Report Overview
Visitedpublic
2026-05-15 03:48:21
Submit Tags
URL
xrpwalletdoff.com
Finishing URL
xrpwalletdoff.com/
IP / ASN
104.21.1.219
Title
XRP Wallet — Official Self-Custodial Wallet
Suspicious - Suspicious Javascript code
Detections
urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
2
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
xrpwalletdoff.com 8 alert(s) on this Host | unknown | 2026-05-13 | 2026-05-15 | 2026-05-15 | 2.7 kB | 3.5 MB | 172.67.128.24 |  |
fonts.gstatic.com | unknown | 2008-02-11 | 2014-04-02 | 2026-05-10 | 4.9 kB | 341 kB |  142.250.178.35 | |
fonts.googleapis.com | 313 | 2005-01-25 | 2012-05-23 | 2026-05-10 | 580 B | 16 kB | 142.251.142.234 | |
api.coingecko.com | 442226 | 2014-03-26 | 2018-05-18 | 2026-05-09 | 546 B | 31 kB | 172.66.172.219 | |
Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Related reports
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| YARAhub by abuse.ch | xrpwalletdoff.com/ | malware | Detects file containing Telegram Bot API |
| DNS4EU | xrpwalletdoff.com | malicious | Sinkholed |
Telegram Bot detected (1)
URL
xrpwalletdoff.com/
IP / ASN
172.67.128.24
Token
8551676585:AAHHq0dwcmDFZaeEVw7rMYHUSe8Xo3sIwbU
Bot Overview
User ID8551676585
UsernameDevosusOtstukBot
First NameDevosusOtstukBot
Last NameN/A
Chat Info
Chat ID-1003702077442
Chat Typesupergroup
Titleotstuk | devosus
User Count4
Admins2
Pending Msgs1
JavaScript (8)
No JavaScripts
HTTP Transactions (17)
| URL | IP | Response | Size |
|---|