{"report_id":"25504710-2baf-4aea-9c07-20799180bd4b","version":6,"status":"done","tags":[],"date":"2026-05-07T06:15:47Z","url":{"schema":"https","addr":"bybit-up.com/","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"bybit-up.com/#/index","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"title":"Buy \u0026 Sell Bitcoin, Ether | Cryptocurrency Exchange | Bybit","dom":{"size":26711,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (25482), with no line terminators","md5":"0427539efd6b87c1a0b6b03d2d1d94b2","sha1":"5c3ccc6986392dccd18b9fa43b8be55d39f4ebbc","sha256":"8fd4604772e2b566d4e1f6e5fb9a18039cc732cff423d8e6a5ce6e3f741033d9","sha512":"235fcad0ce21931e43320aa9eb265be4b4d8f00ca85fd73f62a5ba35f73a6f1f0ed64c9afcfeb12c544cdf994f89a84d63e8020b6af81dcbbc80cde622b4f130","ssdeep":"768:Pb/QzKAVRztAT2zpATSzoAAPzwAh4QztA85z2AcazqAGkNNNNNNNNNNDsrE:PrsrE","tlshash":"67c239885152a1174473e4d1e8a02f2ff643eb5bc31acd479a7cd6d87bceee4a5008e6","dom_hash":"domhash68501bfad4cb64ec6b28d431103e89a5","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"bybit-up.com/","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-11T06:15:47Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bybit-up.com","ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"domain_registered":"2026-04-29","domain_rank":0,"first_seen":"2026-05-07T06:15:48.441799Z","last_seen":"2026-05-07T06:15:48.441799Z","alert_count":92,"request_count":92,"received_data":1025511,"sent_data":43775,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bybit-up.com/static/js/180.fe9fe504.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d1d60df81b1bb1f1167b480eca7f048","sha1":"d08da0104539b39067d6f7b0aff24a8b788f8912","sha256":"2fe87268dddbca4f07be50ddcb473d0aa216fc8e7e6f74d2646f6750a41ad9e2","sha512":"e641e9b2b3c03580604cbf8347d18f3d43fd3195cfde0001f68adc65bb92883b131fbc4edbe5309c83fe2f183fee2ca6d1124fb920f917863e6110f4dd02c26f","ssdeep":"192:qs2QxGu5otv7WUZ0Z5KwIeBOA/yhu1KDIH0w69nul0KljBjujjjnj5d6j0nkmXeu:D8hVecjkmXe+mybl7n","tlshash":"dd924e12f497eaae9c379061626e3930e0261ee050209883f77ccd67dad4dac671db9c","size":19385,"data":"","first_seen":"2026-05-07T06:15:53.705802Z","last_seen":"2026-05-07T06:15:53.705802Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/runtime.c5ae9f36.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"455b3c92d67f4ea7e99ba0bf67bed9a4","sha1":"a2803425177013f7ceb6b676921057206bcebbd7","sha256":"ebcb572eb72a492c90798a67b8c0d13c29d74ea1d3800442062975d5f763c2a0","sha512":"de4e46a00a4a04e7de5c20541aa3632b88d4ce1d406684cee6b439ba4d06ec0f9c132c38d001cea81a4538985fcfe79e50194bfff3a748064f7152becf95c97d","ssdeep":"96:SVlgcJORI2h2KKjdBVZVV6SCzpKOqVdcV6wTtPdc+vlf:SVB2gjHvzttcV6Qdc+tf","tlshash":"c19175aeba45b57a17d3b4a0483fd24ab6772173281f84a1d31ad4b17c38ec94127fc8","size":4530,"data":"","first_seen":"2026-05-07T06:15:53.732686Z","last_seen":"2026-05-07T06:15:53.732686Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/chunk-vantUI.4e3d429a.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"756e63cd79a83f4dec090b1ed4f84166","sha1":"21debdf2cac0b611a88ac4f16a162e6b1bcc2c33","sha256":"79a4571bfbcc662185671e43965e443cf01744563d84ce8912e1f7cb5bde7667","sha512":"3528f7e07ab04f2155e1d270314c50b80ea2e069738a2c03dd0a79c82e95e48a480bd697784aa78c9f553dc34b1b1be23edb3898ed79a7433fcd713f3513a102","ssdeep":"768:AKrJgSyLLXJ156MWIITdJg/3lX2xEnBWLZTcSdl:5rJEXJ15FWIITdJg/lX2KnBW5cSX","tlshash":"b3f2d88df0c9f4151b536024806f350eb2372a88a40a44acb67af4e5be7d66e7167f7c","size":34758,"data":"","first_seen":"2026-05-07T06:15:53.744228Z","last_seen":"2026-05-07T06:15:53.744228Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/chunk-libs.8303d22b.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0ae95fab3d7bac5e2524c33dab03abf","sha1":"46c630168d324db2f061fad78f6455fd0b4e34ac","sha256":"515d82fdf18ed395a5b8d152c35aed5eaa5fe5552f32e96c7d116270ca6be5d5","sha512":"0ba1fd9dd691039c0457eb67cb9210cc072d3ba642507cb5b98a8f728cfc22152855c259591d5b1a4c1ab9c91179f7e3f2c455f7f8e9faffd303b5f27f7eba6e","ssdeep":"3072:tjfGjOaf4yMOaGsqiaKXOfweTzS1AnNkn+oVwac8DnAspCaNkqZkrEfLlKS+6u1O:tjfGqGsq3YeTmNHcqasH5DuNWwK","tlshash":"db74d68cfa92b0b51be365e0806f550bf23b2a68740e94d0e6a2d4c5ac7894f5137f7d","size":369959,"data":"","first_seen":"2026-05-07T06:15:53.745234Z","last_seen":"2026-05-07T06:15:53.745234Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/app.79d7f9d7.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"646644e389dfdddb1896650a6a23cf6d","sha1":"f924923f567214013bcbf9db690d0a9e692694e9","sha256":"e08a8350aead72e0ce551afe9bd49b428e8addb0dec6bb4662cc2fc1156f5d5b","sha512":"062dc3593cb537e9ebf439f3a3641339fc69ec754a6373d9316964a8afccc24b178463eed47fb7ee3c4da76999dac6a8c2c05468ee8e8f112d81f38c13eeff7f","ssdeep":"1536:twlohLyQH8TWVly/til+lql9LEJhFP929IhAHUhiZI88y:tNhLyYLEJvkShAHUk","tlshash":"4143285c46ad98eb1b915e6ae5a23009f5ae9c3bfa13c7500cdc88dd16d1a4ec389378","size":59997,"data":"","first_seen":"2026-05-07T06:15:53.677264Z","last_seen":"2026-05-07T06:15:53.677264Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/458.49b898f8.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"2b28b0396ed81d924ba3b94aba731e6f","sha1":"a510c436674025d7353fe870b30dfb907cb7d968","sha256":"8dcef4dcdd3521d2135aa8f9d24ad5a713d193e096ebc7d4235a4b647ccb9f16","sha512":"d69bdfb0bed70b9e59516ef3a4f9c285f2ce319737ba5707a49f87c82cc22eaa21fba31e94956f7162d8cfe94cc7e7ec7eb29cd6f755fb0d7e1ecad9b1942de4","ssdeep":"","tlshash":"fef026747083bdec5f7b1115407f1631506766e29d2e48c2f6b8cc55503544c03183cc","size":543,"data":"","first_seen":"2026-05-07T06:15:53.746145Z","last_seen":"2026-05-07T06:15:53.746145Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:34.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134534950}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:35 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9b8930e7bbb42072fe6bbc86198aba8f","sha1":"710cb7304e7ff7d185fe37608d3c0e3728b97a52","sha256":"7c60e80a0de42b455d9ccb650564511502541c41f4b280d3587f16bf20eff999","sha512":"bb86ea9e7d85330c3ab757d7a022801cd1a20442e9af9fbc2d1a75fc6f2eb7b1405e00897db035308e5229f7cb8f7326a663079818f29ad7d536274f52ba9da5","ssdeep":"","tlshash":"c0a0222000080c8b0fa3fc0ef80823fa23e83282c8c20333c80e283cca8c88ca003030","first_seen":"2026-05-07T06:15:53.666768Z","last_seen":"2026-05-07T06:15:53.666768Z","times_seen":1,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/r3.8bf4eb17.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/r3.8bf4eb17.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 522\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-20a\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":522,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b7c0cd849091642bd3e074c9c555abc8","sha1":"6144d0acb00a694f816d6e3272a6ec67ca3f0c11","sha256":"a784dca54fb70cab699d65be941f41f5462c86f269e4021eee9e2338b1af2e2e","sha512":"e18279d7605d3967b35249be3345d75f40fd7a89998301bce57b2627a583ee967d38879ca4e36295d033f4c8c5fd1cb6de2c675b84e64b0b31d9652066765021","ssdeep":"","tlshash":"13f0a74a23180c3cb6230e60db5a7375917e0693569872588c332174156962f7e7faf8","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.674434Z","times_seen":46,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":382,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f4.ff821416.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f4.ff821416.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 820\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-334\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":820,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eff30f9e4981bdfeae14fcef061f93f5","sha1":"23ff2133a47142ef999feec4bdadf35385266854","sha256":"5402d38f13897880166a361a644aca796a78676ee9c84f8c1393cd2e0ede4305","sha512":"b17ca831eaaac635d5f2b5dbba7cc2ba2720c8039cc43b2319073c817fe9d9d047ef36e65197f8322f7768e3c2f9fdcb0c49265ab1a1876a6898b0860cecd3ee","ssdeep":"","tlshash":"c201b8f74784b2c06122c71a45382039b3f339f02e556fe653a8ca583d962839dd5f8c","first_seen":"2026-05-07T06:15:53.675044Z","last_seen":"2026-05-07T06:15:53.675044Z","times_seen":1,"resource_available":false,"data":null}},"time_used":542,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":541,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:28.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 19\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":19,"data":"{\"action\":\"access\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":66,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"34414c328ab9b7547b29f2ee83184cf0","sha1":"2f1b128bdafc378fdf1bf9ae03136763faf44bc0","sha256":"1e8b847550fa4ca3f443fd569cd1ca0f9f7bc81c912c1ce49a0d9ba0e748f146","sha512":"7c4ac9bcde541707d09d1c3c2660906dc11106b91759c254043e8c2dca372bbc44b1f540f2760b5f34bb7508ec7dd23d91e2b49245f7bb10086fc7ebd06d050b","ssdeep":"","tlshash":"2da02220000808830800f88cca080382a3a8320280c30bb0ca0f283cc00c08ca002830","first_seen":"2026-05-07T06:15:53.67625Z","last_seen":"2026-05-07T06:15:53.67625Z","times_seen":1,"resource_available":false,"data":null}},"time_used":498,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":498,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/app.79d7f9d7.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:26.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/js/app.79d7f9d7.js HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:26 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 07 May 2026 05:28:21 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69fc22f5-ea5d\"\r\nexpires: Thu, 07 May 2026 18:15:26 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":59997,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (41932), with no line terminators","md5":"646644e389dfdddb1896650a6a23cf6d","sha1":"f924923f567214013bcbf9db690d0a9e692694e9","sha256":"e08a8350aead72e0ce551afe9bd49b428e8addb0dec6bb4662cc2fc1156f5d5b","sha512":"062dc3593cb537e9ebf439f3a3641339fc69ec754a6373d9316964a8afccc24b178463eed47fb7ee3c4da76999dac6a8c2c05468ee8e8f112d81f38c13eeff7f","ssdeep":"1536:twlohLyQH8TWVly/til+lql9LEJhFP929IhAHUhiZI88y:tNhLyYLEJvkShAHUk","tlshash":"4143285c46ad98eb1b915e6ae5a23009f5ae9c3bfa13c7500cdc88dd16d1a4ec389378","first_seen":"2026-05-07T06:15:53.677264Z","last_seen":"2026-05-07T06:15:53.677264Z","times_seen":1,"resource_available":true,"data":null}},"time_used":799,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":799,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/css/chunk-vantUI.3a51da18.css","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:26.