{"report_id":"32f06bb1-c01e-443a-948e-955e6889911c","version":6,"status":"done","tags":[],"date":"2026-04-07T01:03:28Z","url":{"schema":"http","addr":"binance-trade.info","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":0,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"final":{"url":{"schema":"https","addr":"binance-trade.info/","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"title":"BNB Wallet — Secure Crypto Wallet","dom":{"size":53867,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1080)","md5":"511fc258402e7ad9b564daadcbe6269f","sha1":"bfaed7bed1621c357225ef625a0f785415a5d5dc","sha256":"3456a0706e84f6f4742391ce97982e9d48d7e35a17c318ac925cdcf1fde5d959","sha512":"d5c99991558b2850f202bc4853a1ae6e2ec456220ca2e26a495c73f736af1d02facd306764aa144875029242f6c70ee652b27d2120430f328c5b025123b0948e","ssdeep":"384:cEt79VpiqTUaxDCt8EWSTSdyavqdOMOLm5glGoY19U7mhBDvfISnrGrUjTiuqgPN:cEt7jppo+DcYS5BhG7iVI6TiuqgPua5","tlshash":"3733963062f218bb909792a8a661973b69f8a607d507864c73fc06d26fcbcddcd53361","dom_hash":"domhash278045c584d357e3f4b908fac964b5af","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"binance-trade.info","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":0,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-12T01:03:28Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-07T01:03:06Z","timestamp":1775523786,"ip_dst":{"addr":"Client IP","port":56044,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 17","source":"{\"timestamp\":\"2026-04-07T01:03:06.910835+0000\",\"flow_id\":884399663612835,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"94.154.35.90\",\"src_port\":443,\"dest_ip\":\"172.18.0.6\",\"dest_port\":56044,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400016,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 17\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2026-04-07T01:03:06.852899+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"binance-trade.info","ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":10,"request_count":10,"received_data":366311,"sent_data":4749,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"api.binance.com","ip":{"addr":"3.167.5.231","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2017-04-01","domain_rank":543119,"first_seen":"2017-12-19T18:31:49Z","last_seen":"2026-04-01T10:26:25.337706Z","alert_count":0,"request_count":2,"received_data":6218,"sent_data":1066,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"binance-trade.info/","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":true,"md5":"6bb15469de657031e2aca36039ab9e97","sha1":"7661f7f80b9d38fe05d0e9e01d00e47e734e0a6c","sha256":"c7a4e337cf974f7642647a3f1ed9766c2095d35547fdb348e701225c78be76a3","sha512":"be1d561d194c0de9a07e189d0cc94e002908ab8820e1d87646f5c278509d2f732e7d7812960bde52e313518dec0650678f9526201979ece2efb63a6972a4deb3","ssdeep":"","tlshash":"db4131f275b3240206a7217807db62156edca0c76a10cb4a7fdc4a851ff9c2881fabdd","size":2326,"data":"","first_seen":"2026-04-07T01:03:36.596638Z","last_seen":"2026-04-08T12:27:34.640685Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":true,"md5":"436515d77da9511c1337cc6923d58553","sha1":"3168a537cb606f97c52ea27b3bcc134bcd4a5c5c","sha256":"01d74d6225e861b24d1af36ed9d47f4e382e586aa2eb541560ba2eab6fb1f4ec","sha512":"581478df6d6f89dd94f9978e61fb3fc6de2edc275846b7fa698464b497d5c0ac6954ae9c6966fe212189ae99a6ce3c867eac92d7c45d161f07927abfddc11979","ssdeep":"","tlshash":"f111f25433a341a1e652476aab47261c2435f3033f13dedcb94e42084fdea9ce1faac8","size":863,"data":"","first_seen":"2026-04-07T01:03:36.59978Z","last_seen":"2026-04-08T12:27:34.641632Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/js/main.js","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":false,"md5":"13208b0f08751210c68c28f1397e1301","sha1":"7f6dd7925a938b8dc22c669c66f3329509c0095c","sha256":"d3b3ce64b8c153817bf1d43af3ff56361dab898b6b7df0b709919aebceb6d2a8","sha512":"e5b54118832e1bea8ff17e730e434be8c7c7fcc996408d8edfc2d91f819bcca326e770046824dc908b4164ecea43f25ea91beae88c18f11d7ad60e6ff995be94","ssdeep":"96:RFFuZVXoDXWXU3MAbGJ3gqAbGQAbGRcLUQDqAHsZokii7eyAM7fCfCp58ZTGSOGL:yVXozWX4fIyiAcIU3s7iiayAM7f6a58R","tlshash":"3ca13220bf54075813878eeb330b74d4e1779ca67a41448ea13c6d5dba22606fbe767c","size":4776,"data":"","first_seen":"2026-04-07T01:03:36.569179Z","last_seen":"2026-04-08T12:27:34.610635Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"binance-trade.info/assets/css/tailwind.bundle.css","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.205Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/css/tailwind.bundle.css HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: text/css\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69cebbd8-622f\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25135,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (25135), with no line terminators","md5":"ff0afcc8fefe67f36315cb14bdab0079","sha1":"a0ef26938c758c9360d33266ab984b31264cfd3f","sha256":"00fd53c4c3b85b6474e9ad076ac25820bc69977c95f0c94e99de64104dd97265","sha512":"5deee2914f1c3aa5c5d685a5af73b4875e1cbf91d035646c080d6dfdd5ee9bb8909ef29ef194ac1f17a30a3da65396b613df76cedab1960a2d8536ca5855d1f3","ssdeep":"192:Y7JXYS7JXYVGw2bIrsfMXkbpDTNgRi66IHFMIwuVwwV5xJLKaSiLAm+PNpVu/HZm:GHBwZDXk/63Yaiu/HZNw","tlshash":"f4b2a74eaa51103fbc2791e5c2c5b66cb129f0c5df3a56f9ba9312006ff22fb0d66504","first_seen":"2026-04-07T01:03:36.565967Z","last_seen":"2026-04-08T12:27:34.618586Z","times_seen":3,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/vendor/inter/inter.css","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.208Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/vendor/inter/inter.css HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: text/css\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69cebbd8-96e\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2414,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"b2a6ae284fe4a8179a05d6b4c7b428ec","sha1":"64223b7e0a3ef8320ecd112f3a3b1b97e2556127","sha256":"78d97e4cbc385b8d0f86f21f650073c149eda98423bbdc49b13a13836d81e571","sha512":"6a61edb0653db4030aade799806e2c2656dfd41d12c71d65fc7b1f70211e88767bee2bb1e23e4513c81ed2f45b0950ff505a6fdd2f26f8355b3fa1845d8cd1d0","ssdeep":"","tlshash":"5e41aca0046f290497c35c9523cf1e163c1c9442e08af77a5f391a982edbd36d366bae","first_seen":"2026-04-07T01:03:36.567307Z","last_seen":"2026-04-08T12:27:34.632822Z","times_seen":3,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":128,"dns":1,"connect":58,"send":0,"wait":70,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/js/main.js","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.211Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/js/main.js HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69cebbd8-12a8\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4776,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4776), with no line terminators","md5":"13208b0f08751210c68c28f1397e1301","sha1":"7f6dd7925a938b8dc22c669c66f3329509c0095c","sha256":"d3b3ce64b8c153817bf1d43af3ff56361dab898b6b7df0b709919aebceb6d2a8","sha512":"e5b54118832e1bea8ff17e730e434be8c7c7fcc996408d8edfc2d91f819bcca326e770046824dc908b4164ecea43f25ea91beae88c18f11d7ad60e6ff995be94","ssdeep":"96:RFFuZVXoDXWXU3MAbGJ3gqAbGQAbGRcLUQDqAHsZokii7eyAM7fCfCp58ZTGSOGL:yVXozWX4fIyiAcIU3s7iiayAM7f6a58R","tlshash":"3ca13220bf54075813878eeb330b74d4e1779ca67a41448ea13c6d5dba22606fbe767c","first_seen":"2026-04-07T01:03:36.569179Z","last_seen":"2026-04-08T12:27:34.610635Z","times_seen":3,"resource_available":true,"data":null}},"time_used":330,"timings":{"blocked":128,"dns":0,"connect":62,"send":0,"wait":67,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/vendor/inter/files/inter-latin-wght-normal.woff2","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/vendor/inter/files/inter-latin-wght-normal.woff2 HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/assets/vendor/inter/inter.