{"report_id":"54c1d419-5c8d-4667-81d2-a9e106a4c548","version":0,"status":"done","tags":[],"date":"2026-06-17T16:39:08Z","url":{"schema":"http","addr":"oandaofficial.com","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"title":"OANDA","dom":{"size":41904,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"4e13d62e65bfaf9fa5fbde037fa0292e","sha1":"79b0556dc4fb6fcb0d2454a2e001024ad97f327d","sha256":"96f5dcf71bbdef2693746696d601c94f3e7e3004488e860664c65a8fe2611167","sha512":"b238dc6870441f1712e5496bf2b256c2b54def47bc58fe50c26d6f66d5e07081ee06c292bfb23a132ca5df227d993b5cfc5aa5048cb5db4ab375f44e3238aa78","ssdeep":"384:NFUcZiTgApzUDyj6ITIKRBzycCTrfPq0wSGcQ0fSWAZ/OUJES3hPOG6XIsjSFf4s:NFUcgZ82nILffi0wSG50fSWcyMD","tlshash":"c9137610d2ee0c23207290c3aaa6af2974efaa37d35a4404f7ff0d766b87d157a1255d","dom_hash":"domhash7bfcd3d59b5b096fb472dcf05e0d6a00","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"oandaofficial.com","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-22T16:39:08Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"vnforexs.net","ip":{"addr":"104.21.25.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-05-26T08:50:18.771695Z","last_seen":"2026-06-08T23:14:56.873224Z","alert_count":0,"request_count":1,"received_data":830,"sent_data":582,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"oandaofficial.com","ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"domain_registered":"2025-08-27","domain_rank":0,"first_seen":"2026-04-28T19:35:49.759235Z","last_seen":"2026-06-15T11:55:14.794461Z","alert_count":170,"request_count":85,"received_data":3362497,"sent_data":50473,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Clipboard.js","description":"","website":"https://clipboardjs.com/","common_platform_enumeration":"","icon":"Clipboard.js.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/script.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"7bd8dbda74fc465ae66adcc739addd22","sha1":"9a7cdadeeec394ca68f30ceeb4cd0a5a807008eb","sha256":"816e4ac149a00e91f7dcab8e6494abac7ea31f15d0ac667e117e48308eda79a8","sha512":"37a2fcb6dca3612a35d314448726fe71334d342fa9b9cf491e90ab13920b8cdfae8db3d5d333320e13c277e3e958b94f6367711132f2ba544926f5d981b7e47c","ssdeep":"96:z9+ApqIu5jK5j6bYVslqc6v1SYs23vh831GhMxCrXH/H:5+AgIejqj6Ev1js23vh831GhECX/H","tlshash":"cc9163a87156362d83f233744cfe4425dc3ed665460b8960f0a1b9942d7463e4eebecd","size":4285,"data":"","first_seen":"2023-09-23T10:36:02Z","last_seen":"2026-06-17T16:39:53.775216Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/layui.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"055cb5361d0dadf75de67f6875def943","sha1":"97ddce827fedb8869a9d0248a16b70c14da2a8ec","sha256":"91ffac1a9d64f3dae4e8091b4feea25981e750d279cb71491b25dc24b33ecaf2","sha512":"3c074594a667484aa78b2227f834c4bebab07a6b4bd795f94570d3e3da911aa48275e13c54e1c6848cd2ec1fbb2bad5cb104e9a6bc1f71c967e93dfde62aa9b2","ssdeep":"192:TDTGeNtb7/j9Eg3JMunJYJjdlrr1+p8XqlPBOTXLLRUweK:TDTGeNtHj9Eg3JMunOJjdlP1+K6Pw7Lz","tlshash":"c7e1a898b5b27452473b306572af901ea67b44ad284c8090d1ced9e63cb6cbe4377f9c","size":7395,"data":"","first_seen":"2023-03-07T01:06:15Z","last_seen":"2026-06-17T18:01:05.895657Z","times_seen":541,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"428004d533c350004753117c04571cc4d034447014444d405040d4531c570315115c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-06-18T07:30:51.711022Z","times_seen":696952,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"428004d533c350004753117c04571cc4d034447014444d405040d4531c570315115c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-06-18T07:30:51.711022Z","times_seen":696952,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"57b1a28a4e742f3794afd1621bca55a0","sha1":"4f6bf7ad2037e0f8c758748f4835ae1918852817","sha256":"562feb8ca6122423ef629c082d81004211bbb792dca40cc76eec14896a6a3c2f","sha512":"f57265b7d4bfead5fdf84ce44bc82d966e44a3b642db278635c450144a1cf7b53d8a99e709d28d1186b8e6a03766d8c255d3b132f7a3382b32b201e046127be5","ssdeep":"192:EHjrXg7hWXwiQRdUFdMeajJiMF0Cl3Loa5fFwy4HrwIIgUdjAN:EDrQ0XRQQM1iMF0Cl3LoaILEWNN","tlshash":"92725290fbac155f40f6102d84ac55c86bdc8571c7a849e7babca6d00748f1e146bdbf","size":16106,"data":"","first_seen":"2025-03-15T23:28:02.136561Z","last_seen":"2026-06-17T16:39:53.754782Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/element.