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/css/chunk-vantUI.3a51da18.css HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-1045c\"\r\nexpires: Thu, 07 May 2026 18:15:26 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":66652,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"3b0f11393ab09b2a957d8100d00b8a70","sha1":"0087225b9953c2bf42123bf93a7fb3d5eb215ca1","sha256":"8a16cff33cfdce12101e2d240398277eff0e8030596e21a1c27ef5a5827e9326","sha512":"0830762fb461a244657cd6d8830b9316887a24d63a03091564229e42e2c3fda24e570ba94b3a2a656abe6ac94b5668d40f39ca6729a493d0857896aaad893c3c","ssdeep":"1536:P0QbFNJ+jqkiHc4rx3WqyrtpqoSWEDZj1wJntnh:PzrxmNH9yDTytnh","tlshash":"4b531af688c811ec732bc9128fc4f6e8d199e122d9810dd5f10a661e4fd7b961296f3e","first_seen":"2026-05-07T06:15:53.678339Z","last_seen":"2026-05-07T06:15:53.678339Z","times_seen":1,"resource_available":false,"data":null}},"time_used":799,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":799,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m8.bb6cec62.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.929Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m8.bb6cec62.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 903\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-387\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":903,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f98c8df458b81b8196bbd1ba1597ab0b","sha1":"556b2be0096ad7c871bfaef3d2a682e883e79f65","sha256":"24ff3428c4b28fe0eab009384dd33bcb31133980b8d47f52e8a1384871901145","sha512":"9fb1396aaad67ea392a26cdf272d355ab027915f671804d82eb2d6467c3175a11308c08fb5ab09f5335006fae93ab38ce9692745773a5403dd5a4ab9e808683d","ssdeep":"","tlshash":"831123f183ace2a8d54807b1da2b7cba306b24f02344125d83a16d00fc2d96e2d6dcc0","first_seen":"2026-05-07T06:15:53.679246Z","last_seen":"2026-05-07T06:15:53.679246Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/download.d7667528.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/download.d7667528.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-c18\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3096,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8e9c44617fca9e4ee27d7acb9c330a35","sha1":"0167362385725e50a70fd8a95cb04736714d4e8b","sha256":"939d8dc7fc9b49b931fcea5476abd31605fb3d2fae9b2a8c11102f283dc6d4e2","sha512":"712bd4e6dd808e23b0abfcdf12def2034097a99590e420ce39a23a13b63c1fefd12b669fb5dd59e26c66fb4d5b94086585bbceec69878af44397606658f7dac2","ssdeep":"","tlshash":"cf5161f7a2c4b3f1a187db64d81354217a9f28fa3fa9cb4e8240ddd0d6260298c4ecc0","first_seen":"2026-05-07T06:15:53.680053Z","last_seen":"2026-05-07T06:15:53.680053Z","times_seen":1,"resource_available":false,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/apple.1df6a50d.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.939Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/apple.1df6a50d.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-47a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1146,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c044d7335ea4b6a2836dbc95e89b5c17","sha1":"25251cba77db63cace3e0418650cc05a1ccff8ef","sha256":"6afede31761c6e149252330b164276a0cebaada9f6da9e53e3c06e3b71ecef90","sha512":"f18dd760c85b4c1a456f9579e33cb2cbc2aee73d2b95edf51e0343be46b7d143da9a4bc6db7b002feb09ba115d7c71883953f1a720ad325a862b19e762383e5c","ssdeep":"","tlshash":"b421f3f361c4e4f4e497cf70e9357c73b989307daac4837484a0dea896655e58ccc990","first_seen":"2026-05-07T06:15:53.680947Z","last_seen":"2026-05-07T06:15:53.680947Z","times_seen":1,"resource_available":false,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p1.4705589f.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p1.4705589f.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-3488\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13448,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0142ae154114d1fc8549fc6a1c7b15c4","sha1":"0067ed773f3ead5190bbc91b1e7be4740fcbb912","sha256":"9197333c0dce2f30000de26128b312d5f9d5a0a10d2745d07376780a6dbff044","sha512":"91b9137f62a9ade2129e0b75198fdd527d1566000b941246c2702dd6b41bebf13674dc8cc9b6ddd1844cb5184e152bbb826239981f29dfcfebe0030b14187a0c","ssdeep":"192:BSAZsjN3LkcBgloLpcugpen+EDKxBXFkC4AalWIv5KAbiRoxX5E:BShVkcBglcJ+EmnCA3IBC+15E","tlshash":"4c5285cd6b3949bcf400a2fec90b141d3d97adc4ba408475d2942c17d0a35a96dbaedf","first_seen":"2025-06-27T17:10:09.986614Z","last_seen":"2026-05-07T06:15:53.68187Z","times_seen":21,"resource_available":false,"data":null}},"time_used":543,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":543,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f7.c4427fc3.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f7.c4427fc3.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-94d\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2381,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4609481a680ccf8f6fe879aceed5b497","sha1":"9ab3287d000884c12e96d306bea1799d76d283ed","sha256":"75a43ceee3c0a98605d24a4b484ba49d983847499d025befc45a403e6214e708","sha512":"8dac41fc94070e9e7b0446cd70ec897f5bae08306a927556d09fd3afa0da1bd2186705b61cf0d3750c33c5813bdb6688d4d1d74b1b33ad942fccba1d7a0e25a8","ssdeep":"","tlshash":"804174f783d8b1e0d247e720d4019a76b76b30fe37a28f5c82948ad8b624108cdcdc95","first_seen":"2026-05-07T06:15:53.682958Z","last_seen":"2026-05-07T06:15:53.682958Z","times_seen":1,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/r5.a11012d4.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.949Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/r5.a11012d4.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 505\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-1f9\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":505,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eb5e0ec2927b7303bb616baaf24222ef","sha1":"6d4d0d5a9071f433c357540efb5bc9199894c4c0","sha256":"d92c6a01c509feadb491bab0c44d57a69d300670828ffbaedb1428d8692b1350","sha512":"209db52d43896e18eb9a19d13abf27f7ad3c5a40ac925094be3d800a5d15a1e141e5dc85ca774d98d55b70b6b9429703c08d9387eb77268f9bc0e5e25a3f777c","ssdeep":"","tlshash":"17f09e982358683cb3138664df2a7038e27e116347adb204d5903138847a15f7c7f6fc","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.683958Z","times_seen":46,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/banner.51d7dc99.jpg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/banner.51d7dc99.jpg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-24d53\"\r\nexpires: Sat, 06 Jun 2026 06:15:28 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":150867,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Copyright (c) 2021 Mr.Music/Shutterstock.  No use without permission.], baseline, precision 8, 2880x1024, components 3","md5":"a7d23d7abad513afd32c228af19bcae1","sha1":"8b6bde40705f3371051270071ee280ae57afd0d3","sha256":"74811742ff98360c0c7de0db87733a98ee21f2229a40fac76ab4d43647ffed0d","sha512":"f8eaa097cc325b63ba5ea01a692be70065e6d18a67c27210987f9bbf4f79f3fcda20ce5c57081aa9d21bc0814d6c106d027a8ed613d67a8df9dfa50c4a7dfea5","ssdeep":"3072:bGF5bSJyjtplMddSVXFmjNFyWC318VNQsDrC9hW633uYBw8qlY2yUzCP:bk5SJitnFYG3k2s6L+8P2c","tlshash":"6ce3d013ef626257d8ec0370c9e70bac7fb705b503a712469b8814b698a33943e5ebd1","first_seen":"2026-05-07T06:15:53.684452Z","last_seen":"2026-05-07T06:15:53.684452Z","times_seen":1,"resource_available":false,"data":null}},"time_used":376,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":376,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p9.5b3b5b36.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.970Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p9.5b3b5b36.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-49e8\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18920,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c3991551c370564f01e3faa718e7b71c","sha1":"24063296308bc5d47016babcde1684e1b24fa84d","sha256":"2419931628f366831341e3912b14f45bbbfb130d816810a563ae56b30a88c2f3","sha512":"9dd0129bcaefb6c001490d55266a4e9e9da9b92b23ce7a74e007f1618e6f98751aaf2e235db7e6b9c53b9b56e6ebc42a4921cd1048ba23f556a2cb675c613f3a","ssdeep":"384:3IFTm53C10c/hD/HSg0t4Ks+dYR7cluwUMJ7M/v9ryULSo:4TmkP9/Hi4aChclnJ7M/MULJ","tlshash":"e682b8ef67715afce447ebd9ea132469754638fb2b818b64c3589ee8b441019ccc9c83","first_seen":"2023-08-04T08:02:08Z","last_seen":"2026-05-07T06:15:53.685653Z","times_seen":24,"resource_available":false,"data":null}},"time_used":545,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":545,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:30.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"96a28eb48ac629a7ebd22a18133a2545","sha1":"4480b4abf2a7eeb6b2bd604d5fbccd5930c25220","sha256":"ce673d9ac13a9dba233135b862a46fe432ad4a7f369ed2e6fa13da2e597855ff","sha512":"0e53bc7a861c81f31866207f2871a20eddf36ac5f8c69949cecada32e2b4771964034da6013c82b76e18d166c946970892075b4be1142c5634d4e1756357519c","ssdeep":"","tlshash":"75f0527be4e4eceec014d386d8436f4520ae0a514a928324b3dddfd5e388ac3700b9b2","first_seen":"2026-05-07T06:15:53.686252Z","last_seen":"2026-05-07T06:15:53.686252Z","times_seen":1,"resource_available":false,"data":null}},"time_used":233,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":233,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:33.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134533949}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:34 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"de760a3717a6176c0e33b20070b42e18","sha1":"258d77b0944f67cdd6b386976ec0319946407a8d","sha256":"fe7561160a420e50a4c96f49574934459954e2e686c09e38011b7c426562c2d0","sha512":"ed4c92697a1acbd7f1e6743bfb105106dc194a0a0ad1b3b394dab922ba9b70b88d62bf30a02cf571dbf6fea94d18459e9511b77e3e90db4a9fa8f5e78bf5e8c9","ssdeep":"","tlshash":"8ca0223002080c8b0f02f80ef80823ca23e83282cac223b3c80f283cca8c88ca003030","first_seen":"2026-05-07T06:15:53.687289Z","last_seen":"2026-05-07T06:15:53.687289Z","times_seen":1,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:36.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134536951}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:37 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"0b8e15aa82f6d432faec451b34a95cea","sha1":"f7d2d8bd9f2eda0252df377d1f45eb39a813d6fe","sha256":"6e95b3828a2a0d5f16cb768b47794bb4560af2d9b3dd22fdfc90e84d2aa20da4","sha512":"23d041f3f3331a5a333c701065dd6af1dd04cdd2070b9a8180375078b88774f14c4801b381d39ba60fc2540c4771cb81113a4597a42746fcfe7973f228fa60d9","ssdeep":"","tlshash":"94a02220a0280c8b0f02f80ef80823cb23e83282c8c20b33c80f283cca8c88cb003830","first_seen":"2026-05-07T06:15:53.688248Z","last_seen":"2026-05-07T06:15:53.688248Z","times_seen":1,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:39.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134539951}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:40 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6d16564f896d8aa1e6ee874b73504d93","sha1":"a4bb65b041bd7360ff15723e5202404aad6409f1","sha256":"37f7f40b8c2301ec8acd07d3924c3c8a4796fac13d9ce9c04b8a0e0556df5785","sha512":"b338364bea123feeaad62d6a971c77e779c616647e9c4037d54a263c38a658dd8c859096bff14df1eb4ea9bda6cd5eeeb8077a71314752c048d3931d3c85e440","ssdeep":"","tlshash":"24a0222220080c8b0f22f80ef80803ca23e8b282c8c30b32c80e2a3ccacc88cb003030","first_seen":"2026-05-07T06:15:53.689204Z","last_seen":"2026-05-07T06:15:53.689204Z","times_seen":1,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":243,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:40.