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 48256\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nConnection: keep-alive\r\nETag: \"69cebbd8-bc80\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48256,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48256, version 1.0","md5":"260c81a4759baf163c025001c4f27872","sha1":"f11d729bb0a4d8350d2ea3d0fc062cf6ef2d5298","sha256":"3100e775e8616cd2611beecfa23a4263d7037586789b43f035236a2e6fbd4c62","sha512":"9acec3e7a411a1eb6d072c3773bb14e5aa74d85d334674ec0fb018b7937174d5b612b756b2ce7aa3993d31dfe172516e7aaec79c7dd209eac5fd15d9aea077e9","ssdeep":"768:Gp4Wb3wv+eCLRZRtq9uGHpHveBOX5qw/14X+5edVWK4afHSTle4MRhVUNMT/TQDt:Gp483wdmXRtqhJPeByj/f4WK4mHIj8xw","tlshash":"be2302df9e4d72d29271267045338383798e2d8a50aae7a1061c0fe6de05b69d31fb9c","first_seen":"2025-05-30T10:47:22.433446Z","last_seen":"2026-04-08T19:55:30.894559Z","times_seen":13870,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":59,"receive":65,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/ticker/24hr?symbols=%5B%22BTCUSDT%22%2C%22ETHUSDT%22%2C%22BNBUSDT%22%2C%22SOLUSDT%22%5D","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"3.167.5.231","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/ticker/24hr?symbols=%5B%22BTCUSDT%22%2C%22ETHUSDT%22%2C%22BNBUSDT%22%2C%22SOLUSDT%22%5D HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://binance-trade.info/\r\nOrigin: https://binance-trade.info\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 688\r\ndate: Tue, 07 Apr 2026 01:03:07 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: fbbc1a12-1d25-4d6a-8de7-c8a46b4a266a\r\nx-mbx-used-weight: 2\r\nx-mbx-used-weight-1m: 2\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 ca0f77e7d535ced1a10fc8b8f87def9a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: rvN2qc1Dm5Pw-KbVXGs5Lx4UkCB_KDQfdwjRWByWWiUEdT1tVAGzJg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2186,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"6c4946ee98c3732f1aae3ac4810b6017","sha1":"8f53a012fd51585d47881cfcb0d68874ec265529","sha256":"b77294527cf5828e6831c03fc85713714968d01768ba65e092a310f01ef241c3","sha512":"eb9ec2ddf57a3217f510d9d3d775bed2fea9c3ce540949395f9d4d8d6d49484e70fc90e0b296b551da61f94037931038246428e183400ce5c402693b8df247f0","ssdeep":"","tlshash":"cd41a8e2e3289c84c43daad85b86f03041d8b1a6c3da8f2067fe8a9551f4b3f3418751","first_seen":"2026-04-07T01:03:36.573945Z","last_seen":"2026-04-07T01:03:36.573945Z","times_seen":1,"resource_available":false,"data":null}},"time_used":490,"timings":{"blocked":125,"dns":115,"connect":1,"send":0,"wait":240,"receive":0,"ssl":6},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/favicon.ico","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 281\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":281,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"8422d1792371f43f9ac74bc22c415372","sha1":"5144d82b1749eceb797745b2f7cb88e4d7e2ffc5","sha256":"27f90d579d00418dcaf1452537b4f10b6ac1968c9f3120f4931bf4ed65223aa5","sha512":"9be51fb963e7aa1a789b69a5443fb85f674efae426615060676ae8ce0051cbf785e1cffde5024505c6ff243956bf110bd152b27da2432e64d8694bdf6d587a7b","ssdeep":"","tlshash":"5ad02b9f5043a3874921149079c225c22a8d22fba43a82e82dc6d48762d857ecedad88","first_seen":"2026-04-07T01:03:36.579296Z","last_seen":"2026-04-07T01:05:28.540102Z","times_seen":2,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.binance.com/api/v3/ticker/24hr?symbols=%5B%22BTCUSDT%22%2C%22ETHUSDT%22%2C%22BNBUSDT%22%2C%22SOLUSDT%22%5D","fqdn":"api.binance.com","domain":"binance.com","tld":"com"},"ip":{"addr":"3.167.5.231","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:17.