Report - www.waniki.xyz/

Report Overview

Submitted URL
www.waniki.xyz/
IP
76.76.21.142
ASN
#16509 AMAZON-02
Submitted
2024-05-11 00:05:10
Access
public
Website Title
WANIKI
Final URL
www.waniki.xyz/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	unknown	No data	No data	447 B	1.1 kB	142.250.74.106
fonts.gstatic.com	unknown	unknown	No data	No data	532 B	54 kB	216.58.207.227
www.waniki.xyz	unknown	unknown	No data	No data	7.0 kB	5.4 MB	76.76.21.9

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed
2024-05-11	medium	waniki.xyz	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	www.waniki.xyz/assets/js/breakpoints.min.js	2.4 kB	2023-03-07	2024-05-11
Pretty URL www.waniki.xyz/assets/js/breakpoints.min.js IP 76.76.21.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:34 Last Seen2024-05-11 02:05:31 Times Seen86 Hash d2a44a985b34927fd6eaa6d2646bd0fa 0e2cd2bc7d558df7f933056350dc2aa60f941bd8 6986954512ea7fc9ea45934177dfc8aca9ed69dd08976114b0eb39a3e58d201d Loading...

	www.waniki.xyz/assets/js/util.js	12 kB	2023-03-07	2024-05-22
Pretty URL www.waniki.xyz/assets/js/util.js IP 76.76.21.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:23 Last Seen2024-05-22 00:40:41 Times Seen586 Hash 31f3e8b0cbedca627878a2b6d868bc14 3ece9010adc07dd3dc27ced0e22e7ac8bcd16e14 b5424d77c6e517893b9adc5a6cf11428e58461ad9768ad056d918ff1d295c5f6 Loading...

	www.waniki.xyz/assets/js/main.js	1.2 kB	2024-05-11	2024-05-11
Pretty URL www.waniki.xyz/assets/js/main.js IP 76.76.21.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-11 02:05:31 Last Seen2024-05-11 02:05:31 Times Seen2 Hash 73c7346cc501f9ecd8ca66f8822f46ea e8e432f5eb98525414f2360ca0b4014497369a93 2cfabf8d2125787eddcf1440d552c7a96f671a3d82da1bf6ea3121150badc059 Loading...

	www.waniki.xyz/	0 B	2023-03-07	2024-05-23
Pretty URL www.waniki.xyz/ IP 76.76.21.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-23 04:23:13 Times Seen37993627 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.waniki.xyz/assets/js/jquery.min.js	90 kB	2023-03-07	2024-05-23
Pretty URL www.waniki.xyz/assets/js/jquery.min.js IP 76.76.21.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-23 04:21:09 Times Seen276084 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.waniki.xyz/assets/js/jquery.scrolly.min.js	830 B	2023-03-07	2024-05-22
Pretty URL www.waniki.xyz/assets/js/jquery.scrolly.min.js IP 76.76.21.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:00 Last Seen2024-05-22 00:40:41 Times Seen310 Hash cdaa947ce14cf917fd3fbb34bbf69292 6807fda8e44d95117e7007563a4db951818df82b 08d27f460466e4b36d9eb2cfef27e442ca206f87d6cbb157f98c16704c999a2a Loading...

	www.waniki.xyz/assets/js/browser.min.js	2.1 kB	2023-04-16	2024-05-11
Pretty URL www.waniki.xyz/assets/js/browser.min.js IP 76.76.21.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-16 00:37:26 Last Seen2024-05-11 02:05:31 Times Seen15 Hash a868efbf2f2c23c8c9173096bd3f2dee ede97d6fa3cbc2310b5d299c7bb6e1a018eb9667 cf3045098ce36f6b8a095b7d26c2afca6e266ffdd8e7aa07a7deb7f550ee46d2 Loading...