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:41 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4cf87ed3045bad43883280c6352eef16","sha1":"3f71a880853064b248a4ea2139997581071a4f10","sha256":"b2863ff047de0882c782e4447823171f6e0881e9200a3cf48f2682514b12f1f9","sha512":"5a1a34b4c9f49f31eaa19a9283f4872b1dd30a39c6a9225153e114dc65b4d6b4091154c6383181102ac65dba8f1e6db85d6022bb36fa656226dc111c16c8ca8c","ssdeep":"","tlshash":"5af0527be4e4eceec414d386d8436f4520ae0a514a928724b3dddfd5e384ac3700b9b2","first_seen":"2026-05-07T06:15:53.690128Z","last_seen":"2026-05-07T06:15:53.690128Z","times_seen":1,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":243,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p8.0ffcbb77.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p8.0ffcbb77.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-37d4\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14292,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cd93d3042b1333ef8b294af024fd1203","sha1":"cb40fc1c2200f2629dd6ec575e9c1c72a96f0788","sha256":"06664df2fd19fb275788e8b704e13486ccdb3222a7becea6e762745e94c25f82","sha512":"a128509607ffcbd3c58c601f152266118be8db4c140a42d159270300f9dbdf01286539be4945c9122a38b9bb60838225b723c53b90ca44e4623d66042a89f0b7","ssdeep":"192:MMChQYHQwPOFs4CRuXuQTc1OLxzTPWwu2RiIdw3dj7BRaCsyuRflaaR4smekWOLq:MMlahR6TIOdzDW0ldw391Ran5tGZLBIp","tlshash":"b252d6cd23b592bcf401f7fcc32214aa7a4a7dea3752da64c3a91e46d54242c8e95cc3","first_seen":"2023-08-04T08:02:08Z","last_seen":"2026-05-07T06:15:53.691058Z","times_seen":17,"resource_available":false,"data":null}},"time_used":545,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":545,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p11.f223e917.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p11.f223e917.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-118a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4490,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"46d294e8e26af5c7c6149fec9b019a30","sha1":"fe638a9513b5d29dea4f33b6485ea652ec5e4314","sha256":"fd848c381fc0bfd7f34b7683b025dda0da88817e054163b6118c88c75d9a6501","sha512":"6fe48cd36f4629de58b815ace84f0c9b16a3931d43efda1b4d73922e903fabeeda00270c152f150a0d765913c7b2c85c128ce05c3f1bb7c3d29867e19effdc09","ssdeep":"96:QU4sCU4O+6OO4O5GdzYvRzMm57ai9J56xyAv5qAFQjHx+VD7Xfm1G77XT:QU4sDh4cvVMfiJk2Aix+V3+4H","tlshash":"ec9196dd43e1cef4f805b3bab621102936a72cf797d28b32c7616da4761550c89e6cc5","first_seen":"2025-06-27T17:10:09.87375Z","last_seen":"2026-05-07T06:15:53.692409Z","times_seen":22,"resource_available":false,"data":null}},"time_used":547,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":547,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:28.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6a66f8f8a4ab24afbb9cbf3eb386308b","sha1":"cb6197add73ff9db85c86319088f1b7bea1c3c68","sha256":"4d7c279b4599bd0f2f3f09fad23876bd2d34b49bf5b96a494f023402fcf0a0e1","sha512":"e3efa9ec515f99e7cbdd37dc746a6622b7d420eb67059102ecb0b47193673d3d6e205eba2e4c83ca2b77c6ac9d4b887dbb4b2dc2766de70dc3d7df75478e995f","ssdeep":"","tlshash":"d7f0527be4e4eceec014d382d9436f4520aa0a514a928724b3dddfd5e384ac3700b9b2","first_seen":"2026-05-07T06:15:53.693695Z","last_seen":"2026-05-07T06:15:53.693695Z","times_seen":1,"resource_available":false,"data":null}},"time_used":498,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":498,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/css/180.23395e1f.css","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/css/180.23395e1f.css HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-27da\"\r\nexpires: Thu, 07 May 2026 18:15:27 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10202,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10202), with no line terminators","md5":"4f1e616d92ec5e45a22af92ef35b0cb1","sha1":"b13bea07dcb01a2b7361dfcefd53aa3fefef9930","sha256":"27d3b94d3c2d63f875a6a30a7956b64a1c8857361d51d607b9db631f6df9796d","sha512":"3ae6460129236e46353bc5677d5183212df59066be3bba0c50c3e35b76fede68fddadbca73241ce99a971e4822f4e7c3559b2e0efdca7b7c011694ddb3e06e0c","ssdeep":"192:hq8a3IKnb4R5C9U0zptvkboqsBSqHJGrlAnahZh3p3WMHrrWyhVK:g8a3IKnb4R5C9U0zptvkboqsBSqHJGrw","tlshash":"1822e3696f0a153760abc02dbcc1aa9d9906df1fe2158eb2a735db119dc37c3326170b","first_seen":"2026-05-07T06:15:53.69464Z","last_seen":"2026-05-07T06:15:53.69464Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/logo.b7b028ad.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/logo.b7b028ad.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:27 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-5bc\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1468,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9e592090eed1fb82a0f2fa307fd4defd","sha1":"aed6448de92999c50b5684867c133fe2f38f47c6","sha256":"05197bc478bf477d3fb7f4b7f2e87a8c81501fe5be9fcc1700eeebf0ba0a0847","sha512":"ad1a202cb1c39b0dcb0e401714299ef0cf5ee72005c32af0b78d795af2a4521bdd8396421a9bd992ad082a716b3f23d7b7ff95f6736e6120d16a6b57b66070b7","ssdeep":"","tlshash":"133112ca73e9e6d4c644aba442697e3b702171f69dc5a350cf526a0734d440f08d4de8","first_seen":"2023-05-21T17:02:57Z","last_seen":"2026-05-07T16:33:05.934117Z","times_seen":151,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/favicon.ico","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:28.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4634\r\nlast-modified: Tue, 12 Dec 2023 16:14:33 GMT\r\netag: \"657886e9-121a\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4634,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 256 x 256, 8-bit/color RGB, non-interlaced","md5":"c1e8fa3a51bfea344d164375ede03613","sha1":"a4eaf93303e21d00ea22dfe44b4c230ac29f59e5","sha256":"04b1fb3f5f8f038947af99553d209faf4bf813d0d93b71f62ea78fe54049e777","sha512":"2f575b1aa12bbd448ac44670f5f291159131844b62df19e7ff01e85835300734173f633cca05c0656b3530a94fe52855fd33144a1884fd48228462b0ec9a7140","ssdeep":"96:IIFCGZBEGX8nXzfoTpaJFu3Dwio3atPyTq+BYNCJ:L0HXzfoTpaJFUELKUYNCJ","tlshash":"77a14a3b47864277e9b04c716827d7b98b0aecb686e1834fc30238f27de25841d74292","first_seen":"2025-08-06T11:32:59.950797Z","last_seen":"2026-05-07T06:15:53.696193Z","times_seen":36,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:35.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:36 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"377bbe334783bb19515a13eaeac4eaf8","sha1":"b040191d2028cc5131419cb0f67cadb0245c95db","sha256":"9cd678c2001d09cd17b4fcef11e78e1eb15c6c5612f722b7920bcfdf40581a5a","sha512":"c67bbdc34c047766cf8eed26909f0fad8e25ef98fadf0650a082e81de5045c24e04701e921a9e674e5e10bd0190d64f7f2408dad4708139e6a2942b6ec513433","ssdeep":"","tlshash":"32f0597bd5e4ecdec014d382d8436f45206a0a514a918324b3dddfd5e384ac3700b972","first_seen":"2026-05-07T06:15:53.697344Z","last_seen":"2026-05-07T06:15:53.697344Z","times_seen":1,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:38.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:39 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2b7509f2b268f3949a0eca56cd8e09bc","sha1":"70a2f696179aaa4fced69af4032c4a2e464ebec2","sha256":"223a4419acfb104ca4f1eb3acb27c71889bae6468402dd7ef5ecb9c2e2a28467","sha512":"3c7ec4a5fb3323cd11105bd02a23561719eb5b8b550a8529f2db3d5d4b07001aede215fa7b0171fd9466b8d092f040b6a0ab46f795a17fd04bcc7badaa1aefd0","ssdeep":"","tlshash":"a3f0597bd5e4ecdec014d382d8436f45206a0a514a918324b3dddfd5e388ac3710b972","first_seen":"2026-05-07T06:15:53.698422Z","last_seen":"2026-05-07T06:15:53.698422Z","times_seen":1,"resource_available":false,"data":null}},"time_used":233,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":233,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m1.14e6c3f6.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m1.14e6c3f6.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:27 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 723\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-2d3\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":723,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a71e2c81081abffa4f217effa0935e88","sha1":"5af28f60dad5223c9f06073f72ddb624895f7167","sha256":"3cfe9f825a009456b4ca1320d5b145f8b9039fabd50892e70fe0ccb0c521496e","sha512":"2efba5020edb38cda5ec0d7b5d50d4700c4ba14e36fcf2053be17bd21c1385f5933a9fd3aee05a68dec83044c56398cd15fb35cb35585fe5657a74d497c32749","ssdeep":"","tlshash":"80017b29639c8d3cb5a38b14db017234643f12735a99b3448cf2643172b616e697f9f8","first_seen":"2026-05-07T06:15:53.699423Z","last_seen":"2026-05-07T06:15:53.699423Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m3.0aee7c5c.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m3.0aee7c5c.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 827\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-33b\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":827,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a11cdb183fdaf9ff6b83e0769f05ed13","sha1":"849e16c285e0b80e341572e3ed814c3e4a8da769","sha256":"33cc9c6ed014ed9681e09d524cde0387bb68b0fc481a20144d38fe98c282aabb","sha512":"fa951dffd989b8047898f1980a2386deb67b8390bf0f9e331255b009530ea92903d29b4a405f528a2c50e3de76341919b425d198650e9bc206d10ddba6127fdf","ssdeep":"","tlshash":"8601bdd9230c8c7db6638f74eb063134623e12b35bc9b260887164b0412a29eac3f8e4","first_seen":"2026-05-07T06:15:53.700549Z","last_seen":"2026-05-07T06:15:53.700549Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/phone.7c89fd12.png","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.937Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/phone.7c89fd12.png HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-ff68\"\r\nexpires: Sat, 06 Jun 2026 06:15:28 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":65384,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 460, 8-bit/color RGBA, non-interlaced","md5":"d36ef2c6e0bcdcfce506a6cc8216189d","sha1":"82556b2e8b9223ff637438995183a5eebd78ecb3","sha256":"3671c9cc05daccd0d44fa2204f772d93d8db7dc81822a54a9b2deaa1b48c216f","sha512":"147d89f4f9ae4960363bea2625a0bc339656a529d90fff2d0770ff7733ddb1a8cf1434a44304b404d2a542535d384f106812fef271f53cc36e82e335b13abfaf","ssdeep":"1536:X6TMECQqObD+RjkNCqTxWN16kM0BaNjtpnJTT9kXhXfZ9:X4qo+RYCqTy16kMEMBhN0Xfb","tlshash":"365301eed7f2406a40f59690bb9f4ebbd61a86188fb76d2f510a91812c052f07538f4f","first_seen":"2026-05-07T06:15:53.70154Z","last_seen":"2026-05-07T06:15:53.70154Z","times_seen":1,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":367,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p5.08fad796.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p5.08fad796.