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"784379625afe1516f69075a78007e7bf","sha1":"4eca1e2bd313d46ddcf113095074da797b145aa6","sha256":"763c30063a00b2698ab3aa17948b5008a33d477fd7dfd45f11f3d4a49e29b73c","sha512":"f08d8e5c3c091ca2a0f00109cc55dcf9a7ce055996f1fd2d6cc2f7b414e533c0b8356fb5bd3ec7eea1692e5aa56d2be0465465f60479f3eb2afb783cec3ca87a","ssdeep":"192:nZKp8KKtRtwFC2q6IsTPJB91RGRtX9uEUn0Gs:nZltcF+6IsTP5ONN","tlshash":"bfe19518b05236f73197b5d143bfa21da03f4636e70246ac3066d4ba09bbd891673f9b","size":7264,"data":"","first_seen":"2023-03-07T13:00:48Z","last_seen":"2026-06-17T18:01:05.927555Z","times_seen":268,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b611cde12f18866736f030afae60c32","sha1":"e364290dedf94d28ac84aaf0992a25ea9aa9cd39","sha256":"2226421a04282eaee5be9bb57521b83c69a5405b3277e2a04c70e0e070518fa2","sha512":"dcdc3f363102a7e5874c6d096e4a6d7a96d2e43202fea35c1cc27a0d7bb44bb74b143220b25adc4f358e075e3736fdd86390664350dc6bb0869569db2af65489","ssdeep":"","tlshash":"aed05e88844b86960b6a046a4b5fb2117112c4770349c4107b1c26eaafe177fa6aaad6","size":265,"data":"","first_seen":"2026-06-08T23:14:59.684176Z","last_seen":"2026-06-17T16:39:53.832866Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d183f4334835ea59ab33fdba9d797321","sha1":"58952ceae84a5fb1624c4e01e7c5ca04c9c1a7d2","sha256":"e61196d87b18fd8273832d3731091ac91be56be3a9ac3c984ff2759f3251072b","sha512":"9e5ca768423d57d6aa50356b7fcb81504aca057572ec98f76e552b9ab6c408c635bac7dda9867d79ce6b1ef03c3a6ba54d18c983abac0a16518ad7510a9349a1","ssdeep":"","tlshash":"79e0c204ced79a8a7c181881236e24377092c80311c9d616fd6eb117df5310fa5e83dc","size":312,"data":"","first_seen":"2026-06-08T23:14:59.685067Z","last_seen":"2026-06-17T16:39:53.833748Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"f2890177bd2fcb7ac5b7185ae8eddcf7","sha1":"87238cf5365f43e3980250614880be9f05c8993f","sha256":"12f29f8aec96b797e9e0956c255efe1e46a7406207015ce600dbaed7ad0a3bb0","sha512":"aea085f467f3e681fdb1c6262889ff5427678123edaebb0aaad1c08f4e4125f95d8ddedeb297b9872589433fde1d9f8ba6b1ffde065d43974ed30ee325130956","ssdeep":"","tlshash":"9c41cc6ed0a62014c1b366541e9f2118381470e7840dc82f7fcc92a5aff553ec9eb79c","size":2364,"data":"","first_seen":"2026-06-08T23:14:59.686027Z","last_seen":"2026-06-17T16:39:53.834673Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d5c93ffee5c711d9cabd583517dcfae8","sha1":"3e41c38b4e29862805ea57ebcf9dd3725b07130c","sha256":"d38cbe26079de1cb00bb8a5c56d71be4ad9af06843eebdcfd1f0bfbda2b87d8d","sha512":"1ca678cce962ea0ee6bf9b6c9e7603935e5651430067b93f461260168c63fe534ffd64f71c53d7f314e0350e2014abf35e4b5e5e55eda7f55de156db64437fcb","ssdeep":"","tlshash":"883192da40d5534969b728929b8b7a013163a4b704cc500a7e1cf6791f4a31f5acbfde","size":1470,"data":"","first_seen":"2026-06-08T23:14:59.687296Z","last_seen":"2026-06-17T16:39:53.835763Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"b079015879110e8d38fbde163d145292","sha1":"c38f410062f607117a5cb1de8cbc1d6673aa9210","sha256":"acd5895bd78407e9ea93750a80a9c12ae0d5d0609809a4861dab028f128597a4","sha512":"a0006071d2bb6658c336f092a73160f967a13f74d75f07bbd0269b218e7f4fa24dc76a602377f1747cdc0908f035f99ee85a16ea7dec4e7cb63b920dd11eba64","ssdeep":"","tlshash":"a470000c8f2a8000a00a8cc0208082000ca8200222200000a80a0e0030802a0802a0a8","size":20,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.966499Z","times_seen":110,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"be50e118ea376ba90987807a43b9d737","sha1":"89d6610d3054fe4f7943dfdc33f4c7bf47e3e2b5","sha256":"43959c86c9f5bde4f3bb47087763090863274b9ea885d764f23999ee4bcf20a9","sha512":"39edafb4e2ac4c1f3d34ddb23a92e353cc9bb5dcab433b993f98dde2e0bf96b65053863ac0beea6d08966c8c04ad171239e7a9288dcbf15e0c2f17320e05b06e","ssdeep":"","tlshash":"7a515498f74d2a48683621b64f5e40c8381c083ad4614c37fe1d9c787faab189b59e2e","size":2496,"data":"","first_seen":"2026-06-08T23:14:59.689162Z","last_seen":"2026-06-17T16:39:53.837565Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/index/index.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"0dcd53515a6992b2222ee4d9f4a3e682","sha1":"0aa981db906694ccb7650bd5defc855bf01a2f18","sha256":"4cf6b72d4faa38b5a6d0500c798cdabeb6a4f241d34d0612bbc6c328773cdca0","sha512":"795e3c8e0b69f8875b02c8ab820c1eadea220864ae64192e419ef354898b01684fbc71b54a49bbbd344e5bb090c96999459eb5df90e5be998791a2072b5509f9","ssdeep":"48:4NHsJYS7AEGyUjmHAuEZBnZBJOt9dxGiKsu5RtpmJpZzPDvuli+hIg:mHsJ/oQARZJZTADoPtpI3v4ikIg","tlshash":"88915606e4e314536e23909a8feb4005a1adc033d20acc4dbb9ed69e2f5c9ac5555ede","size":4625,"data":"","first_seen":"2025-02-26T18:00:22.704148Z","last_seen":"2026-06-17T18:01:05.922215Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b611cde12f18866736f030afae60c32","sha1":"e364290dedf94d28ac84aaf0992a25ea9aa9cd39","sha256":"2226421a04282eaee5be9bb57521b83c69a5405b3277e2a04c70e0e070518fa2","sha512":"dcdc3f363102a7e5874c6d096e4a6d7a96d2e43202fea35c1cc27a0d7bb44bb74b143220b25adc4f358e075e3736fdd86390664350dc6bb0869569db2af65489","ssdeep":"","tlshash":"aed05e88844b86960b6a046a4b5fb2117112c4770349c4107b1c26eaafe177fa6aaad6","size":265,"data":"","first_seen":"2026-06-08T23:14:59.684176Z","last_seen":"2026-06-17T16:39:53.832866Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d183f