HTTP Transactions (18)

URL IP Response Size

www.waniki.xyz/images/twitter.png

76.76.21.9

200 OK

7.8 kB

URL GET HTTP/2
www.waniki.xyz/images/twitter.png
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced
Size
7.8 kB (7767 bytes)
Hash
3dc4f543e0ba416b73d17a10f4ca6696
f2397aca0fb6b523734563a73db996c5deb94768
7012f3481e2087e78c158db1754d6fb968b6a0b6927ca16d3e55f910ffb060d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/twitter.png HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="twitter.png"
content-type: image/png
date: Fri, 10 May 2024 23:52:32 GMT
etag: "3dc4f543e0ba416b73d17a10f4ca6696"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::6vhcq-1715385152305-0e664547b547
content-length: 7767
X-Firefox-Spdy: h2

www.waniki.xyz/assets/js/jquery.scrolly.min.js

76.76.21.9

200 OK

830 B

URL GET HTTP/2
www.waniki.xyz/assets/js/jquery.scrolly.min.js
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
JavaScript source, ASCII text, with very long lines (770)
Size
830 B (830 bytes)
Hash
cdaa947ce14cf917fd3fbb34bbf69292
6807fda8e44d95117e7007563a4db951818df82b
08d27f460466e4b36d9eb2cfef27e442ca206f87d6cbb157f98c16704c999a2a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/jquery.scrolly.min.js HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="jquery.scrolly.min.js"
content-type: application/javascript; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: "cdaa947ce14cf917fd3fbb34bbf69292"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::hcnsb-1715385152313-4f0b417e9269
content-length: 830
X-Firefox-Spdy: h2

www.waniki.xyz/images/dexscreener.png

76.76.21.9

200 OK

16 kB

URL GET HTTP/2
www.waniki.xyz/images/dexscreener.png
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced
Size
16 kB (16456 bytes)
Hash
edd732102ed54d606198ba4b5d1165aa
683f6f23bbb9902e99d86adf294a4febe827e7fb
0ea8a4d48503c834ca7bc98b0453bc24d825d14258262b41835b6eba6939ccab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/dexscreener.png HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="dexscreener.png"
content-type: image/png
date: Fri, 10 May 2024 23:52:32 GMT
etag: "edd732102ed54d606198ba4b5d1165aa"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::d9zwc-1715385152306-3c38a141a78c
content-length: 16456
X-Firefox-Spdy: h2

www.waniki.xyz/images/waniki_buy.png

76.76.21.9

200 OK

556 kB

URL GET HTTP/2
www.waniki.xyz/images/waniki_buy.png
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
PNG image data, 2884 x 1500, 8-bit/color RGBA, non-interlaced
Size
556 kB (555765 bytes)
Hash
3b6e24dbafdfc80b2fc73b9a8d571586
eaf6fb5e1735d3ca368151c5ae538bff3cff2a1e
a3fd22cd7703f54f257201ec884e2c5ff3075f2c827924838080fb55b878d9f3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/waniki_buy.png HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13397
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="waniki_buy.png"
content-type: image/png
date: Fri, 10 May 2024 23:52:32 GMT
etag: "3b6e24dbafdfc80b2fc73b9a8d571586"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::6vhcq-1715385152309-9172e2cc0e47
content-length: 555765
X-Firefox-Spdy: h2

www.waniki.xyz/images/waniki_modal.png

76.76.21.9

200 OK

683 kB

URL GET HTTP/2
www.waniki.xyz/images/waniki_modal.png
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
PNG image data, 2884 x 1500, 8-bit/color RGBA, non-interlaced
Size
683 kB (682802 bytes)
Hash
19b24e448411086b8fa47ffcb2d3e870
da413d935780e3a72e33ee197b923c9f9cd2b264
fb7d905b7c8c214b6052b9a9f137e40ef3a542baa9a4ad16e55e75f6577ecfe3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/waniki_modal.png HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13397
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="waniki_modal.png"
content-type: image/png
date: Fri, 10 May 2024 23:52:32 GMT
etag: "19b24e448411086b8fa47ffcb2d3e870"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::blwjg-1715385152307-12c117220314
content-length: 682802
X-Firefox-Spdy: h2

www.waniki.xyz/images/Tokenomics.png

76.76.21.9

200 OK

932 kB

URL GET HTTP/2
www.waniki.xyz/images/Tokenomics.png
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
PNG image data, 2884 x 1500, 8-bit/color RGBA, non-interlaced
Size
932 kB (932545 bytes)
Hash
b19362b578adbf5e7079a00ba56bb76b
a4867b78addbfa76347b983d9f3c5dc5386c1a01
88010c89c5780aba44033c84610efbb5a73f074550b87b994920b659e11377a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Tokenomics.png HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="Tokenomics.png"
content-type: image/png
date: Fri, 10 May 2024 23:52:32 GMT
etag: "b19362b578adbf5e7079a00ba56bb76b"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::vprnr-1715385152310-f7700ee85be3
content-length: 932545
X-Firefox-Spdy: h2

www.waniki.xyz/assets/js/main.js

76.76.21.9

200 OK

1.5 MB

URL GET HTTP/2
www.waniki.xyz/assets/js/main.js
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
JavaScript source, ASCII text
Size
1.5 MB (1465079 bytes)
Hash
73c7346cc501f9ecd8ca66f8822f46ea
e8e432f5eb98525414f2360ca0b4014497369a93
2cfabf8d2125787eddcf1440d552c7a96f671a3d82da1bf6ea3121150badc059