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-9899\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":39065,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"62a41d8858560d677d90233e63966294","sha1":"9ff9ca932ea4d6e6df516792a296f5d7a42a58ab","sha256":"340d9f856e9176cafb1f2ee87e56ce1708d78129f9abbbf5260efe29c8ea77d8","sha512":"385a2c7e82d60b9de6e9bb76e49cd633eee0a2e6c7d4f0bed118d2f69a6336307b2466d9beb30ec4f762e6d2b08bd244b843cff06c80e9e39a89b58d671dc114","ssdeep":"768:J3ZbAJQGYsc3Szdh0xchSCRkz205br5uYu22BMlA:J3OmSzIJFa1TQA","tlshash":"2b03a7cd3bb047e8f885f3f6ab0624b9394f64ea64818b74c3799d15a95312c4e86cc7","first_seen":"2023-08-04T08:02:08Z","last_seen":"2026-05-07T06:15:53.702407Z","times_seen":17,"resource_available":false,"data":null}},"time_used":543,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":543,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:31.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:32 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"94f01f9a0b16ab4c5996af910daf3ed0","sha1":"f939be51c432c61e270792c22ef9c4f737e715c3","sha256":"c512644e15d365198082240ee08d25b757856c3850d0a0d1fcdbfad1f2712540","sha512":"b47925e2a7bad9319e7f41359068ade8450f68080df7e86e68fae666798e8a8c6d5bb3ca8901e63dd3e19cf9d2f9c78af8e6d7c47d94b2920059156c70bf6ddc","ssdeep":"","tlshash":"05f0597bd4e4ecdec014d382d8436f45206a0a514a918324b3dddfd5e384ac3700b972","first_seen":"2026-05-07T06:15:53.703367Z","last_seen":"2026-05-07T06:15:53.703367Z","times_seen":1,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":244,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:38.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134538952}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:39 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d42dfa6a95b3d224c3b586c607edfe8d","sha1":"4af53972df110cf94ddb7c41f2f9cd42648fbe67","sha256":"5325634e78814e023b27a8f5e701a141a933a5cc981efad921b63e9a7e6700cb","sha512":"165d2ec568efa8021f5f0b7c659837e6c80ff50ab48228705c80bd4573a8a9ef4ef4b922a055667c09857a5c2d56e783d8fdba7debc0fd17bfe70fce2f382c38","ssdeep":"","tlshash":"16a0245001040c470f01f40df40413c513d43141c4c10337c40d143cc54c44c5143430","first_seen":"2026-05-07T06:15:53.704117Z","last_seen":"2026-05-07T06:15:53.704117Z","times_seen":1,"resource_available":false,"data":null}},"time_used":239,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":239,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:41.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:42 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e0672ace9c20ed2fca50719761ff0dca","sha1":"7faa4e915c1d07c6a296f4e6525ac017dffc1293","sha256":"c4a53a63be3854f985a055b889055648434d5c22ec8818dd3e65ca11cd6f8d76","sha512":"e8e0b4acf0ef6d31f7766bdc1219b62c42cdd9e2b6cc7adde765e1ff9a2febbea0377cbde948bce57940567f9fe74505a6422c56b2244bf24e7fe2b765401959","ssdeep":"","tlshash":"f4f0527be4e4eceec014d382d8436f4520aa0a514a928724b3dddfd5e384ac3700b9b2","first_seen":"2026-05-07T06:15:53.704942Z","last_seen":"2026-05-07T06:15:53.704942Z","times_seen":1,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/180.fe9fe504.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/js/180.fe9fe504.js HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 28 Apr 2026 16:21:55 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69f0dea3-4bb9\"\r\nexpires: Thu, 07 May 2026 18:15:27 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19385,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19327), with no line terminators","md5":"0d1d60df81b1bb1f1167b480eca7f048","sha1":"d08da0104539b39067d6f7b0aff24a8b788f8912","sha256":"2fe87268dddbca4f07be50ddcb473d0aa216fc8e7e6f74d2646f6750a41ad9e2","sha512":"e641e9b2b3c03580604cbf8347d18f3d43fd3195cfde0001f68adc65bb92883b131fbc4edbe5309c83fe2f183fee2ca6d1124fb920f917863e6110f4dd02c26f","ssdeep":"192:qs2QxGu5otv7WUZ0Z5KwIeBOA/yhu1KDIH0w69nul0KljBjujjjnj5d6j0nkmXeu:D8hVecjkmXe+mybl7n","tlshash":"dd924e12f497eaae9c379061626e3930e0261ee050209883f77ccd67dad4dac671db9c","first_seen":"2026-05-07T06:15:53.705802Z","last_seen":"2026-05-07T06:15:53.705802Z","times_seen":1,"resource_available":true,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m2.a42a927d.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.897Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m2.a42a927d.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-62e\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1582,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d0dec536242f5b1bc267b4e5fc384973","sha1":"6371cf05720b27cad806a8e3410c031a495c89f5","sha256":"6bbff976f53c2de749ce2a10534070647b7ee3fa6f03ae34b31749fa6868a012","sha512":"d7ed91220aa7d94714a261b91003448c3b70ea34512813cb9ba9b8bac6d237f46bc47723b479c68ed3e7e4fb649fe95f1262578776c47cda44fcca7d430dacb0","ssdeep":"","tlshash":"cb31d1f4ab8811a15401b3f0f62cb8714d7e18ff64c18ed857e5bcd0b8799ae59dc481","first_seen":"2026-05-07T06:15:53.70666Z","last_seen":"2026-05-07T06:15:53.70666Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m5.54fd0d07.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m5.54fd0d07.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-51c\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1308,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"50c064a6208b444ee333d693294260c9","sha1":"a2ac1baa0bd07f9edc98195604257b6ebd1fff15","sha256":"6ac6103f4a015e7019d3128229c2c8d199cd82943bf49f897e0443cf282c217d","sha512":"4ae0d36869f906136793adbcecf5e8d635fd5d5ae23b9c11b3d6b6a57d8643d802d97523871cbb82babc4e1c2c16ced0e9f683bfdf5eed0108640a6935a552c7","ssdeep":"","tlshash":"ff21c0ed63ec74787695937cd635a4b5f1a7107a35acb304c070297db422019d8e9ce2","first_seen":"2026-05-07T06:15:53.707504Z","last_seen":"2026-05-07T06:15:53.707504Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:42.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134542951}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:43 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f0e65a3012d30ba0a46e8550f1996a66","sha1":"7a4d7b2e6cbe9fcbfb956db080e755c1c974805a","sha256":"56ea4eec8c9d39e7920d8778b68adde10daa43478b0485dd3589a60eae8c788b","sha512":"5b288ff7dd277eee4e2c6b16cfff6fc371ff3944ca1e97dcd4c0e82b3c53c663e8fa6cc8a14ba3d4dcaae0b5ea5b7e7bef05e89bbb83a3b0afb7011b2a51a875","ssdeep":"","tlshash":"2ea0222030080c8b0f02f80efa0803ce23e83383c8ca0b32c80e2a3ccacc88ca003030","first_seen":"2026-05-07T06:15:53.708298Z","last_seen":"2026-05-07T06:15:53.708298Z","times_seen":1,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:44.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:45 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"36ee588403f852ae361b020e81552ebf","sha1":"8665a716a111ad61ed2666384745641897f058e0","sha256":"27bc6d09588380a5f1bdbb93022236dc2bf37fe2435666b4cc8b3bcf8693ca41","sha512":"428c53e89077cf16af0e16653adababa59d504682a705bc75ab8b915a544b7ee68b31de695d72ad000be7f0e6e8a9a9905525a1a82b4c61ef82d0206a6bc7b29","ssdeep":"","tlshash":"3cf0527be4e4eceec014d782d8436f5520ae0a514a928724b3dddfd5e388ac3700b9b2","first_seen":"2026-05-07T06:15:53.709104Z","last_seen":"2026-05-07T06:15:53.709104Z","times_seen":1,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":235,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/close.4bc2ca85.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/close.4bc2ca85.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:27 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-5f0\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1520,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c5243971f4eacbaff217b8689f11f65e","sha1":"d7c29e14b9fe33484929e3b3545ba5b1e99b758d","sha256":"6ec822ebdb4be6c0254b220b5fd55b169a35fae94272a841f31182c018f5b32a","sha512":"2758d6647b1f2e9165b2c49347271210a5e8e850b38f35e0bdb08ae90cbaa7f7fc0058417f76f591513fc871be9889208de180249df77090f61d2261fde085f7","ssdeep":"","tlshash":"9b310ea846a58b685814a7ff351d2c70ab09246a3fcc0ef4c2581ec63162cc99f696cf","first_seen":"2026-05-07T06:15:53.709911Z","last_seen":"2026-05-07T06:15:53.709911Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m6.cab23edc.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.923Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m6.cab23edc.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-a4a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2634,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ae4dd5cc187cedd387ec2d44820eee50","sha1":"b7ae67ba4ac31ecd1a3eb1b996740d623f01d7c3","sha256":"710d9abb4388247ea253173edfcba67b40d09bec229cfea693a470c90f3d3508","sha512":"8efde29b2e880d7ceb55be001f260267560381f60677813fd4d8f1d693bd5feda71e4cffcbe93e445699cccaf962e4b351a092372dad537f968007ba70a2c1c3","ssdeep":"","tlshash":"b15122d0f3f993d180429374ca6a74f2362b20bf3c0193a607b96de8fa5565d8e8c5e0","first_seen":"2026-05-07T06:15:53.710734Z","last_seen":"2026-05-07T06:15:53.710734Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/r4.7246288d.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.946Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/r4.7246288d.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 587\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-24b\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":587,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5c76a619af1923f24f01aa196083b18d","sha1":"9b5b979ae0de7b0bc73afa595355332f2c209858","sha256":"5ed599dc10af5e213c1d677c9c0d4453a93307b133903fe7dcd7492865197213","sha512":"f79830757ee4d92bf9c6999eadee5d7e8d176103ab9aebc2f2408aa6d181cafabcb7fa245f22e6c4b6534ab8ba947e8ba2b7a6d1a941e50452e79323c39c4864","ssdeep":"","tlshash":"d8f0219923a48c3cb2678a94db077074e16a256353c9f25448711570397d3ae2dbbde4","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.711717Z","times_seen":46,"resource_available":false,"data":null}},"time_used":381,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":381,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:28.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134528948}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:29 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d2f85cca603d7745458a6097d884f7db","sha1":"524397f80e9e9fab4a81113ed0bea64b627c667e","sha256":"322d693ef08246e995f139011f1c9675eeb53e75b0a8d72072d36a3e2e895a44","sha512":"361ec81ff978479375d2a8d95503ecdd0d4377fb364b7250edc6468fc324e53743c85a9da06f66e158fdd46fc0b224b7b98a8b857dbc35e31932f4c3477708a6","ssdeep":"","tlshash":"8ea0241011040c470f01f40df40403c513d43141c4c10731c50d143cc54c44c5143430","first_seen":"2026-05-07T06:15:53.712618Z","last_seen":"2026-05-07T06:15:53.712618Z","times_seen":1,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:33.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:34 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e23fae009aa801f9e3de0b77d306dbbe","sha1":"3cf3e6f925316f9307e9ecf4272861274b055c2e","sha256":"0d4d81bfc3e27378ff0eadffada56f624ca2cb1a1b1c975a9b091f58ad35bbdb","sha512":"9b3c079b85846a41086b55d515c3a245a81f3152603b04fe19ff5f74e379e5b8599474852bc4b7fea1c975946df946f624774d31e8a196ed4735b1d49cd28825","ssdeep":"","tlshash":"bcf0527be5e4eceec014d382d8436f4520aa1a514a928324b3dddfd5e388ac7700b9b2","first_seen":"2026-05-07T06:15:53.713489Z","last_seen":"2026-05-07T06:15:53.713489Z","times_seen":1,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":231,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:35.