4334835ea59ab33fdba9d797321","sha1":"58952ceae84a5fb1624c4e01e7c5ca04c9c1a7d2","sha256":"e61196d87b18fd8273832d3731091ac91be56be3a9ac3c984ff2759f3251072b","sha512":"9e5ca768423d57d6aa50356b7fcb81504aca057572ec98f76e552b9ab6c408c635bac7dda9867d79ce6b1ef03c3a6ba54d18c983abac0a16518ad7510a9349a1","ssdeep":"","tlshash":"79e0c204ced79a8a7c181881236e24377092c80311c9d616fd6eb117df5310fa5e83dc","size":312,"data":"","first_seen":"2026-06-08T23:14:59.685067Z","last_seen":"2026-06-17T16:39:53.833748Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"f2890177bd2fcb7ac5b7185ae8eddcf7","sha1":"87238cf5365f43e3980250614880be9f05c8993f","sha256":"12f29f8aec96b797e9e0956c255efe1e46a7406207015ce600dbaed7ad0a3bb0","sha512":"aea085f467f3e681fdb1c6262889ff5427678123edaebb0aaad1c08f4e4125f95d8ddedeb297b9872589433fde1d9f8ba6b1ffde065d43974ed30ee325130956","ssdeep":"","tlshash":"9c41cc6ed0a62014c1b366541e9f2118381470e7840dc82f7fcc92a5aff553ec9eb79c","size":2364,"data":"","first_seen":"2026-06-08T23:14:59.686027Z","last_seen":"2026-06-17T16:39:53.834673Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d5c93ffee5c711d9cabd583517dcfae8","sha1":"3e41c38b4e29862805ea57ebcf9dd3725b07130c","sha256":"d38cbe26079de1cb00bb8a5c56d71be4ad9af06843eebdcfd1f0bfbda2b87d8d","sha512":"1ca678cce962ea0ee6bf9b6c9e7603935e5651430067b93f461260168c63fe534ffd64f71c53d7f314e0350e2014abf35e4b5e5e55eda7f55de156db64437fcb","ssdeep":"","tlshash":"883192da40d5534969b728929b8b7a013163a4b704cc500a7e1cf6791f4a31f5acbfde","size":1470,"data":"","first_seen":"2026-06-08T23:14:59.687296Z","last_seen":"2026-06-17T16:39:53.835763Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"b079015879110e8d38fbde163d145292","sha1":"c38f410062f607117a5cb1de8cbc1d6673aa9210","sha256":"acd5895bd78407e9ea93750a80a9c12ae0d5d0609809a4861dab028f128597a4","sha512":"a0006071d2bb6658c336f092a73160f967a13f74d75f07bbd0269b218e7f4fa24dc76a602377f1747cdc0908f035f99ee85a16ea7dec4e7cb63b920dd11eba64","ssdeep":"","tlshash":"a470000c8f2a8000a00a8cc0208082000ca8200222200000a80a0e0030802a0802a0a8","size":20,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.966499Z","times_seen":110,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"be50e118ea376ba90987807a43b9d737","sha1":"89d6610d3054fe4f7943dfdc33f4c7bf47e3e2b5","sha256":"43959c86c9f5bde4f3bb47087763090863274b9ea885d764f23999ee4bcf20a9","sha512":"39edafb4e2ac4c1f3d34ddb23a92e353cc9bb5dcab433b993f98dde2e0bf96b65053863ac0beea6d08966c8c04ad171239e7a9288dcbf15e0c2f17320e05b06e","ssdeep":"","tlshash":"7a515498f74d2a48683621b64f5e40c8381c083ad4614c37fe1d9c787faab189b59e2e","size":2496,"data":"","first_seen":"2026-06-08T23:14:59.689162Z","last_seen":"2026-06-17T16:39:53.837565Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/carousel.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"f4b94959b4b5ad34cdc1dd2c12a6bd1c","sha1":"303a72c6380c4277062e85eac689d1dc5ebc60df","sha256":"ec7b67ac49f660eae790c97c9e47fd86973a01478947c603f458667fb322351c","sha512":"b4d24dd32769ad42ed0d4e7b61b80c0ef9f41e9d001a48f5bfd3a328e58e715724a2df8bb97e8078e6b1fc44be5ede4b53233f987578eaf9f3d6e0a3ec936831","ssdeep":"","tlshash":"d7811181775f386741972453935f4c0896b719ba9b06d054f2a264fa6dfbc88223eb0f","size":3862,"data":"","first_seen":"2023-03-10T09:41:51Z","last_seen":"2026-06-17T18:01:05.946662Z","times_seen":77,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/clipboard.min.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"aa7c9d74f567a8877522f816d7c387cc","sha1":"d79bfe29e732477cb27598dedff9495ddc05f390","sha256":"6717dbf025d81f537cc639903fb560e01912c0467e8da579fcdf92c6f58f7a65","sha512":"da4a20fae935b42cb957a322479c0e779835b37291c6ac8cb41f300dde796847897f788e849ff6153a32004cff087615d37f9f2cb8aa5751cdb1b8bab2534b16","ssdeep":"192:q0Z14dOk1XSHkKpI/230xlH3G4Ly9+vxo53CoD87JxKllkvc363Pw/3JyUZu5MpL:HZCQfI/wsXCz3rbllC3P83JVu5/Gz","tlshash":"6122a68cb29071b156eb50ba802f420fb271c42db06e40a8b21de8f56c7de9d4627f3d","size":10111,"data":"","first_seen":"2023-04-08T01:19:22Z","last_seen":"2026-06-17T18:01:05.90943Z","times_seen":2201,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b611cde12f18866736f030afae60c32","sha1":"e364290dedf94d28ac84aaf0992a25ea9aa9cd39","sha256":"2226421a04282eaee5be9bb57521b83c69a5405b3277e2a04c70e0e070518fa2","sha512":"dcdc3f363102a7e5874c6d096e4a6d7a96d2e43202fea35c1cc27a0d7bb44bb74b143220b25adc4f358e075e3736fdd86390664350dc6bb0869569db2af65489","ssdeep":"","tlshash":"aed05e88844b86960b6a046a4b5fb2117112c4770349c4107b1c26eaafe177fa6aaad6","size":265,"data":"","first_seen":"2026-06-08T23:14:59.684176Z","last_seen":"2026-06-17T16:39:53.832866Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d183f4334835ea59ab33fdba9d797321","sha1":"58952ceae84a5fb1624c4e01e7c5ca04c9c1a7d2","sha256":"e61196d87b18fd8273832d3731091ac91