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/main.js HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"73c7346cc501f9ecd8ca66f8822f46ea"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::4fgzn-1715385152316-d6fe31701e21
X-Firefox-Spdy: h2

www.waniki.xyz/images/logo.png

76.76.21.9

200 OK

44 kB

URL GET HTTP/2
www.waniki.xyz/images/logo.png
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
PNG image data, 200 x 175, 8-bit/color RGBA, non-interlaced
Size
44 kB (44274 bytes)
Hash
e656e523fe2b57db234746036017d7fb
dd7064792cb636ddccf33df310e1ae778abcaaaa
5c155eeb7df6f3cc42897c1e677726c7f6aa0086d4697b639b6bb35442795122

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13397
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="logo.png"
content-type: image/png
date: Fri, 10 May 2024 23:52:32 GMT
etag: "e656e523fe2b57db234746036017d7fb"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::hcnsb-1715385152930-364b934a2dd9
content-length: 44274
X-Firefox-Spdy: h2

www.waniki.xyz/assets/js/util.js

76.76.21.9

200 OK

57 kB

URL GET HTTP/2
www.waniki.xyz/assets/js/util.js
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
JavaScript source, ASCII text
Size
57 kB (56897 bytes)
Hash
31f3e8b0cbedca627878a2b6d868bc14
3ece9010adc07dd3dc27ced0e22e7ac8bcd16e14
b5424d77c6e517893b9adc5a6cf11428e58461ad9768ad056d918ff1d295c5f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/util.js HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="util.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"31f3e8b0cbedca627878a2b6d868bc14"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::d9zwc-1715385152315-03052d20f63b
X-Firefox-Spdy: h2

www.waniki.xyz/assets/css/fontawesome-all.min.css

76.76.21.9

200 OK

21 kB

URL GET HTTP/2
www.waniki.xyz/assets/css/fontawesome-all.min.css
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
ASCII text, with very long lines (59119)
Size
21 kB (21055 bytes)
Hash
1d4a5860bcbe24db028f661a8fc0ab67
aff81bda37e7369a013f157ec2ced16927eb83cb
24926431fdf5baff0c1929f104152a0726dedf19181876f04cfbc78c98ee318f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/fontawesome-all.min.css HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/assets/css/main.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="fontawesome-all.min.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"1d4a5860bcbe24db028f661a8fc0ab67"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::fthx6-1715385152473-6be66ca9f0fe
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Finger+Paint&display=swap

142.250.74.106

200 OK

427 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Finger+Paint&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.waniki.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (436), with no line terminators
Size
427 B (427 bytes)
Hash
4f7a27f654810d625813aeabd85d3df4
70817fb299f074350ebbda800f922fc9cd78734a
3691c410d63f943ccb6cc24bb53288016d5304dd10b5e654ca41698a340acc67

HTTP Headers

GET /css2?family=Finger+Paint&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 23:52:32 GMT
date: Fri, 10 May 2024 23:52:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.waniki.xyz/assets/js/breakpoints.min.js

76.76.21.9

200 OK

2.4 kB

URL GET HTTP/2
www.waniki.xyz/assets/js/breakpoints.min.js
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
JavaScript source, ASCII text, with very long lines (2578), with no line terminators
Size
2.4 kB (2438 bytes)
Hash
383df4bb855d8fd340e82d6109ca1bba
45a3099e28f9f26872aeb6431880b66089896bf5
970294ca4ebcc91b6db00920206508a746d868be58adf88b33db22a779af86f3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/breakpoints.min.js HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="breakpoints.min.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"d2a44a985b34927fd6eaa6d2646bd0fa"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::fthx6-1715385152314-37d0b5371a51
X-Firefox-Spdy: h2

www.waniki.xyz/assets/css/main.css

76.76.21.9

200 OK

78 kB

URL GET HTTP/2
www.waniki.xyz/assets/css/main.css
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
ASCII text, with very long lines (514)
Size
78 kB (78107 bytes)
Hash
ee1aaab4ff60ffe5dea62becf65d0671
8b3ba515049569b602e0bed405c695908e0878c4
1fe1ab39ecf1945acedb7d686c5536496c3b293046c9ae66c54e53fad0201433