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134535951}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:36 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7145a538fc2a5c5dcf1299d578d38a93","sha1":"ddd485076405ffb6ddb671a69414bb59488e68ad","sha256":"18b60d37abe8174f732d19048d751dd119cc5a989a2cee5505059c0bcffdc5a4","sha512":"33455db2449c378e476f8dd89415132314e759d0d8856bc5a89a54cc3c32750ef6434d7166ec1ca770cd913973910b2e53fbcd407edfcc155ff0fd87592d73f4","ssdeep":"","tlshash":"e3a0241001540c470f51f40df40413c513d43141c4c10373c40d143cc54c44c5003030","first_seen":"2026-05-07T06:15:53.714307Z","last_seen":"2026-05-07T06:15:53.714307Z","times_seen":1,"resource_available":false,"data":null}},"time_used":242,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:42.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:43 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"a1548721bbc69b818a85d65949eb9818","sha1":"c212cdcd20bdfbfdbcfbc87104e7789c86b056d0","sha256":"611e0768d65e62f90dcd8ae0e2101053ea1a0f888fccd6299a0d58184db58c0c","sha512":"90c1c4ba14ceb4b1ce43b05574dfe50a06bbb5aed8c6aff5f7324ab7f7e8e974fb05b10f7b26cc963f2ef24eb7bbe47ef86ec5c1a805b3739adb3fbe6dfb46e7","ssdeep":"","tlshash":"a7f0527be4e4eceec014d382d9436f4520aa0a514aa28724b3dddfd5e384ac3700b9b2","first_seen":"2026-05-07T06:15:53.715174Z","last_seen":"2026-05-07T06:15:53.715174Z","times_seen":1,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:43.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134543952}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:44 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"92627902f025ab1b05d07c5b443da59e","sha1":"96ce8ed1ae27da25e119aacaa403df2bebff8742","sha256":"961890692ac78a5c29ad8a7215248ad77666c179a08e5645c75a22b17cebb6f9","sha512":"0e95f4888c803f15a59e03c19a608b90639a3ad4478191cf953a82b4134987f722b78c5d877bf3be5245642b8bd7f28cc5ead41ad7000f424021ae63b39ca3ce","ssdeep":"","tlshash":"3aa0241015040c470f01f40df40407c513d43141c5c11771c40f153cc5cc44c5003030","first_seen":"2026-05-07T06:15:53.716017Z","last_seen":"2026-05-07T06:15:53.716017Z","times_seen":1,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":234,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/r2.e15e5588.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/r2.e15e5588.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 697\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-2b9\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":697,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"63608bbaf79792ec4203c4ea30ff3804","sha1":"020661b815f5006c6e4d8eb9d19581cb5a8a6bc4","sha256":"ad669e4e37a1fe8431f62ec6f0499f61a7b9a23ec4a91fdb18d3590621593f37","sha512":"b2ca040ec0a3340ea42d35233a57ba55956894e6331d12642c2b955fbe25b42afe9448abb7bf607a065e774460282808f74ffd9a8637bdd2c0912de3fd90e0f3","ssdeep":"","tlshash":"8301cbcd51a8a140e6e197e4ca053074724e30fb1ad06f944004bd24f8a816f2dbfae8","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.716879Z","times_seen":46,"resource_available":false,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":384,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-07T06:15:25.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:26 GMT\r\ncontent-type: text/html\r\ncontent-length: 958\r\nlast-modified: Tue, 12 Dec 2023 16:14:33 GMT\r\netag: \"657886e9-3be\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":958,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (958), with no line terminators","md5":"37e9a49da5c959e248959a9fb8b1f29d","sha1":"baa4e096831d102b189d86c17840ba68d7e1bfce","sha256":"1b017eef4f69cf395436d75dfddaafdf9bf29949982c73bee685b36f69897ef8","sha512":"ae25f4110f380c850b35b24d3c14b09de4b3694a33e3154bc1984aaaca1f9ccf5b07194dd6cb090c8387af76dececb256a476ebbb491b249f0b36c64fe54ae34","ssdeep":"","tlshash":"a211e1819c10e56e9bf04b452a35b21f98cfac1a4931dce079ad18bc09f4f884d2ac26","first_seen":"2026-05-07T06:15:53.71778Z","last_seen":"2026-05-07T06:15:53.71778Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1115,"timings":{"blocked":456,"dns":58,"connect":198,"send":0,"wait":198,"receive":0,"ssl":202},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p4.138d86bf.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p4.138d86bf.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-4f61\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20321,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a2508102d1f2fc030e42ac06ae536ba3","sha1":"dfbfd1d1010cdcab93d66abfadbdf6e098be536c","sha256":"4775bebbc3553a1fc47cba02821e0e5cee7afa04b2e851bd1457b1d8e8ec39ca","sha512":"c897669d12c87295fa5a849acc5c84bc06af4ab50b9114c57de96512154bbb096ad0adb02a83d5ff386ab8ce1948a263fdb1fd17ac917bf15c1aa43a9bfe18a1","ssdeep":"384:Dy35TL1ignVcZyHh7sI3CGz56WjED3UP3f3rBZKpsEfbxiDK:ehL1zBdsSbzAWxvf3rBZKREO","tlshash":"c092a5dd2b3657ecf800b2fdca1358543d82acd53942e599c2a80d1be56641cceeacdb","first_seen":"2023-08-04T08:02:08Z","last_seen":"2026-05-07T06:15:53.718645Z","times_seen":17,"resource_available":false,"data":null}},"time_used":542,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":542,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/kf.f7c8b4e1.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/kf.f7c8b4e1.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-6be\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1726,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"52a0f9495d4bbf44de7032bc2cdfe845","sha1":"469cc797b0647d254f9014147c8f19272adcb7ca","sha256":"fc9c4d7c431414044f085b1dbcc5fac2dad2b5da7ab070158c45dbc28ff17258","sha512":"fcdbbe5cd3c04c767f5aa8761ab08b727b33a0650634c6d2ad171a960c697746df12d38ac1b5da28b1b86c537ba1e624188199e1512995e7f0a88a044afdf7d6","ssdeep":"","tlshash":"7c3154f23bc872f84547d7b5c92b427b355b38f76b09e9aa8790a9c436018944d9a884","first_seen":"2024-08-20T15:31:05.857932Z","last_seen":"2026-05-07T06:15:53.719144Z","times_seen":5,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:41.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134541951}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:42 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"bb85acaac16225dc4e068342740ae0fd","sha1":"8a895ae5c693c8fc3c205c5e924a53a6e4f70618","sha256":"030ccdacd6c4e3214e6348a37345032117ed8045eb5e0322fb77e3fa40179c4b","sha512":"fc8086ba0f691a859270a7ff1ae49a18be3718dfdc94a62f78b0fe669c29ae36ecbff55cbd0f0ba9b88e54491ee6689be32b5f67fb5a4caa06ba60a731f06d77","ssdeep":"","tlshash":"61a0241010041c470f01f40df40443c513d43141c4c10731cd0d157cc5cc44c5003030","first_seen":"2026-05-07T06:15:53.720445Z","last_seen":"2026-05-07T06:15:53.720445Z","times_seen":1,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:44.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134544952}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:45 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"b25594ef4df65b0e446f090937961675","sha1":"cdb3ad8d8953a87729db610074f54953f38ffd57","sha256":"8fcbb49bb1e6588e0d1cb86f834f61b025193614eff9e4c4f94c60cdbf4c9df9","sha512":"b478c15a7a4506ff570b598da67552402b07f42d6afbe624927b6c1b70cc268e6c310ad65d577b96c0f43c9c87c56b944ea8388693a01025bcd8f92bf1dc2905","ssdeep":"","tlshash":"10a0241010040c470f41fc0df44403f513dc3141c4c10731c41d153cc5cc44c5003030","first_seen":"2026-05-07T06:15:53.721404Z","last_seen":"2026-05-07T06:15:53.721404Z","times_seen":1,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m7.72a40ab8.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m7.72a40ab8.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 502\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-1f6\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":502,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2a8ee3a77f40a0d7293cd7a6308aadb5","sha1":"446062b73882bade32a47a5b3b093abb5ae137c0","sha256":"bb94b386c12b4b3680b8a836abc19c9ea5980ae4ff46d6cfb212a819a2d8ee62","sha512":"5ce225488265dd181520d9d26efa2c1233025f3f8db5d01e84188439fffba22b5f58cf1389a198becf8ee8ca6a2a5c59bdd07582617e0fc430d6830285db1525","ssdeep":"","tlshash":"c3f0e254312ca82db3528aecda0770f4717e02b302c97324a8503835e16e6db3c332f8","first_seen":"2026-05-07T06:15:53.7222Z","last_seen":"2026-05-07T06:15:53.7222Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p7.d94859f9.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p7.d94859f9.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-1595\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5525,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fb6af489972164bd7efe44e48279a039","sha1":"93872f5eda0e686eb7fc2544107e2ce0431d5950","sha256":"dcf0fea439418d24ef38db0299268a45fc0ea5ce034aa41dd763e5ee7a31c5b2","sha512":"29b6233903a1c10cd133bc85f862a916011737af1a332b4d8c403bc0f3539e79db661703a08efe32a537d34270b393c5baabd3c8c1bf9323b9ab09d29c02d5e4","ssdeep":"96:h0BRoEUEVgh9rx36qDL9cjj2IohVeVpCC0L44v8SkYarlUz7tgVnM4pgc2uP:BEUEVgnrx3669BIohVeVMx3ERxlK7Cy4","tlshash":"88b1b6cc173856aaf802f0fe8a2510d87a4ccdcd389380d5e3e4dd47948589d8a2dcc7","first_seen":"2023-09-10T23:57:02Z","last_seen":"2026-05-07T06:15:53.723003Z","times_seen":23,"resource_available":false,"data":null}},"time_used":544,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:32.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:33 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"739a3f1a3e6e735d5d3077625bf9e3c6","sha1":"215625251742e33179ee1b41715577dc00d3e4a4","sha256":"09a49b140b145f9d220f62fd7d3b301698ce758e2d2d0be8c475179827533e2f","sha512":"82cbaf3f4fc8a27fbaf4bb36416f2830fe663344501a36d300db94c138c25b506c0e84ed467e71d99a12b616b04309ef4e09adbaa892c391c8a9fc66b1a9b1e0","ssdeep":"","tlshash":"bbf0597bd5e4ecdec014d382d9436f45206e0a514a918325b3dddfd5e384ac3700b972","first_seen":"2026-05-07T06:15:53.723646Z","last_seen":"2026-05-07T06:15:53.723646Z","times_seen":1,"resource_available":false,"data":null}},"time_used":233,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":233,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:37.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:38 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"58e193b4ca60b966535f2a5d786f779d","sha1":"0e4cb99ef9b52fb573474e543d373e41e6350062","sha256":"b4f70c429767ee465e385d9a3af893d9827a7601e65d48f1aa5352457fb63158","sha512":"cb722c0419656d70e6e7e5628d07a8562b9e40ca8b187a5886a87ae9afc5304dea9242aa436e5a3353fa70abe02c030179c0cae9381e29ca99d38625f9f3c866","ssdeep":"","tlshash":"89f0597bd4e4ecdec014d382d9436f45206a0a514a928364b3dddfd5e384ac3700b972","first_seen":"2026-05-07T06:15:53.724533Z","last_seen":"2026-05-07T06:15:53.724533Z","times_seen":1,"resource_available":false,"data":null}},"time_used":233,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":233,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:43.