be56be3a9ac3c984ff2759f3251072b","sha512":"9e5ca768423d57d6aa50356b7fcb81504aca057572ec98f76e552b9ab6c408c635bac7dda9867d79ce6b1ef03c3a6ba54d18c983abac0a16518ad7510a9349a1","ssdeep":"","tlshash":"79e0c204ced79a8a7c181881236e24377092c80311c9d616fd6eb117df5310fa5e83dc","size":312,"data":"","first_seen":"2026-06-08T23:14:59.685067Z","last_seen":"2026-06-17T16:39:53.833748Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"f2890177bd2fcb7ac5b7185ae8eddcf7","sha1":"87238cf5365f43e3980250614880be9f05c8993f","sha256":"12f29f8aec96b797e9e0956c255efe1e46a7406207015ce600dbaed7ad0a3bb0","sha512":"aea085f467f3e681fdb1c6262889ff5427678123edaebb0aaad1c08f4e4125f95d8ddedeb297b9872589433fde1d9f8ba6b1ffde065d43974ed30ee325130956","ssdeep":"","tlshash":"9c41cc6ed0a62014c1b366541e9f2118381470e7840dc82f7fcc92a5aff553ec9eb79c","size":2364,"data":"","first_seen":"2026-06-08T23:14:59.686027Z","last_seen":"2026-06-17T16:39:53.834673Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d5c93ffee5c711d9cabd583517dcfae8","sha1":"3e41c38b4e29862805ea57ebcf9dd3725b07130c","sha256":"d38cbe26079de1cb00bb8a5c56d71be4ad9af06843eebdcfd1f0bfbda2b87d8d","sha512":"1ca678cce962ea0ee6bf9b6c9e7603935e5651430067b93f461260168c63fe534ffd64f71c53d7f314e0350e2014abf35e4b5e5e55eda7f55de156db64437fcb","ssdeep":"","tlshash":"883192da40d5534969b728929b8b7a013163a4b704cc500a7e1cf6791f4a31f5acbfde","size":1470,"data":"","first_seen":"2026-06-08T23:14:59.687296Z","last_seen":"2026-06-17T16:39:53.835763Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"b079015879110e8d38fbde163d145292","sha1":"c38f410062f607117a5cb1de8cbc1d6673aa9210","sha256":"acd5895bd78407e9ea93750a80a9c12ae0d5d0609809a4861dab028f128597a4","sha512":"a0006071d2bb6658c336f092a73160f967a13f74d75f07bbd0269b218e7f4fa24dc76a602377f1747cdc0908f035f99ee85a16ea7dec4e7cb63b920dd11eba64","ssdeep":"","tlshash":"a470000c8f2a8000a00a8cc0208082000ca8200222200000a80a0e0030802a0802a0a8","size":20,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.966499Z","times_seen":110,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"be50e118ea376ba90987807a43b9d737","sha1":"89d6610d3054fe4f7943dfdc33f4c7bf47e3e2b5","sha256":"43959c86c9f5bde4f3bb47087763090863274b9ea885d764f23999ee4bcf20a9","sha512":"39edafb4e2ac4c1f3d34ddb23a92e353cc9bb5dcab433b993f98dde2e0bf96b65053863ac0beea6d08966c8c04ad171239e7a9288dcbf15e0c2f17320e05b06e","ssdeep":"","tlshash":"7a515498f74d2a48683621b64f5e40c8381c083ad4614c37fe1d9c787faab189b59e2e","size":2496,"data":"","first_seen":"2026-06-08T23:14:59.689162Z","last_seen":"2026-06-17T16:39:53.837565Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/jquery-3.4.1/jquery-3.4.1.min.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","size":88145,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-06-18T07:27:08.767483Z","times_seen":134092,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/lang/en-us.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"26fd80f238136ab70ac2545308240972","sha1":"9c53209dece13d2ea508801018e17a48ab20ec52","sha256":"4bc90ecaf4541f9f71e04744f90b02ec404ddb22aab1dac753d96e171e1c1185","sha512":"efb3db97c63e2cd7d447f8337e3b29c7cf369b261eadab75aa887d196feb57c4e44d0f1f2a96fb82190673acddb1c8735221617f1d6d1e4c119dbf4b5c0cd10d","ssdeep":"","tlshash":"87115c55520c9494050694cb76a716c5df8540770981768ab7dd81dc7f8bc2be2f7189","size":970,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.911242Z","times_seen":115,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/layer_mobile/layer.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"b779281d1bc48453207fe2cfe0fc269f","sha1":"9d7a4f3faaa85d8abf62bb8f450146a5920144eb","sha256":"27751e247667cc06cc4985515759153864421aab1f2f5a660a79ea82548c7ed4","sha512":"92553de96e3388f4ac94924f577f72cd1cb4b2c3ecef7dbc8a86eac66d4b51ee24292d8d39d0d22c495842a30b99a622d08dafb9fbec890e4f7f24bc417e5bc9","ssdeep":"","tlshash":"8361b876f1013677662321c4e06f590f7a736591b100c802e0e4d1ada9fec4ca8bbf6d","size":3330,"data":"","first_seen":"2025-03-15T23:28:02.133651Z","last_seen":"2026-06-17T16:39:53.762452Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b611cde12f18866736f030afae60c32","sha1":"e364290dedf94d28ac84aaf0992a25ea9aa9cd39","sha256":"2226421a04282eaee5be9bb57521b83c69a5405b3277e2a04c70e0e070518fa2","sha512":"dcdc3f363102a7e5874c6d096e4a6d7a96d2e43202fea35c1cc27a0d7bb44bb74b143220b25adc4f358e075e3736fdd86390664350dc6bb0869569db2af65489","ssdeep":"","tlshash":"aed05e88844b86960b6a046a4b5fb2117112c4770349c4107b1c26eaafe177fa6aaad6","size":265,"data":"","first_seen":"2026-06-08T23:14:59.684176Z","last_seen":"2026-06-17T16:39:53.832866Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d183f4334835ea59ab33fdba9d797321","sha1":"58952ceae84a5fb1624c4e01e7c5ca04c9c1a7d2","sha256":"e61196d87b18fd8273832d3731091ac91be