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/main.css HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"ee1aaab4ff60ffe5dea62becf65d0671"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::fthx6-1715385152303-04e26ce77912
X-Firefox-Spdy: h2

www.waniki.xyz/assets/js/jquery.min.js

76.76.21.9

200 OK

90 kB

URL GET HTTP/2
www.waniki.xyz/assets/js/jquery.min.js
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89501 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/jquery.min.js HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="jquery.min.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"8fb8fee4fcc3cc86ff6c724154c49c42"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::rpzlc-1715385152311-96137d28d186
X-Firefox-Spdy: h2

www.waniki.xyz/assets/js/browser.min.js

76.76.21.9

200 OK

2.1 kB

URL GET HTTP/2
www.waniki.xyz/assets/js/browser.min.js
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
JavaScript source, ASCII text, with very long lines (2172), with no line terminators
Size
2.1 kB (2050 bytes)
Hash
b5b3a4e51608fad43fbbee36951f7eaf
f3b4a1c3926c16b7b7f3c8801c939c63a8f99478
f2b2683baee8ef9aa51fb07cb9e22c48b45a66df82551284755d4dd08d2941b9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/browser.min.js HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="browser.min.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"a868efbf2f2c23c8c9173096bd3f2dee"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::v9hmh-1715385152313-299830b3d564
X-Firefox-Spdy: h2

www.waniki.xyz/assets/css/images/waniki_bg1.png

76.76.21.9

200 OK

1.5 MB

URL GET HTTP/2
www.waniki.xyz/assets/css/images/waniki_bg1.png
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Requested by
https://www.waniki.xyz/
Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type

Size
1.5 MB (1464560 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/images/waniki_bg1.png HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.waniki.xyz/assets/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13398
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="waniki_bg1.png"
content-type: image/png
date: Fri, 10 May 2024 23:52:32 GMT
etag: "b4d4cb97060a82d80eab39a16b0ecfde"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::fthx6-1715385152755-c8066f63735a
content-length: 1464560
X-Firefox-Spdy: h2

fonts.gstatic.com/s/fingerpaint/v19/0QInMXVJ-o-oRn_7dron8YW-9JzT.woff2

216.58.207.227

200 OK

53 kB

URL GET HTTP/2
fonts.gstatic.com/s/fingerpaint/v19/0QInMXVJ-o-oRn_7dron8YW-9JzT.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.waniki.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 53412, version 1.0
Size
53 kB (53412 bytes)
Hash
e53b72d9cc110bf93830db73c7d0bce9
0cfdb158e48e7afcf581c4cb51d3c2d580154a10
fe858ea5c066c72ea8efd0bd7d30588ead2a2772b7325a1fe549167ed28f0b9c

HTTP Headers

GET /s/fingerpaint/v19/0QInMXVJ-o-oRn_7dron8YW-9JzT.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.waniki.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 53412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:02:11 GMT
expires: Fri, 09 May 2025 02:02:11 GMT
cache-control: public, max-age=31536000
age: 165021
last-modified: Thu, 24 Aug 2023 19:54:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.waniki.xyz/

76.76.21.9

200 OK

4.1 kB

URL User Request GET HTTP/2
www.waniki.xyz/
IP
76.76.21.9:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.waniki.xyz
FingerprintBC:86:A8:11:3D:60:AB:D5:11:C3:55:6D:62:4C:B6:77:AC:B3:6F:01
ValidityThu, 09 May 2024 19:01:27 GMT - Wed, 07 Aug 2024 19:01:26 GMT

File type
HTML document, ASCII text, with very long lines (4507), with no line terminators
Size
4.1 kB (4125 bytes)
Hash
0ff8f6fcf21e00d527c66dab6e8044b4
f10b05ae9442cf44b4e33472be377b9f29ebdca8
1221d72d113f06c7a9541956c705fa2d8dd80956416941bdd2df01a374dd5d08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.waniki.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 13400
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 10 May 2024 23:52:32 GMT
etag: W/"6607bbffbd68c5488447a2888ae58ab5"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::z82cx-1715385152096-514f979499d7
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (18)

URL GET HTTP/2

IP

ASN

Requested by