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:44 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4ef62ed5f19ba5f789a050e6a4d91970","sha1":"55bd529aeda20d214a8b386423afe291d895e209","sha256":"01023585f69cee76e9c10e8d5ad57807e03909160b65c0e7d290c1f14d11870e","sha512":"260c384b6e8395825006b419f7d8213e4e240465581aa6024b29a5f9649b215f1da42efe8d1bf98c1e540007c2a9057d564477a62d1297e53c0688559e3f1fe6","ssdeep":"","tlshash":"45f0527be5e4eceec014d382d8436f4520aa0a514a928724b3dddfd5e384ac3700b9b2","first_seen":"2026-05-07T06:15:53.72529Z","last_seen":"2026-05-07T06:15:53.72529Z","times_seen":1,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/h2.b846f9b4.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/h2.b846f9b4.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 803\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-323\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":803,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b388848cb85ff6bc4ce355246c40b89d","sha1":"a0408be04fd405ceabcc79caf85abee692d2ea46","sha256":"170bffa48c38d253822437a8de04784f7abc162bad502fa9b39430452b6b5cb4","sha512":"74958d4afcd345cf14d0d25071648c246691d95290c56249c2d918c0a33dba22a6e4e4cb5c53a2c1d9929f1de144d8784403db267140929728712da12f7d8976","ssdeep":"","tlshash":"3201bdee23ecd91c36690354d7eb303a80b71153825aa34458606a74ded845f7b3fee4","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.726074Z","times_seen":46,"resource_available":false,"data":null}},"time_used":378,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":378,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p6.6fce775c.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p6.6fce775c.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-422a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16938,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e0b9ea1a37568b0c6a3cb97870abfe30","sha1":"90b9780c61563cd7ea9b0e4405c789ab8ac8f892","sha256":"925f777716bc4833934ff4546f8bc55d13bdd49c996723c1214720c487de8792","sha512":"d78b717a3e226e24f70765dee7aaeb0f386eb2c3bc07630d3bd03a2c1b9b65267879906c69bec5f451ca33c897e2de0ab85710d5a726bef831fd3fdc3188f309","ssdeep":"384:oZVFzgzw/cPhhhY9+YKJ0S8gEW/dqshjhwQJIJh4lz55PEv:Enzgzw/Izm+YW0St/dlkcEv","tlshash":"6272b1cdbb3552f8f801f3fe830654393a5a6dff68429425c3942d52a8d189d8da9ccb","first_seen":"2023-08-04T08:02:08Z","last_seen":"2026-05-07T06:15:53.726556Z","times_seen":17,"resource_available":false,"data":null}},"time_used":544,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/logo-dark.6cd28400.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.979Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/logo-dark.6cd28400.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-5c4\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1476,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"257e3f75487cc08881e5778f444cf528","sha1":"b611afdaf4fc90c82a03950f009da47e719a1a4a","sha256":"be18807dbc17239ae2f44a7d3afdd447e41905fb315bb92435e3e16fd20c4d80","sha512":"d4cd70c756e83efc1678c82715df7673c80facdce00de5534c71a9129423910b28ec25d75dfbfff1966edd5c51faa927b85b36e0844efc6d46fc8f90d71261cf","ssdeep":"","tlshash":"f93112cbb3e9e6d4c641aba44269be3b306531f65dc1a350cf636a0734d480f08d4de9","first_seen":"2025-05-05T12:31:52.839489Z","last_seen":"2026-05-07T06:15:53.727609Z","times_seen":7,"resource_available":false,"data":null}},"time_used":547,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":547,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f2.0a47c38f.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f2.0a47c38f.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 470\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-1d6\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":470,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0577bd59f23de5879250831cbd214403","sha1":"486bb0f25e44468ce3912b3adcefff678ac1a40e","sha256":"c7111c0475ef19879fce4c394c6019943f4c5437802db257019db5317e82cb5e","sha512":"ebbe3a7c0b1e0400a57f7eccdafa86655748c9a0cae6180423c9ea816a9aeba7c808d30cad2e2836064469b6229cc11581ef438ec3a112dd8881608371ca214b","ssdeep":"","tlshash":"78f0d4df76ccf4844910cb98210f2d6cb49e3df62d7c821548423405f7898ed1806edd","first_seen":"2025-01-03T22:17:41.18471Z","last_seen":"2026-05-07T06:15:53.728478Z","times_seen":162,"resource_available":false,"data":null}},"time_used":543,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":542,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:34.953Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:35 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"84c1e5c8f6dadca221c4d81562861d27","sha1":"77fa9368bb697d8725835e3d2817b0eecbac3eb1","sha256":"177954d25ca56d749da78b2c8da28c32b39c15989e0d96625da5d3c169e9ebce","sha512":"ccc389e49d29a5d8574cbf5b3497e8f5a9e6f14f6e44ad7dcf1ed89cd335a20d54f39abe1d54ee25cd0cc0a8e1344a11fd02bab9eae0622278e1f7d7f8c34055","ssdeep":"","tlshash":"a4f0527be4e4eceec015d782d8436f5520aa0a514a928324b3dddfd5e388ac3700b9b2","first_seen":"2026-05-07T06:15:53.7294Z","last_seen":"2026-05-07T06:15:53.7294Z","times_seen":1,"resource_available":false,"data":null}},"time_used":239,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":239,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:36.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:37 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"81daa8316656fe3f9ce89f9877eb491c","sha1":"859ecae3d5721ca7f3c8b5903db47f6e6e64a9a3","sha256":"814a5aaa6918260b519416349704fa2967f65bfa1332aa782923a61435db1d5d","sha512":"e207baea6419d62e1ef6660efb57f885a6ec8894598e06e6f16a5dedf8e96f6216f117e059fb03a5849761d9dab8e1ed5a29656aff2990e3a21f1df8f9db9bfb","ssdeep":"","tlshash":"65f0597be4e4ecdec014d382d8436f45206a0a514a918724b3dddfd5e384ac3700b972","first_seen":"2026-05-07T06:15:53.730216Z","last_seen":"2026-05-07T06:15:53.730216Z","times_seen":1,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f6.0c585fe5.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f6.0c585fe5.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-8dd\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2269,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"230cfeba2cf8429ad532b1ea5c8ed3fa","sha1":"7ffd08c0c73c14f1935247bd4812f18d2885bea1","sha256":"7ef5236b041f963db0965217d5011edf741694426efac074c0d3d7cb42afdf7c","sha512":"21599f7b97af8d64a4de4342684996ef01a18157c3139fbc7adf8326e6e4f2a548b3bcc169633562b745e3b5bb3bc0a3d322b684e0719d84172d5be3ddf61284","ssdeep":"","tlshash":"45418ae76b69f185c4c98f50d8243e355bbf30bb3b91e745c6099be4ba22610594cca4","first_seen":"2026-05-07T06:15:53.731062Z","last_seen":"2026-05-07T06:15:53.731062Z","times_seen":1,"resource_available":false,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f8.f1fa9bff.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f8.f1fa9bff.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-9f0\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2544,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"50993fc1a8ff74e2d2a8dc23a5fbb54b","sha1":"0c9f0cb877b73a7b4e5dbd8c834e6aa9e812340a","sha256":"395d86c8db399995152a81e407a8c69f956b46baca4992b83f6c656918d50b87","sha512":"32db88c4fdbe4163390fee8ed5535125794fa67a27e2de9162b10d63203d2e16ad717d2cd8bbd8ad163907d40d2ef2efa3a82bb74fdf49c47ee84e5cef02cab4","ssdeep":"","tlshash":"135153f6a3e4e3f1d605e3b097a99175735f28fa7736d70c43a8ac64e22154e44e9880","first_seen":"2026-05-07T06:15:53.731902Z","last_seen":"2026-05-07T06:15:53.731902Z","times_seen":1,"resource_available":false,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/runtime.c5ae9f36.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:26.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/js/runtime.c5ae9f36.js HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:26 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-11b2\"\r\nexpires: Thu, 07 May 2026 18:15:26 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4530,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4530), with no line terminators","md5":"455b3c92d67f4ea7e99ba0bf67bed9a4","sha1":"a2803425177013f7ceb6b676921057206bcebbd7","sha256":"ebcb572eb72a492c90798a67b8c0d13c29d74ea1d3800442062975d5f763c2a0","sha512":"de4e46a00a4a04e7de5c20541aa3632b88d4ce1d406684cee6b439ba4d06ec0f9c132c38d001cea81a4538985fcfe79e50194bfff3a748064f7152becf95c97d","ssdeep":"96:SVlgcJORI2h2KKjdBVZVV6SCzpKOqVdcV6wTtPdc+vlf:SVB2gjHvzttcV6Qdc+tf","tlshash":"c19175aeba45b57a17d3b4a0483fd24ab6772173281f84a1d31ad4b17c38ec94127fc8","first_seen":"2026-05-07T06:15:53.732686Z","last_seen":"2026-05-07T06:15:53.732686Z","times_seen":1,"resource_available":true,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/m4.39b6c834.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/m4.39b6c834.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-4b2\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1202,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b5a497cd06694685cf7719831fbd18c8","sha1":"e070c2a34411c4a0f13e4ea9dd800447b5f62aef","sha256":"a08a7b6b12e30644bcd62b41932165e1b173a6c19da1391ee5a666380aea8fdc","sha512":"e267ceabc8fa2ef4f36d4a513555ebdfd2a4c302bf43a0e71d5b6e6d29063bfd44719e382d30851cbe7b29370843c970668eb51889ee19e57d2efe41b21e8957","ssdeep":"","tlshash":"1e210cb8331cca25f357c741ef793530202b1af50995a55882c266b4587c2ef9dbe5c4","first_seen":"2026-05-07T06:15:53.733558Z","last_seen":"2026-05-07T06:15:53.733558Z","times_seen":1,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/r1.6da2ddef.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.941Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/r1.6da2ddef.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 642\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-282\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":642,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b1dd66685ee49741cbaa425f4acb18ce","sha1":"c9d35035d846748043ee1adb72998a0263457607","sha256":"7cf3092d29958f0015f966503cc2295126d955bf0114e9a443e4ea9ac4a433f3","sha512":"c05bd1e4217ce03617036eca94ca90e5a217ee2f50b611b5ca59020da4f1106f9bfa3093640913811a359c537d3a97ea84b7ba0a9b60d67aae224f00bff900ae","ssdeep":"","tlshash":"5ff026a401bce834b312c718df17b0b8215f21676beab20814109c30953e52f2e7b1f8","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.734337Z","times_seen":46,"resource_available":false,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":384,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/h3.f4ac7c95.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/h3.f4ac7c95.