56be3a9ac3c984ff2759f3251072b","sha512":"9e5ca768423d57d6aa50356b7fcb81504aca057572ec98f76e552b9ab6c408c635bac7dda9867d79ce6b1ef03c3a6ba54d18c983abac0a16518ad7510a9349a1","ssdeep":"","tlshash":"79e0c204ced79a8a7c181881236e24377092c80311c9d616fd6eb117df5310fa5e83dc","size":312,"data":"","first_seen":"2026-06-08T23:14:59.685067Z","last_seen":"2026-06-17T16:39:53.833748Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"f2890177bd2fcb7ac5b7185ae8eddcf7","sha1":"87238cf5365f43e3980250614880be9f05c8993f","sha256":"12f29f8aec96b797e9e0956c255efe1e46a7406207015ce600dbaed7ad0a3bb0","sha512":"aea085f467f3e681fdb1c6262889ff5427678123edaebb0aaad1c08f4e4125f95d8ddedeb297b9872589433fde1d9f8ba6b1ffde065d43974ed30ee325130956","ssdeep":"","tlshash":"9c41cc6ed0a62014c1b366541e9f2118381470e7840dc82f7fcc92a5aff553ec9eb79c","size":2364,"data":"","first_seen":"2026-06-08T23:14:59.686027Z","last_seen":"2026-06-17T16:39:53.834673Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d5c93ffee5c711d9cabd583517dcfae8","sha1":"3e41c38b4e29862805ea57ebcf9dd3725b07130c","sha256":"d38cbe26079de1cb00bb8a5c56d71be4ad9af06843eebdcfd1f0bfbda2b87d8d","sha512":"1ca678cce962ea0ee6bf9b6c9e7603935e5651430067b93f461260168c63fe534ffd64f71c53d7f314e0350e2014abf35e4b5e5e55eda7f55de156db64437fcb","ssdeep":"","tlshash":"883192da40d5534969b728929b8b7a013163a4b704cc500a7e1cf6791f4a31f5acbfde","size":1470,"data":"","first_seen":"2026-06-08T23:14:59.687296Z","last_seen":"2026-06-17T16:39:53.835763Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"b079015879110e8d38fbde163d145292","sha1":"c38f410062f607117a5cb1de8cbc1d6673aa9210","sha256":"acd5895bd78407e9ea93750a80a9c12ae0d5d0609809a4861dab028f128597a4","sha512":"a0006071d2bb6658c336f092a73160f967a13f74d75f07bbd0269b218e7f4fa24dc76a602377f1747cdc0908f035f99ee85a16ea7dec4e7cb63b920dd11eba64","ssdeep":"","tlshash":"a470000c8f2a8000a00a8cc0208082000ca8200222200000a80a0e0030802a0802a0a8","size":20,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.966499Z","times_seen":110,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"be50e118ea376ba90987807a43b9d737","sha1":"89d6610d3054fe4f7943dfdc33f4c7bf47e3e2b5","sha256":"43959c86c9f5bde4f3bb47087763090863274b9ea885d764f23999ee4bcf20a9","sha512":"39edafb4e2ac4c1f3d34ddb23a92e353cc9bb5dcab433b993f98dde2e0bf96b65053863ac0beea6d08966c8c04ad171239e7a9288dcbf15e0c2f17320e05b06e","ssdeep":"","tlshash":"7a515498f74d2a48683621b64f5e40c8381c083ad4614c37fe1d9c787faab189b59e2e","size":2496,"data":"","first_seen":"2026-06-08T23:14:59.689162Z","last_seen":"2026-06-17T16:39:53.837565Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/form.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"a55a0aaf3d84264e3373f58f347a18fb","sha1":"921760fdababb5639192c73866c1b3b5f2ca0644","sha256":"03315f4a8fa90d66f3115d686bcb50d9356136607f92edbc9c59d4f27090a0f3","sha512":"7295dd0874606a2605b16a49ca696bfe305e16d769a7d037cfba0e074591e4def8dea94e4157cbd7c52e85e8de4ae496155c0af6d21b00943ba04ab6164edc13","ssdeep":"192:7U7m+EjWnSTmyANS4B7R6EoHv9w5iaHe16GL:7U7msqmHBV6LP9yiaH6n","tlshash":"1312a319715135e2367b60a1405f981ba0bf4635ab09c8947093d4f92ebec9493f3faf","size":9591,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.956136Z","times_seen":112,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/slider.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"6c35742db2e72cd4f30cefa23690ecf5","sha1":"b50d4268f547cefd984c069d276c956feef395e8","sha256":"2fdaaa9935b2d19fb54e0798e6e42fc3528d1b2772b46b9aa8731b1ab6947609","sha512":"44d0ab3649b35cec891738e6eb4f28d1857fcb900e2369b9395ea54854717108268c8ce729591923fb094cfe1b34dc0f9b2e9bf35b17b77f34c479ef80deb391","ssdeep":"192:z8Syuw2bmz0DLKypMjYXVp5D8IlM/eq9zwtyd4UduKN:z1yuw2UOPSBMj8/","tlshash":"53e19615314ab5732172c263b59fc84eb2f20779b303c564a6a540a51ebece82b37f63","size":7091,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.918842Z","times_seen":116,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/web3.min.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ef095da06a14bf00d20e844cf96202f","sha1":"8e3dea60e686c94eeded2035c110cbf8b62d847f","sha256":"b2f2c092aadaadb3a720e4f7f114005eff3fa05c663ed84c0b9791b0b39c4aa7","sha512":"e6dc0322c2857cad096fbf29567947ef7e2619d6802f8738f06ea9e7f065ed6fbb5d4012f1a562ae790eb86e5d303b18074b7698facf13005dea7a0405f318c6","ssdeep":"6144:dGTpkXGg97WCcHlzHGIXBzBkLxDVmNiS9KQqDNX4Y6eW0BQXOJ4DXt/KL3zxK6C8:QZoQjxAzCamsviTeyXaKiX","tlshash":"5155d9c4b650b051c3a66a90441f900ee37ef96d3c4e0169fa57ecf37cb8a89552af39","size":1384704,"data":"","first_seen":"2024-10-04T10:53:17.054173Z","last_seen":"2026-06-17T16:39:53.839471Z","times_seen":27,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b611cde12f18866736f030afae60c32","sha1":"e364290dedf94d28ac84aaf0992a25ea9aa9cd39","sha256":"2226421a04282