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.binance.com","organization":"Binance Holdings Limited"},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 09 Dec 2025 00:00:00 GMT","end":"Sat, 09 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B3:E9:9C:BE:88:3B:90:E1:A2:3A:98:81:FA:0E:51:08:F0:80:5E:57","sha256":"B4:FC:8D:3D:AB:BE:3E:3B:A7:86:50:B8:92:3B:52:62:7C:FE:48:A9:1F:28:F2:45:AB:CC:DE:F7:68:0C:44:BB"}}},"request":{"raw":"GET /api/v3/ticker/24hr?symbols=%5B%22BTCUSDT%22%2C%22ETHUSDT%22%2C%22BNBUSDT%22%2C%22SOLUSDT%22%5D HTTP/1.1\r\nHost: api.binance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://binance-trade.info/\r\nOrigin: https://binance-trade.info\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 689\r\ndate: Tue, 07 Apr 2026 01:03:17 GMT\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\nserver: nginx\r\nx-mbx-uuid: eab51cac-26a1-4038-9cc5-cdfe3c6523b5\r\nx-mbx-used-weight: 4\r\nx-mbx-used-weight-1m: 4\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-security-policy: default-src 'self'\r\nx-content-security-policy: default-src 'self'\r\nx-webkit-csp: default-src 'self'\r\ncache-control: no-cache, no-store, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\naccess-control-allow-origin: *\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 ca0f77e7d535ced1a10fc8b8f87def9a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: XCXuvLpRo7l_XfgzCGOw0OXveiWlt9DoVmuf9a7FfmgeMjfVFYEWqA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2186,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"0b984fff49952b17ba85cdc4f10a2eb5","sha1":"bb6e24fd0954bcb2b90f5ddfdcd2867650fc9985","sha256":"608d2400421e53fb5f63d127e6c30af7fa5f441c7282a83b66ff91e49bd0df7e","sha512":"3c8ba586147ed08887e97f84687554427b7dbf9f51c77d82fb9f678938bd8bcc26678a6641a490a070ec9ffce2f1e5343074ec8394839467f8397ba326ac503f","ssdeep":"","tlshash":"a04186e7d3289d84c57d6a991bc6b13451c9b166c7da8f2067fe8b9162f0b3f2008351","first_seen":"2026-04-07T01:03:36.58345Z","last_seen":"2026-04-07T01:03:36.58345Z","times_seen":1,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":236,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-07T01:03:06.830Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 10340\r\nConnection: keep-alive\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nETag: \"cff0-64e7ec1c4a600-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nExpires: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":53232,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1080)","md5":"65a15798f997cb922a34506d838bff17","sha1":"a5ac3c233713d4d83fdfb074178ba1de355249fc","sha256":"c37188607c0523a2b16865b902447c6120ea29223058b3aca387d828ed7ba648","sha512":"d11672eaf8f0289655235f1399f80e8d9985b5bd01e4efaebb8c9849326a8008f9adb6d9078b76da39624e7345a87b6be0bfe00efb7b16986b971292666b0295","ssdeep":"768:mct7jppo9DLYSbQVE45DFj06Tiuq5Pua9:mModguX5R","tlshash":"9633963062f218bb909792a4a660973b69f8a647d10b864c73fc06d26fcbcddcd53365","first_seen":"2026-04-07T01:03:36.585447Z","last_seen":"2026-04-07T01:05:28.54372Z","times_seen":2,"resource_available":true,"data":null}},"time_used":375,"timings":{"blocked":149,"dns":23,"connect":58,"send":0,"wait":76,"receive":0,"ssl":66},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/vendor/fontawesome/css/all.min.css","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/vendor/fontawesome/css/all.min.css HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: text/css\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69cebbd8-127d8\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":75736,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (50617)","md5":"07a04d43d67adc55c158f590a82769b8","sha1":"2d705ec01abd15d4e089244c19d9354215967c00","sha256":"315a2999dc82dad613889f30964b5fd2e874bf83604febcd7725457a98bb4347","sha512":"9cc26342e75be9130caf4f2863a6127cd9445a5d65f175aea0ec0dbed597aeb815b3c30247c019041d6d1003bea20888f77817b46d573e683e6c03f90e872148","ssdeep":"1536:dBM1MvMaMfM0teX0pEbpNG2eLZy8lkv/erkh7:yteXoEfGc8mWrk9","tlshash":"a2730d02ad84019bb4568d7f3885bf34a6f2eb28aad14595e4344d847ef28fd314fb72","first_seen":"2026-02-11T07:20:24.324566Z","last_seen":"2026-04-08T21:03:20.410533Z","times_seen":125,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":123,"dns":0,"connect":58,"send":0,"wait":127,"receive":6,"ssl":67},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/css/styles.css","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.209Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/css/styles.css HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: text/css\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69cebbd8-312e\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12590,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"b63d7375815bdef243725fc754132e65","sha1":"0ab543c757a2762850781c1c97579b18e36452cc","sha256":"bd16bd00dfdb0a3d0f8bdf07f83f1bcc066b5bc71420b4ddde225f3dbc4b5713","sha512":"c0aa7f455e5c554e5e30419d4c93358e951c9c83c1fa1a44c6995efa36e6eaf5f19e0b5d909e41ab1a4734910a57bc34969e700d011901bd26cdd4f6fa0f4112","ssdeep":"192:upBzjX5+cKYcAfc1L0D6mYchlK9h7fmJBzvBmpznqc3Dgi3ClqOMZR0opsI+jusE:ufXX5j0mYixoFxc+t","tlshash":"6f422064ab9b68b2b83797642bb7ca1f23fc7023d004ea2c77ee11944f861bcd452744","first_seen":"2026-04-07T01:03:36.590058Z","last_seen":"2026-04-08T12:27:34.609726Z","times_seen":3,"resource_available":false,"data":null}},"time_used":123,"timings":{"blocked":57,"dns":0,"connect":0,"send":0,"wait":66,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/images/aiwallet-logo.svg","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/images/aiwallet-logo.svg HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 26514\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nConnection: keep-alive\r\nETag: \"69cebbd8-6792\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":26514,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"37b6a85887060c2ba54d6c1f768122d8","sha1":"0643090b68960f995d7b4343c66501f94d472d5b","sha256":"a4ab4d1d15ecb9d75599264c945b2439b3c4dbffcf7811a9e8454bb96171bd78","sha512":"f29c0d97230d72b5f070fb14b7c68d03f75d9a62af7a545f3620517fe1e5b4f6b828614c7522b4451d5416a27b841222239404abab024bb781848d429cdf9a0c","ssdeep":"768:XI2eVdExHZuCandr59bpD+7z+d7CrnZ3TG923R:0E5ujd1pxS+Gdy9ER","tlshash":"57c2f9d8737842f8d6ad63e4c9e2a86d3a1b35fa3b0080588b5e3ed19d2359c495dcc7","first_seen":"2026-04-07T01:03:36.593043Z","last_seen":"2026-04-08T12:27:34.628859Z","times_seen":3,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":253,"dns":0,"connect":0,"send":0,"wait":58,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"binance-trade.info/assets/vendor/fontawesome/webfonts/fa-solid-900.woff2","fqdn":"binance-trade.info","domain":"binance-trade.info","tld":"info"},"ip":{"addr":"94.154.35.90","port":443,"asn":215567,"as":"Emirhan Kurt","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://binance-trade.info/","date":"2026-04-07T01:03:07.547Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"binance-trade.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 04 Apr 2026 22:29:42 GMT","end":"Fri, 03 Jul 2026 22:29:41 GMT"},"fingerprint":{"sha1":"AD:8D:9F:E5:A0:88:7A:A4:40:98:2C:99:95:19:04:5C:77:81:FB:0E","sha256":"0E:DE:B3:64:1A:32:C8:F4:C3:48:65:46:4A:A2:75:BD:31:00:D4:B2:6D:4F:27:8A:C4:9E:0E:6B:8F:8B:BA:73"}}},"request":{"raw":"GET /assets/vendor/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: binance-trade.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://binance-trade.info/assets/vendor/fontawesome/css/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Tue, 07 Apr 2026 01:03:07 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 114740\r\nLast-Modified: Thu, 02 Apr 2026 18:56:24 GMT\r\nConnection: keep-alive\r\nETag: \"69cebbd8-1c034\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":114740,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), CFF, length 114740, version 898.256","md5":"0a74987bb59fa4a5a8e2eea68608d6f9","sha1":"79f2a488fd9c1e1f01943a196f5abf53821e04d7","sha256":"ff58a6b0a01dbce082458f6e5a58719df4e80e0c2b50f744bb5871e21eca6878","sha512":"ec8014a9438540096e4bdece6ced4d48e848516b23a2c518c34c691cb607761c92441e7ae73f5fa6a6085030a0e84d5ad809cbb1cf709b4ec94982bcdc2e1f38","ssdeep":"1536:vVz7d5z5vXXHkt13bkksuapy48cgRDEixUsH+bu9w7D/FzbmQOr+rqZa4ZHKCL8u:Nv1vXHggQDTGsxqDdmQXrEa4ZHKCLWsX","tlshash":"b6b31226718ea701c81e47c7f2ed96cfd3a6420b1897198f345e3d0237aa81a933d9d7","first_seen":"2026-02-11T07:20:24.326567Z","last_seen":"2026-04-08T21:03:20.411334Z","times_seen":114,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":61,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"binance-trade.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}