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 899\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-383\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":899,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0012bdb11983e7286972abc82f37595f","sha1":"ae8ec71eb5e48572843c84361db0de9bea62b0e3","sha256":"e8ff5b6a8f9960d68bc698e451b2f27af4bb9bec6c20d2d1c9d348d7f2ff4b53","sha512":"49499f16a836c647d6174a2707e314889478e34d7bbfd1651674cb4adc8f7ac5662e05603ed96727c41429908f916ef0525c0842611a506eebc0d8753483078f","ssdeep":"","tlshash":"b71140bd97f8a2a0d6c7a36007efb873716215b26a43c88843687200fc180ae6c5c5d8","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.734862Z","times_seen":22,"resource_available":false,"data":null}},"time_used":377,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":377,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p2.f1c45a4b.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p2.f1c45a4b.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-391f\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14623,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8dbb3d021b82a9be48a53ceda0a1a3fd","sha1":"bc7632994d20f59496af312d196e9b4a8b615ac8","sha256":"0b47876f99d1e62e4235371d99e52d99700ba17ea7da759d205cf3ac642a30e6","sha512":"be1127b3d365a566e371301a4d04ec80a6ca957017e45f42d979bb9376cdbb8ddd7a84ccaae46391786d1164e1b2080cd31b961975064d6c48bec81f8231fb42","ssdeep":"192:Dsi8utykaBdPl//qEEcNX+3djpEg0UzoeE4BuDtH4+4HfbPnjlYv4pxKobN4oP:D8uturt/Sh3djpxo2ButWHzJP","tlshash":"dc62748a6f0265f8f401dafe90010c6c7e1868db3e82c7f4c77d5e6a655241c96a1cbf","first_seen":"2023-08-04T08:02:08Z","last_seen":"2026-05-07T06:15:53.735939Z","times_seen":24,"resource_available":false,"data":null}},"time_used":543,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":543,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p3.cdd90bed.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p3.cdd90bed.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-bc1\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3009,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"12f9a6a9558c15dedbe4ee6ab6e7d030","sha1":"e2523d8a62b8189353261be63189e4b0d17f346f","sha256":"87d7a4188c21d05e5958ec56f42d9e5c929ccc1c4a1a2849b1616fbd25392bd4","sha512":"a9914eb65ca3ca41889555471a7df97e7b3a300f601d4e6c4f2c0629cfbcb0d161f052f4d33f8b265f23afc0d6dc3e538065b74e3e7ba01a2d76efb5f50f28ad","ssdeep":"","tlshash":"2d5152cc976286e8f84472bdd37698e8124b29f9a906d508d7141cf6ed8204cad61cc3","first_seen":"2023-09-10T23:57:02Z","last_seen":"2026-05-07T06:15:53.736858Z","times_seen":9,"resource_available":false,"data":null}},"time_used":541,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":541,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f1.a220447f.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.980Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f1.a220447f.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 513\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-201\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":513,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ceff50c3364f073a4959d56495364d6f","sha1":"635d3919fcac05ac3682f281ea51bb3faface3e1","sha256":"c937a84dfc05e4c40d915a2de880a4e115c4e0a6300970f0dcf14f811fa5520f","sha512":"161a2181ee83175160115d983f8a4b187df5b7e8cd805328dd1f00800e6e041fa4167528e310488895b997953566c34a371d4c921a1f012c52f1fccf6994aaa0","ssdeep":"","tlshash":"edf09ee8483077cd8800d330c13d62f6233a35f132650e96538c6795be1e1ab995ce43","first_seen":"2026-05-07T06:15:53.737766Z","last_seen":"2026-05-07T06:15:53.737766Z","times_seen":1,"resource_available":false,"data":null}},"time_used":546,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":545,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f5.81538006.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f5.81538006.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 882\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-372\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":882,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"93a8814470acb685a65db31d5c3ddba3","sha1":"8c6a30d7dd05d07cc71f2dff72f315f0329e1564","sha256":"afbbc9aa1b3fd8c3164cc1d41aedaad46c33b8f9823d4bfcd0f8701b43600bd4","sha512":"96d7fe7f45d0d9ed8d99b74b43ad43e0c3e271a028096efbc2cd4e385bbd78926fc92b30c21c108e08d47458dd1d1c3b97022230446d60ed2bede7a163521a99","ssdeep":"","tlshash":"d9119991ca5172d59804c775d52831b2e3ab34f9330bcadda780cb242f6713e5d48d48","first_seen":"2025-06-02T16:47:43.53208Z","last_seen":"2026-05-07T06:15:53.738612Z","times_seen":160,"resource_available":false,"data":null}},"time_used":541,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":540,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:30.953Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134530948}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"13ba88bf37675ebb2974b58e5b2e71f5","sha1":"0ffe78023ad52593366da43e100e433973ebaa79","sha256":"9f05bd66e0bdbc0973ccfd28959ab72aaa082f357fdbbfbabc19562c3b851e85","sha512":"ae47dbca9fc9985d19f657906b7d57d72d0715419133ea33f27217d8157f5cbf208f098cad89cf8d2d567d144da2277ecdbeeb7813de63af6d6a889d34a060f3","ssdeep":"","tlshash":"9ca0222088080cab0f02f82ef8082bca23ec3282c8c20333cc0e283cca8cc8ca003030","first_seen":"2026-05-07T06:15:53.739697Z","last_seen":"2026-05-07T06:15:53.739697Z","times_seen":1,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:31.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134531948}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:32 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"721980b06155848445018a2afb1edcb5","sha1":"bb10ba4a981144cbacf8bc5cfc2b6275cad019e3","sha256":"be89d0f30968e6cbb88c767cc31fde57562022a34857f6faae6e35415e078ea9","sha512":"cec3d85ac06be88ec759f14659692ed9acd4ca414dc79910e0f5cb350e63ae89191848b9020205befb6be743edfe6d7a9f8852dfc52c5b9a1f3ad17ece857d49","ssdeep":"","tlshash":"83a02220000c0c8b0f0af80ef808a3ca23e83282c8c20333ce8e283cca8c88ca003030","first_seen":"2026-05-07T06:15:53.74071Z","last_seen":"2026-05-07T06:15:53.74071Z","times_seen":1,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:37.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134537951}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:38 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1e30bdb0e055caccc0a7dfe6ba981598","sha1":"ebbeed5f23b7374bc15387eb8e3e01ff668fe0cd","sha256":"a51a9bfb5e6801b79042cf2dc2aad74313168b6030867776ad9e2db359835d75","sha512":"ee3831f05bbcdb75703a9e56cba254dc1ca68ef626ae0cd989c7d925464fa67584459d079ef7b6365d8ae03f8a6d5aa81515b76269c4bc212f2ce2b6536a553c","ssdeep":"","tlshash":"eca0241000040c470f05f40df50413c517d43141c4c303f3c40f143cc54c44c5007430","first_seen":"2026-05-07T06:15:53.741621Z","last_seen":"2026-05-07T06:15:53.741621Z","times_seen":1,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":235,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:39.953Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:40 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"da5bf157011a2667908e7ce8127524e6","sha1":"c972ab361bb7537222305e749588ebdd1e808b24","sha256":"249e026a0f364f8fb390feaff975a0625dea0e72cdc132a745965a0e61353793","sha512":"19df0ab0203238fb92dbdd396424a7d81d5ab44d51c582c8fb8a5c6c749bb1c5908501d9dcc9d9ba22bfbaf0c948f5c875d1a2d5f42285219744db1465ec611e","ssdeep":"","tlshash":"b8f0527be4e4eceec014d382d8436f4520aa0a514aa28724b3dddfd5e384ac3700b9b2","first_seen":"2026-05-07T06:15:53.742485Z","last_seen":"2026-05-07T06:15:53.742485Z","times_seen":1,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:40.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134540952}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:41 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f2d71bdcb31599f39b81ac4903343414","sha1":"beef00865c3f84d892981a21aee38bee60babd25","sha256":"58079b014cf8e696e5896cc42d5424fd920da066d32c35cb8ca7301b33a5ece3","sha512":"b6556cb07cd8d2b6824b3d20e6620cd266a4525c831a09da982d4da741f4759ce0d9097ee0a19a1314a6993c73feab81de905e78ad9f73e8d33c25f88b47ad99","ssdeep":"","tlshash":"f0a0222020080cab0f02f80ff80c0bca23ec3282c8c20b32cc0e2a3ccacc88ca003030","first_seen":"2026-05-07T06:15:53.74339Z","last_seen":"2026-05-07T06:15:53.74339Z","times_seen":1,"resource_available":false,"data":null}},"time_used":239,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":239,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/chunk-vantUI.4e3d429a.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:26.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/js/chunk-vantUI.4e3d429a.js HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:26 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-87c6\"\r\nexpires: Thu, 07 May 2026 18:15:26 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34758,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (34294), with no line terminators","md5":"756e63cd79a83f4dec090b1ed4f84166","sha1":"21debdf2cac0b611a88ac4f16a162e6b1bcc2c33","sha256":"79a4571bfbcc662185671e43965e443cf01744563d84ce8912e1f7cb5bde7667","sha512":"3528f7e07ab04f2155e1d270314c50b80ea2e069738a2c03dd0a79c82e95e48a480bd697784aa78c9f553dc34b1b1be23edb3898ed79a7433fcd713f3513a102","ssdeep":"768:AKrJgSyLLXJ156MWIITdJg/3lX2xEnBWLZTcSdl:5rJEXJ15FWIITdJg/lX2KnBW5cSX","tlshash":"b3f2d88df0c9f4151b536024806f350eb2372a88a40a44acb67af4e5be7d66e7167f7c","first_seen":"2026-05-07T06:15:53.744228Z","last_seen":"2026-05-07T06:15:53.744228Z","times_seen":1,"resource_available":true,"data":null}},"time_used":396,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":396,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/chunk-libs.8303d22b.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:26.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/js/chunk-libs.8303d22b.js HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:26 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-5a527\"\r\nexpires: Thu, 07 May 2026 18:15:26 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":369959,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (56284)","md5":"f0ae95fab3d7bac5e2524c33dab03abf","sha1":"46c630168d324db2f061fad78f6455fd0b4e34ac","sha256":"515d82fdf18ed395a5b8d152c35aed5eaa5fe5552f32e96c7d116270ca6be5d5","sha512":"0ba1fd9dd691039c0457eb67cb9210cc072d3ba642507cb5b98a8f728cfc22152855c259591d5b1a4c1ab9c91179f7e3f2c455f7f8e9faffd303b5f27f7eba6e","ssdeep":"3072:tjfGjOaf4yMOaGsqiaKXOfweTzS1AnNkn+oVwac8DnAspCaNkqZkrEfLlKS+6u1O:tjfGqGsq3YeTmNHcqasH5DuNWwK","tlshash":"db74d68cfa92b0b51be365e0806f550bf23b2a68740e94d0e6a2d4c5ac7894f5137f7d","first_seen":"2026-05-07T06:15:53.745234Z","last_seen":"2026-05-07T06:15:53.745234Z","times_seen":1,"resource_available":true,"data":null}},"time_used":399,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":399,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/js/458.49b898f8.js","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/js/458.49b898f8.js HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:27 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 543\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-21f\"\r\nexpires: Thu, 07 May 2026 18:15:27 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":543,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (543), with no line terminators","md5":"2b28b0396ed81d924ba3b94aba731e6f","sha1":"a510c436674025d7353fe870b30dfb907cb7d968","sha256":"8dcef4dcdd3521d2135aa8f9d24ad5a713d193e096ebc7d4235a4b647ccb9f16","sha512":"d69bdfb0bed70b9e59516ef3a4f9c285f2ce319737ba5707a49f87c82cc22eaa21fba31e94956f7162d8cfe94cc7e7ec7eb29cd6f755fb0d7e1ecad9b1942de4","ssdeep":"","tlshash":"fef026747083bdec5f7b1115407f1631506766e29d2e48c2f6b8cc55503544c03183cc","first_seen":"2026-05-07T06:15:53.746145Z","last_seen":"2026-05-07T06:15:53.746145Z","times_seen":1,"resource_available":true,"data":null}},"time_used":198,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/p10.2c846c5d.