eaee5be9bb57521b83c69a5405b3277e2a04c70e0e070518fa2","sha512":"dcdc3f363102a7e5874c6d096e4a6d7a96d2e43202fea35c1cc27a0d7bb44bb74b143220b25adc4f358e075e3736fdd86390664350dc6bb0869569db2af65489","ssdeep":"","tlshash":"aed05e88844b86960b6a046a4b5fb2117112c4770349c4107b1c26eaafe177fa6aaad6","size":265,"data":"","first_seen":"2026-06-08T23:14:59.684176Z","last_seen":"2026-06-17T16:39:53.832866Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d183f4334835ea59ab33fdba9d797321","sha1":"58952ceae84a5fb1624c4e01e7c5ca04c9c1a7d2","sha256":"e61196d87b18fd8273832d3731091ac91be56be3a9ac3c984ff2759f3251072b","sha512":"9e5ca768423d57d6aa50356b7fcb81504aca057572ec98f76e552b9ab6c408c635bac7dda9867d79ce6b1ef03c3a6ba54d18c983abac0a16518ad7510a9349a1","ssdeep":"","tlshash":"79e0c204ced79a8a7c181881236e24377092c80311c9d616fd6eb117df5310fa5e83dc","size":312,"data":"","first_seen":"2026-06-08T23:14:59.685067Z","last_seen":"2026-06-17T16:39:53.833748Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"f2890177bd2fcb7ac5b7185ae8eddcf7","sha1":"87238cf5365f43e3980250614880be9f05c8993f","sha256":"12f29f8aec96b797e9e0956c255efe1e46a7406207015ce600dbaed7ad0a3bb0","sha512":"aea085f467f3e681fdb1c6262889ff5427678123edaebb0aaad1c08f4e4125f95d8ddedeb297b9872589433fde1d9f8ba6b1ffde065d43974ed30ee325130956","ssdeep":"","tlshash":"9c41cc6ed0a62014c1b366541e9f2118381470e7840dc82f7fcc92a5aff553ec9eb79c","size":2364,"data":"","first_seen":"2026-06-08T23:14:59.686027Z","last_seen":"2026-06-17T16:39:53.834673Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d5c93ffee5c711d9cabd583517dcfae8","sha1":"3e41c38b4e29862805ea57ebcf9dd3725b07130c","sha256":"d38cbe26079de1cb00bb8a5c56d71be4ad9af06843eebdcfd1f0bfbda2b87d8d","sha512":"1ca678cce962ea0ee6bf9b6c9e7603935e5651430067b93f461260168c63fe534ffd64f71c53d7f314e0350e2014abf35e4b5e5e55eda7f55de156db64437fcb","ssdeep":"","tlshash":"883192da40d5534969b728929b8b7a013163a4b704cc500a7e1cf6791f4a31f5acbfde","size":1470,"data":"","first_seen":"2026-06-08T23:14:59.687296Z","last_seen":"2026-06-17T16:39:53.835763Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"b079015879110e8d38fbde163d145292","sha1":"c38f410062f607117a5cb1de8cbc1d6673aa9210","sha256":"acd5895bd78407e9ea93750a80a9c12ae0d5d0609809a4861dab028f128597a4","sha512":"a0006071d2bb6658c336f092a73160f967a13f74d75f07bbd0269b218e7f4fa24dc76a602377f1747cdc0908f035f99ee85a16ea7dec4e7cb63b920dd11eba64","ssdeep":"","tlshash":"a470000c8f2a8000a00a8cc0208082000ca8200222200000a80a0e0030802a0802a0a8","size":20,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.966499Z","times_seen":110,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"be50e118ea376ba90987807a43b9d737","sha1":"89d6610d3054fe4f7943dfdc33f4c7bf47e3e2b5","sha256":"43959c86c9f5bde4f3bb47087763090863274b9ea885d764f23999ee4bcf20a9","sha512":"39edafb4e2ac4c1f3d34ddb23a92e353cc9bb5dcab433b993f98dde2e0bf96b65053863ac0beea6d08966c8c04ad171239e7a9288dcbf15e0c2f17320e05b06e","ssdeep":"","tlshash":"7a515498f74d2a48683621b64f5e40c8381c083ad4614c37fe1d9c787faab189b59e2e","size":2496,"data":"","first_seen":"2026-06-08T23:14:59.689162Z","last_seen":"2026-06-17T16:39:53.837565Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/iosapp.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"7c2f59781d7868eff1bed99be0478af8","sha1":"d8bd7c15428c99cdbb38795df05438471953ba6e","sha256":"b16d7795b265d380540612bfed9739a90fb46aade4228c670fc8d17abce9adaf","sha512":"2e979baf0d2f94e91eef9665df48555ab4dcf4e7b8bc149465ec25d9e09a07dd625edf0750a6f9d7e47f64162f8099663c7986c4a4840948b177237581b4ff6b","ssdeep":"","tlshash":"c94132999a9d683919d3b42d1a3fb15c72333aa5a4428110bc0fbf943b34a4a162db98","size":2054,"data":"","first_seen":"2023-09-23T10:36:02Z","last_seen":"2026-06-17T18:01:05.921689Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/index/d3.v4.min.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"e899651bcf1a3591032d7213daeab171","sha1":"607e02087446eb2efadcbee253db3aca3d794a7b","sha256":"8585db4092b8a9d26201e0d58e343d1b40fa034c4b9c343878923d7649bb1699","sha512":"44927534d0bcf1084deddc29098f2b9bfe8ec48f987503f8f03acb19efde48077e9feb353d7c10924a73cc082825ee1c6455b61802d0a31a31eb5812636c907e","ssdeep":"1536:wJdNAq50g6ds5VIG2pUfpgBU3gPDSb7+CmeoA08h6Vh5Lbg5ECfmDoo5rfIrTGE9:wrN3F2pHSYlyLG1sVAupFmuFyiI7R6","tlshash":"092494ccb682b096936320b0417f244bf33b2d59684f4568e029e9d97c7895e51bbfbc","size":221957,"data":"","first_seen":"2023-03-07T21:28:45Z","last_seen":"2026-06-17T18:01:05.952837Z","times_seen":431,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/jquery.cookies.