc78bf5dff0815a9fb96ff31c5fd1c0e96a4be13390fcc60338c62e4d42ce8a04894171f9ee14b8ba133","ssdeep":"3072:xXinE1t7c8o40Y2jqCLAINx5gb0vCPWxCsVQqXSylh3GTA0My6Wc2KJfplNVwptQ:JiM7f10Y2jlL6AqPWx3VQuVlh3GdMH1J","tlshash":"f214f125335635dce2de9c77bcc28f81a6324b9ae597d2ec0381246093a5785fbd133a","first_seen":"2026-05-18T14:03:31.805413Z","last_seen":"2026-05-18T14:03:31.936172Z","times_seen":2,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/common/getAllSetting","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,satoken\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:07 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-18T17:41:04.444986Z","times_seen":15397661,"resource_available":true,"data":null}},"time_used":2495,"timings":{"blocked":1115,"dns":13,"connect":819,"send":0,"wait":264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/common/getWhitePaperSetting","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.756Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"POST /api/common/getWhitePaperSetting HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: \r\nSatoken: \r\nlanguage: en\r\nlang: en\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":183,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a9eb72aee5bbe346a13810849bdf9be0","sha1":"206bc88f47b74cc38871de767e37ee454c1a6d01","sha256":"415ec7ac34c7adcffda81b0cc8a7605175c2bef0bf4541e3af3d5afee38718ab","sha512":"f95d34314444950dc6c0ce63d385b12493a04405cfa3ae9a1bc2dc3b4b950acf4ca116388fc240a51f1c59c134ca1e39b6412415d25c0416e95c5a40fa5691c7","ssdeep":"","tlshash":"98c0225a9c482683128397c250ce0040e0a830ce228a5c0ab64ee2a19810616a2cf804","first_seen":"2026-05-18T14:03:31.806824Z","last_seen":"2026-05-18T14:03:31.915908Z","times_seen":2,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/platform/bitbox/config.js?1779112985851","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /platform/bitbox/config.js?1779112985851 HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:05 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 280\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\netag: \"67d7bf0c-118\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":280,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"b55ece526dad322f1f3a63acc988c7f6","sha1":"ea1d4788fda16454edf2689c06ba329d11869366","sha256":"4af2645b3496886c91516b2873172bd48965522b6ff3ca35312841a755de464f","sha512":"a41d08a2a4517143225681d2db7dcd7d94d6895b8a32b469bd3ae022703f09d5da8509fcb3c4eb3470642afcf016cc46fd29818b1dc1ded50dc26fbdb842b348","ssdeep":"","tlshash":"ebd0c9fa25b684453c05502e1dcc083171914137ccee760c788d5c002fae90c09b8532","first_seen":"2026-05-18T14:03:31.808244Z","last_seen":"2026-05-18T14:03:31.898224Z","times_seen":2,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-18T14:03:01.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:01 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-1021\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4129,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2115)","md5":"31f498e3fec2df4fc01c4fe439d84f0c","sha1":"4d4993fe634ae9be0d340614766c076b4c4d5e3b","sha256":"29b35c096753a3c429c2e40ec74221851339925b37473422163425207935619f","sha512":"4dde670194cdd6f6b6a6db0a539f8678af6f7804c83594e3789308467af765591c5fb6e5fb1702467e643b4f5f6faca709f57b39df16162e2f59f8443568519b","ssdeep":"96:dvzDuso/oDWpIw/RCH2mUsGKAiYwGDKADq2Tu:ZwgjR2nftZbOAm2y","tlshash":"5881766e18f1c8191366223ddfebb2186b3140a746064d543acd0de89fc9fa885db7f9","first_seen":"2026-05-18T14:03:31.809657Z","last_seen":"2026-05-18T14:03:31.927444Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1366,"timings":{"blocked":549,"dns":4,"connect":268,"send":0,"wait":268,"receive":0,"ssl":274},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"h5-api.nasdaqmaxflc.com/api/common/getCoinList","fqdn":"h5-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"h5-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:43:37 GMT","end":"Mon, 10 Aug 2026 08:43:36 GMT"},"fingerprint":{"sha1":"C1:DF:04:E8:C6:7F:15:C0:CE:77:90:D9:31:C5:2A:52:41:6E:C1:73","sha256":"23:67:A4:E9:EF:A4:4D:7B:18:DB:8E:35:94:63:F9:66:91:A6:14:32:43:89:E7:49:06:1A:89:3C:8A:77:38:79"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: h5-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,satoken\r\nOrigin: https://nasdaqmaxflc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:07 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://nasdaqmaxflc.