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/p10.2c846c5d.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-10d9\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4313,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b64f254ff5932a151bbed5e802a960e2","sha1":"2bd304489c6066a5e49bf4cbbe3327ff353b6bf9","sha256":"f11fe57b2c07fbcb249105565e04b058864fc19a7227b62c46b915a2dd0b9b57","sha512":"28c211c29e738049fd6f8918dd58a96b787a141ee74a33ba3c2dc114b4540173be1e98b1d6e6ef1a4231da5be7f64b36fa1f8d29b88d840b71e7879fb5b76b6a","ssdeep":"96:doXdr5wr+w58sddPwKSluwBdZQoMqDU122ZVv6/Z5:do0BSsddPwKkuqT0qDU8","tlshash":"ee919ac8029cd5f8a4142aa9471b907b2b59bcfe3a185670c3b24a30f1a60995fb5ddf","first_seen":"2023-09-10T23:57:02Z","last_seen":"2026-05-07T06:15:53.74717Z","times_seen":23,"resource_available":false,"data":null}},"time_used":545,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":545,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/f3.16381596.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.983Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/f3.16381596.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-5be\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1470,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d232c16ed857b11ea65ff7ede104b3be","sha1":"4832d9396a9dbc2a87c5abe6ae72cd767acb34bc","sha256":"1bb8abc60ef0fa7eb1edf4d4f221f18c96dac88f531aeca217d648639e279f7d","sha512":"c491065c337fd23521f4230230a93dfb7c41c229dbff04e79e7c0331640dcb3e521b467a565de363b455e1de1fb10fd371602b1c0b5dad2be1036b741e4fc3e6","ssdeep":"","tlshash":"fc31de7cebf4baa9955ad35dc592f2b5905e30bfaa82ce50d3d0c3c1f9440828e48cc4","first_seen":"2026-05-07T06:15:53.748511Z","last_seen":"2026-05-07T06:15:53.748511Z","times_seen":1,"resource_available":false,"data":null}},"time_used":541,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":541,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 39\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":39,"data":"{\"action\":\"getDefaultLang\",\"lang\":\"en\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:27 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d3eac90f9fec7e3356abaa008e7fbe9f","sha1":"f551c9055caaa9500fa4bc7e50477926a3fae9c4","sha256":"9345d50c92572f88dccbae7b17e681a22ea40240291da46a1a4c4dd15d4a7cc7","sha512":"cf8f3a52352005e363f4c8962904ba4291dee6f2378559bc563b443ba9bb77ac5677f921a819b34f375459c7888f8b3e9be362a4958590ed8ee3b51ad104ca3e","ssdeep":"","tlshash":"cea02230208c088b0e02f88cc8888f833bac32028bc20f20eb0f2c3cc00c38ca0028f0","first_seen":"2026-05-07T06:15:53.749313Z","last_seen":"2026-05-07T06:15:53.749313Z","times_seen":1,"resource_available":false,"data":null}},"time_used":224,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":224,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:28.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:29 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6947cc8ff3db360219f9a8a77a9ae5c9","sha1":"32b70d2360479185ad6af87cf2723b0a02fada49","sha256":"4cd4d137533e2c5b4c1802cadaefe80b374f0b161bb776ba67ade46605c2152e","sha512":"1d20c5a5ad73dec8abac46d1592a522ad6c3325aeea78770922a65469c9bafe585f1ffbb43bdad04f19c7c31fc20c6dc172f7ea0dfef79e858e099d63ef2898a","ssdeep":"","tlshash":"41f0527be5e4eceec014d382d8436f4520aa0a514a928724b3dddfd5e388ac3710b9b2","first_seen":"2026-05-07T06:15:53.750101Z","last_seen":"2026-05-07T06:15:53.750101Z","times_seen":1,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":231,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:29.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 21\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":21,"data":"{\"action\":\"getStock\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:30 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":549,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9c5fb89973800e37293741cdfc645399","sha1":"13c3c34811badc8e3ffcb615551e7e5dca9a21b7","sha256":"8e9c395016b2c65d1c86b2e4085d5cfcd10e37821ae1afdef4d898b366b84e90","sha512":"683821265a75dbc113bf4a22a99a7ec08e1dda46e243f86b3c3a0e28dd04a4376a443a96296922c363478871932641c35baa88d81c7b59c632a3e5d79d12ff5a","ssdeep":"","tlshash":"def0597bd4e5ecdec014d382d8436f45206a0a514a918324b3dddfd5e384ac3700b972","first_seen":"2026-05-07T06:15:53.750989Z","last_seen":"2026-05-07T06:15:53.750989Z","times_seen":1,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/css/app.d254369a.css","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:26.710Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/css/app.d254369a.css HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-1ad2\"\r\nexpires: Thu, 07 May 2026 18:15:26 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6866,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (6838), with no line terminators","md5":"7cb00eeb0c029089a50e095e1c7e11c8","sha1":"4be0ac198e58b738fe048a8cd76fd5aa63fbca80","sha256":"5e0cca1e956a9fd148d90de1b6226320c7f2575a0aa34188239791723299b7f1","sha512":"be3aedd76d8ccb4e0869a80f2b6242688c3016c4b4c6a79b46f2e60cab152c27e6d46e4e8e1467993b8495f56b7d80c0ef88eb65c7044435d9f1a498e0f5d781","ssdeep":"96:tKfQ/Wjf7tJc0OqGl1jP5N3kDW/gOAytJgJhOJJEzMUyNI6E9FiFJGY57nE3KyPs:8fjjITRHcmgOhz4OJJEoUylpE3KyzY","tlshash":"e8e129b1c4aa3ede2bf2c845850636611c58f91787b0ee38fe4e151c15e4a31df18a6c","first_seen":"2026-05-07T06:15:53.75197Z","last_seen":"2026-05-07T06:15:53.75197Z","times_seen":1,"resource_available":false,"data":null}},"time_used":799,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":799,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/more.def67747.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/more.def67747.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 615\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\netag: \"6578ebd8-267\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":615,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"42da7ff2c67867adb2e8d57157e9008b","sha1":"6cc3b461b9bcaaffacd7dbd24d9e5ee7a6d4c122","sha256":"aa560dfc2e773a68fc0d7570b1f19d18e8efb362bf998e89d955bb4ee118c609","sha512":"caa7274984707297972565c8fb7588af6ccc16e7516f97459c0ad3e1237153b538c64f30f91f7f853e8ebce4c5d0cc84a43623dc9e19f00f00b9c897b45bf77e","ssdeep":"","tlshash":"e7f07dd501518882428e8e30f634b8c8b096303dbec812e8b2628775491959acf4cea6","first_seen":"2025-07-31T10:51:13.364213Z","last_seen":"2026-05-07T06:15:53.752978Z","times_seen":2,"resource_available":false,"data":null}},"time_used":363,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":363,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/static/img/h1.31c468b4.svg","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:27.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"GET /static/img/h1.31c468b4.svg HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:28 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 12 Dec 2023 23:25:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6578ebd8-7cf\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1999,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"55fec48f26284335da21b2269a6582f1","sha1":"7e0d1da8fdc26cf295991726dfd4273a639167f0","sha256":"1251919f713b6e88a900bfb10504ad2ac312a484af3b24b969f45d0e66247b4f","sha512":"14b0cf462b10a05ad6ba0be8167d2f686406c14e51dcbd9886bdd084abb8bd6d33f2dcb1da34944c2621859d093f89b6cdd38003de48bd399710362342cf260f","ssdeep":"","tlshash":"e34176f9a2c9f4d0e011e3f126228ef6358f54bf3682db544a1a8e59c34002d985fcd4","first_seen":"2023-08-15T21:37:09Z","last_seen":"2026-05-07T06:15:53.75386Z","times_seen":46,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:29.953Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134529949}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:30 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"af125f1caf74787266cb6fbcd5221d4e","sha1":"019a387460c2932f95a5d3c11ddc707755a28153","sha256":"46c949b63e7fd19ee90bb289810762d74dd9768c7dbcb6f4853d5e25bd449594","sha512":"ce880b6fe87e8d106a89438e77e7362622d0e206d0fa3dfb5bf5e17487148e32fc896aa54638a2dc3edf8650ceef8ac00b20eaa0e95afcad1daf59fb12ce755c","ssdeep":"","tlshash":"a6a02222000a0c8b0f02f80ef88823ca23e8b282c8c20333c80e283cce8c88ca003030","first_seen":"2026-05-07T06:15:53.754802Z","last_seen":"2026-05-07T06:15:53.754802Z","times_seen":1,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":234,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bybit-up.com/api/index/ajax","fqdn":"bybit-up.com","domain":"bybit-up.com","tld":"com"},"ip":{"addr":"34.124.210.152","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bybit-up.com/","date":"2026-05-07T06:15:32.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coin-basesp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 07 May 2026 04:25:38 GMT","end":"Wed, 05 Aug 2026 04:25:37 GMT"},"fingerprint":{"sha1":"41:B1:14:58:5A:8C:42:CF:36:38:91:BB:3F:42:70:78:05:FF:CD:C1","sha256":"0E:59:6A:69:EB:B2:0D:4D:EA:3A:D6:FF:43:7B:68:D8:8E:14:2C:1E:E1:1D:E0:0E:15:42:7C:97:F1:8A:63:B8"}}},"request":{"raw":"POST /api/index/ajax HTTP/1.1\r\nHost: bybit-up.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 44\r\nOrigin: https://bybit-up.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bybit-up.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"{\"action\":\"getMessage\",\"time\":1778134532949}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 07 May 2026 06:15:33 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"8fe2cb6d27ef6a8390c1585ec7c66e50","sha1":"a70323c655e1672e3e324d1dca322b4dfd910cff","sha256":"36c141bacef18958f57341b3cbd690c04b6d184b912ff40a43091cb1326dc930","sha512":"86e3ded2a8f0068190897f8c80e925c15c72584ded16d3ad28273e4de013021995ec81b919295d6fd75c1b96c1a80432f8b1079b1d501f4303600e28e09b6584","ssdeep":"","tlshash":"3fa0222002080c8b0f02f80efa0823ce23ec3383c8c28333c80e283cca8c88ca003030","first_seen":"2026-05-07T06:15:53.755721Z","last_seen":"2026-05-07T06:15:53.755721Z","times_seen":1,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":243,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-07","alert":"Sinkholed","trigger":"bybit-up.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}