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"de952eda41b0edc0b5c416ee48f7028e","sha1":"dc07de882ab68370534fbf9440ac7b8c068695a7","sha256":"631ea2bc942c1791920270ba02eef37774aa10db3994b4936a2b5f891a970ff7","sha512":"674fd3c9db480ecf8680822131fc80f904ddfb3907a1033ae9ce06019a87ac6f9eb6d6535e6aba0ee0b601d039d55da7e7cd247a67db5cf7bbcb8408116a03d1","ssdeep":"","tlshash":"1b516554b6cc375f07ab22416b6f50aca63cbf72255808dc885965f82c60c37db9bd2a","size":3139,"data":"","first_seen":"2023-03-07T12:09:28Z","last_seen":"2026-06-18T06:56:59.942573Z","times_seen":2842,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/i5scroll.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"229ae241044a0a16861b8583b4435079","sha1":"8051376b7ff4f9eb4c40389985ceed910bd8a868","sha256":"00323fb404aa8d1151ba1d3842ace6e1b7dfd723faa7b0402c20bcbd7d93e59a","sha512":"edafd940bd292208de80d57343ef7dba5360bc21f5dd691f24b13d167b15b3f5529bae2735c1d2c67fb23de10ea4b907f7adf371db7d150724a2ee5d1ef82cc5","ssdeep":"","tlshash":"cc3167c47000b636859620b271ab56d9f3398ad7346d881174beb189bd1cdb50d2fda4","size":1779,"data":"","first_seen":"2025-02-26T18:00:22.707066Z","last_seen":"2026-06-17T18:01:05.953387Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b611cde12f18866736f030afae60c32","sha1":"e364290dedf94d28ac84aaf0992a25ea9aa9cd39","sha256":"2226421a04282eaee5be9bb57521b83c69a5405b3277e2a04c70e0e070518fa2","sha512":"dcdc3f363102a7e5874c6d096e4a6d7a96d2e43202fea35c1cc27a0d7bb44bb74b143220b25adc4f358e075e3736fdd86390664350dc6bb0869569db2af65489","ssdeep":"","tlshash":"aed05e88844b86960b6a046a4b5fb2117112c4770349c4107b1c26eaafe177fa6aaad6","size":265,"data":"","first_seen":"2026-06-08T23:14:59.684176Z","last_seen":"2026-06-17T16:39:53.832866Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d183f4334835ea59ab33fdba9d797321","sha1":"58952ceae84a5fb1624c4e01e7c5ca04c9c1a7d2","sha256":"e61196d87b18fd8273832d3731091ac91be56be3a9ac3c984ff2759f3251072b","sha512":"9e5ca768423d57d6aa50356b7fcb81504aca057572ec98f76e552b9ab6c408c635bac7dda9867d79ce6b1ef03c3a6ba54d18c983abac0a16518ad7510a9349a1","ssdeep":"","tlshash":"79e0c204ced79a8a7c181881236e24377092c80311c9d616fd6eb117df5310fa5e83dc","size":312,"data":"","first_seen":"2026-06-08T23:14:59.685067Z","last_seen":"2026-06-17T16:39:53.833748Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"f2890177bd2fcb7ac5b7185ae8eddcf7","sha1":"87238cf5365f43e3980250614880be9f05c8993f","sha256":"12f29f8aec96b797e9e0956c255efe1e46a7406207015ce600dbaed7ad0a3bb0","sha512":"aea085f467f3e681fdb1c6262889ff5427678123edaebb0aaad1c08f4e4125f95d8ddedeb297b9872589433fde1d9f8ba6b1ffde065d43974ed30ee325130956","ssdeep":"","tlshash":"9c41cc6ed0a62014c1b366541e9f2118381470e7840dc82f7fcc92a5aff553ec9eb79c","size":2364,"data":"","first_seen":"2026-06-08T23:14:59.686027Z","last_seen":"2026-06-17T16:39:53.834673Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d5c93ffee5c711d9cabd583517dcfae8","sha1":"3e41c38b4e29862805ea57ebcf9dd3725b07130c","sha256":"d38cbe26079de1cb00bb8a5c56d71be4ad9af06843eebdcfd1f0bfbda2b87d8d","sha512":"1ca678cce962ea0ee6bf9b6c9e7603935e5651430067b93f461260168c63fe534ffd64f71c53d7f314e0350e2014abf35e4b5e5e55eda7f55de156db64437fcb","ssdeep":"","tlshash":"883192da40d5534969b728929b8b7a013163a4b704cc500a7e1cf6791f4a31f5acbfde","size":1470,"data":"","first_seen":"2026-06-08T23:14:59.687296Z","last_seen":"2026-06-17T16:39:53.835763Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"b079015879110e8d38fbde163d145292","sha1":"c38f410062f607117a5cb1de8cbc1d6673aa9210","sha256":"acd5895bd78407e9ea93750a80a9c12ae0d5d0609809a4861dab028f128597a4","sha512":"a0006071d2bb6658c336f092a73160f967a13f74d75f07bbd0269b218e7f4fa24dc76a602377f1747cdc0908f035f99ee85a16ea7dec4e7cb63b920dd11eba64","ssdeep":"","tlshash":"a470000c8f2a8000a00a8cc0208082000ca8200222200000a80a0e0030802a0802a0a8","size":20,"data":"","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.966499Z","times_seen":110,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"be50e118ea376ba90987807a43b9d737","sha1":"89d6610d3054fe4f7943dfdc33f4c7bf47e3e2b5","sha256":"43959c86c9f5bde4f3bb47087763090863274b9ea885d764f23999ee4bcf20a9","sha512":"39edafb4e2ac4c1f3d34ddb23a92e353cc9bb5dcab433b993f98dde2e0bf96b65053863ac0beea6d08966c8c04ad171239e7a9288dcbf15e0c2f17320e05b06e","ssdeep":"","tlshash":"7a515498f74d2a48683621b64f5e40c8381c083ad4614c37fe1d9c787faab189b59e2e","size":2496,"data":"","first_seen":"2026-06-08T23:14:59.689162Z","last_seen":"2026-06-17T16:39:53.837565Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/layer.