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-18T17:41:04.444986Z","times_seen":15397661,"resource_available":true,"data":null}},"time_used":2476,"timings":{"blocked":1107,"dns":11,"connect":819,"send":0,"wait":264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"h5-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/index.f5037c5c.css","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:02.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/index.f5037c5c.css HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-84c5d\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":543837,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"18be786efa90e9d1d4ad0f7009906155","sha1":"b0f02942b14cb9b6d0943c5c8dd5dafebc61d0bf","sha256":"f5037c5c7a085e9250d762b89a7a2c9a7287167a7f9fa2174e5927e2196146e3","sha512":"ec063069a0be0de12105f1ce71c5ede161877d0ea7dd3068ed490d52a2f47f1f282222ca3143f8da9cbb92b89c63437ee702a8edbdeca7930b70f2cd1be26afd","ssdeep":"6144:UbtitXT+XK4PjDEDSHmWuwK04MuobXSNA/mrlsaFiAFoa:yDEVrhBFB","tlshash":"24c4c655e753513b2e17f63d7bc5e9c8bb28ea51dd12cba5f240a00885c3af502a3d2b","first_seen":"2026-05-18T14:03:31.810966Z","last_seen":"2026-05-18T14:03:31.93803Z","times_seen":2,"resource_available":false,"data":null}},"time_used":821,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":821,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/images/common/home/downloadimg.png?1779112988013","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/images/common/home/downloadimg.png?1779112988013 HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-95781\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":612225,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1184 x 884, 8-bit/color RGBA, non-interlaced","md5":"7025988e9620739f3e77a13071a78ce4","sha1":"f710ac6e093585052d94973108f1449502a35587","sha256":"0a1c0b83505fe5d24fb585285a6ef4fbbade8b85819c63a52bd3e8aff81b9c3d","sha512":"44ad0b5331bc78ac8d8ea067840aaeb0f849d5d76ec4c65918d4fac8a8c186bdef212e7cb22d4ebd5ccfe7e9d626058b6667248c1c9235169303424e99f75aa5","ssdeep":"12288:BvTy7cBqp5Gzf2ZsRtd0N/fhVlvEIA01ULP25NicOulh:RTWcBqLGTafVlxfsP25NiTulh","tlshash":"ffd423e9023c304e8eafc25b37ec5c562170a550cae7a9fb1bf8a91e190449fb1f1d64","first_seen":"2026-05-18T14:03:31.812642Z","last_seen":"2026-05-18T14:03:31.940932Z","times_seen":2,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/images/common/home/investimg.png?1779112988021","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.026Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/images/common/home/investimg.png?1779112988021 HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:08 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-12ec5\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":77509,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 960 x 960, 8-bit colormap, non-interlaced","md5":"9267ad6af6eaacc24390a8f33870ef76","sha1":"6541d731da0afcd1af6587e1b4c13bc5f1fe4d52","sha256":"aa6a9c639280f31ff25cd23af4f8cb4f12b731b972a4468ae251daad06117b11","sha512":"de85a8516252d1fc79ef5fd40ddc19ebd4e3f7ca0e933bb0ae91715748bde79cca7b3e650851d421dfa44e69236722340f17deacae4b2e83150aebfea98b9eaa","ssdeep":"1536:i4LGU8vqIyjyXqRwksQsohMUqQHwqO3X6GU0NSKqYN/o/rTTkPjtbG7jqs:i4LGWIyjyaGksQvLqQHwx97SKqC/o/rh","tlshash":"df73013bb7bc0646900205a14fb212e92b660cbbe647fc86fe711ea19936d2b5115acc","first_seen":"2024-08-19T17:34:46.66014Z","last_seen":"2026-05-18T14:20:36.313023Z","times_seen":84,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"admin-api.nasdaqmaxflc.com/profile/upload/2025/02/16/1eda1f7f-585a-4f16-abd7-a7104221414a_20250216112657A029.png","fqdn":"admin-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:12:10 GMT","end":"Mon, 10 Aug 2026 08:12:09 GMT"},"fingerprint":{"sha1":"B7:94:39:8A:CD:64:D8:A3:36:AF:C5:C8:B5:4C:6B:0B:F8:51:37:6F","sha256":"44:66:1D:4E:CB:DB:2C:5C:6C:E9:24:29:93:C4:B7:3A:D6:13:8F:BB:0B:BD:CB:48:FF:EA:FD:DA:36:0D:64:89"}}},"request":{"raw":"GET /profile/upload/2025/02/16/1eda1f7f-585a-4f16-abd7-a7104221414a_20250216112657A029.png HTTP/1.1\r\nHost: admin-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 1008\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 16 Feb 2025 03:26:57 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cache: MISS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1008,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"1d8873b15ce7e65a262d1788f19912ef","sha1":"ef5b427eafdcd42ba4e2a785a49bbfb13fb0c1e0","sha256":"93d103ab945f2972cbdd53050d239c6b9df3d430e9343a21143e805b280e3967","sha512":"1d09a7cf6e12da2a6a2d7a16cba54408f3a90dd58acef01b268b37c3f0545b0541aca6725b894862af1de877dd6c7d2ab9cec94baa7584536e9011e6c5553dcb","ssdeep":"","tlshash":"5a11c461b9beb91ac362083381c121b0ca066c3b4120f2e7cc08b210a23c00ad7c782e","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-05-18T14:03:31.922409Z","times_seen":345,"resource_available":false,"data":null}},"time_used":2405,"timings":{"blocked":461,"dns":0,"connect":0,"send":0,"wait":1210,"receive":734,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"admin-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/resource/fonts/DINOT-Regular.ttf","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:03.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /resource/fonts/DINOT-Regular.ttf HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nasdaqmaxflc.com/assets/index.f5037c5c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:03 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 12381068\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\netag: \"67d7bf0c-bceb8c\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12381068,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 16 tables, 1st \"BASE\", name offset 0xa88e6c","md5":"8c1c07fe2997321d54b049da39e880fa","sha1":"e85c69e54574d47b1a3b665a5f7c98ffeafcd371","sha256":"c6b6dd24e24ea6c07767f20fc1b2dfe86f31b1ca166ae620079c67dcdd5add6d","sha512":"192427288363eb352a702f85cbf2d714a78374d4583da9be541fdbcbbaf4e643103ded1b942d601838476029b05eb5b84d8b08998b546046255fa29670bf1127","ssdeep":"24576:H/8MftuDPIz9ZeJ199QETruMGR7JrhCannDH3l8cVZYIVY0:EituDduVjn7Zf","tlshash":"94257bc297c92d1eea22bd3c2440f63e70ce65088a56d6fade431f3718429741de9eb5","first_seen":"2025-07-29T21:26:30.315596Z","last_seen":"2026-05-18T14:03:31.939859Z","times_seen":59,"resource_available":false,"data":null}},"time_used":2987,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":457,"receive":2530,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/platform/bitbox/logo_144.png?2.0.1742192417254","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.714Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /platform/bitbox/logo_144.png?2.0.1742192417254 HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 17 Mar 2025 06:19:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf0c-8f605\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":587269,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1140 x 1280, 8-bit/color RGB, non-interlaced","md5":"b49bc72f31f91926f8be3285b012968a","sha1":"c5d22d80acdc1c60bff4d9267680bc3e24f25b7a","sha256":"ef7e2ad4536ff7f0aa937ead9287b297897780b7fbc516e897082c6625f7bb6e","sha512":"7a2107410d8795e5df0f752a947c86f98880cab2652f8920973782b80b5149e71d8cc7a247c288d30632f46cb917b025e0639447f9c778f2f59345cd8f30a903","ssdeep":"12288:E7idt5zlPBG2E2KC9P6IRmusD+G1sW+2AhKPsvtKBtU3s5i1ro:Vt9TTE2qVuRG7VAh/vtt9o","tlshash":"e3c4232df2434fd840dc335429859a26a436a8713fd2299a12d3581e73dce26ed9eff4","first_seen":"2026-05-18T14:03:31.818269Z","last_seen":"2026-05-18T14:03:31.896246Z","times_seen":2,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/index.fb18cad5.css","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/index.fb18cad5.css HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:06 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-39a7\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14759,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (14758)","md5":"7f102d7ebad369c0759c513b21fef30f","sha1":"0e4400a1b2c84857d6b6f2a143a0733ffe0ab071","sha256":"fb18cad504df4a5593afcf85c0ac8c9978813ae7a4dedd09be7a2ae2c266ddcc","sha512":"9e152574cb59f01bb822e60370080468949dbe9e19adb3025ba75c842611b2842f48aa0e246bb8c0cde1fbf493df97bfae0eddbb92a051e704d71653149dc39e","ssdeep":"192:91YwGXMuhTEMREocqIs61dGV7vnluVDy4qThu1vwbW62lGvWlXaYZdzgDY8r:9y8uhTEwxt161dGV7vnluVDvqCE","tlshash":"b6626048b19d6536b837e4092ca88b8e7405ff97c4025398dd8ea67ecdc39f32728761","first_seen":"2026-05-18T14:03:31.819667Z","last_seen":"2026-05-18T14:03:31.919844Z","times_seen":2,"resource_available":false,"data":null}},"time_used":821,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":821,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"admin-api.nasdaqmaxflc.com/profile/upload/2025/02/16/8e0060bf-9aed-4003-aba3-3d2367c18215_20250216112521A025.png","fqdn":"admin-api.nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"206.238.197.57","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:08.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin-api.nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:12:10 GMT","end":"Mon, 10 Aug 2026 08:12:09 GMT"},"fingerprint":{"sha1":"B7:94:39:8A:CD:64:D8:A3:36:AF:C5:C8:B5:4C:6B:0B:F8:51:37:6F","sha256":"44:66:1D:4E:CB:DB:2C:5C:6C:E9:24:29:93:C4:B7:3A:D6:13:8F:BB:0B:BD:CB:48:FF:EA:FD:DA:36:0D:64:89"}}},"request":{"raw":"GET /profile/upload/2025/02/16/8e0060bf-9aed-4003-aba3-3d2367c18215_20250216112521A025.png HTTP/1.1\r\nHost: admin-api.nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 894\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 16 Feb 2025 03:25:21 GMT\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cache: MISS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":894,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"a53cfb070eebb9a41e942328db6f08b7","sha1":"8bf5ecd85b99d18dc0030051da66844f5a979a1d","sha256":"a9edda4d36929c281cf08a07abaa09d9950fb9545c001851a82229e53af78472","sha512":"cea73e5fdf649fd0da5ecece5449dd71e0eff4e020308b7af8e03a9d3fea12dd14df6791eb44b1ddbcaa92de4a9b78ac511a04240253789e4bf10dbf38e34488","ssdeep":"","tlshash":"311167dbcfb108cb6605746a86f07135f742d19d1695d8fa413be6a102d3919564f30a","first_seen":"2024-11-06T16:41:01.091862Z","last_seen":"2026-05-18T14:03:31.915098Z","times_seen":155,"resource_available":false,"data":null}},"time_used":2408,"timings":{"blocked":461,"dns":0,"connect":0,"send":0,"wait":1213,"receive":734,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"admin-api.nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/index.aba275e4.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:05.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/index.aba275e4.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-5f3a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24378,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (24365)","md5":"5a55c204019f9f9fb55ef865b6ae3261","sha1":"10879ced78bc2ae7f7533a9268ec94dc740664b1","sha256":"2e77fe1f50a56b90e93a86a2966ebd9d6be8cc1c0ea218f05f2351949531e5fa","sha512":"40b11dc3063cca4ca0a3b403e54a35a97f4040e01d50fcb7932f7bc76619d5b603ad32bf41a7a89f9f8fcfa8fe22fd3a1a7fac384a3eba48bf8f17be0c4a3008","ssdeep":"384:/K2qBKjOzuNFu955WaNQYduoPtfFZsC2hX9/soXLkZhOO7fGE:yx6euNFu954kQwFf4C2ht/szZhQE","tlshash":"9eb20e65fa2e963aedb749221a1c1406314cbfe685008117f2fc1e377b879f86b0db65","first_seen":"2026-05-18T14:03:31.802532Z","last_seen":"2026-05-18T14:03:31.93404Z","times_seen":2,"resource_available":true,"data":null}},"time_used":817,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":817,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nasdaqmaxflc.com/assets/index.31c50445.js","fqdn":"nasdaqmaxflc.com","domain":"nasdaqmaxflc.com","tld":"com"},"ip":{"addr":"154.82.113.3","port":443,"asn":399077,"as":"TERAEXCH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nasdaqmaxflc.com/","date":"2026-05-18T14:03:02.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nasdaqmaxflc.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 12 May 2026 08:13:21 GMT","end":"Mon, 10 Aug 2026 08:13:20 GMT"},"fingerprint":{"sha1":"E4:F7:69:86:96:4D:A6:90:75:90:DD:51:92:6D:64:31:D2:5E:AE:8B","sha256":"44:EE:F7:16:C4:CD:12:14:B6:86:E1:EF:E8:58:FB:E5:49:62:79:BA:C6:66:9E:5C:A5:65:83:BF:BB:24:DC:78"}}},"request":{"raw":"GET /assets/index.31c50445.js HTTP/1.1\r\nHost: nasdaqmaxflc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 18 May 2026 14:03:02 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 17 Mar 2025 06:20:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d7bf20-507cc1\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5274817,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"db4cb4948aac178a849cfb49fb8eaee0","sha1":"b8ce62d4fa9a3c562db4b021619d81051eccbf94","sha256":"55add1fa811344f0ad418082f7dc253877fe59668f43f05133a4e683e43b62c8","sha512":"ea787cfb83eb180399663ed137ea9df73516877ddcb1d37c16d883756471acc5530c9e28550a6b9b8c6d6483577bb5c965c34d093f9a21d5db731906540db9ab","ssdeep":"24576:0i9whfEFtBPZWPEKrBQrBkowvkHNejb4L0Sc64n1pI:0i9whfEFtBPZGEKrBQruowvkHNQbY0SX","tlshash":"15254b913595f02287fb58e640aa0004f23d2b5db40584e4f1bdddae39abc54b2bbf79","first_seen":"2026-05-18T14:03:31.821984Z","last_seen":"2026-05-18T14:03:31.932386Z","times_seen":2,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-18","alert":"Sinkholed","trigger":"nasdaqmaxflc.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}