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"3ffd5603784dbfeef189498c1a705c15","sha1":"983f2308aab1a1addad5be4f1c49099f5dd589cc","sha256":"2aa83aee413f9b91a2dcc536cfd6acd6e44b3fcdb59c26586e32d083396a8db5","sha512":"76d0b3952e17783ab3b597d0db1f734bf7b933ef8ff316c8107f5192f1ecf318c3f11c9ba10a4d15063b26cbb32133af7581070d7c782ebbbcd6580cfd21545a","ssdeep":"384:619Cih92A3igTLXSt/SdMrXqE6K+LxzAOTElH0jjhtjfs8:614iV3iaWtXIKiF13k8","tlshash":"b4a2b66a754034976323906ad11fba0b31f21d24d7078128f22ba4be1dbcd95a2b7f5f","size":22041,"data":"","first_seen":"2023-03-07T01:06:17Z","last_seen":"2026-06-17T18:01:05.901889Z","times_seen":434,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj314 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj318 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:{\"type\":\"init\",\"client_id\":\"7f00000107d300000004\"} eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj316 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj317 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj315 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj320 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj324 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:{\"type\":\"onweb\",\"client_id\":\"7f00000107d300000004\"} eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj322 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj323 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj321 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj371 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj376 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor373 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12430 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj374 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj375 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj372 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj377 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj382 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor379 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12426 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj380 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj381 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj378 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj383 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj388 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor385 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12427 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj386 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj387 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj384 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj389 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj394 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor391 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12427 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj392 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj393 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj390 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj395 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj400 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor397 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12426 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj398 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj399 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj396 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj401 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj406 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor403 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12426 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj404 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj405 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj402 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj407 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj412 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor409 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12432 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj410 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj411 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj408 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj413 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj418 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor415 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12427 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj416 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj417 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj414 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj419 class:MessageEvent extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[kind:DOMEvent properties:map[bubbles:false cancelable:false currentTarget:map[actor:server1.conn0.watcher14.process7//obj424 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] data:map[actor:server1.conn0.watcher14.process7//longstractor421 initial:{\"type\":\"allticker\",\"ticker\":[{\"market\":\"xau\",\"open\":2326.9,\"close\":2326.91,\"high\":2326.92,\"low\":2326.9,\"change\":0.0004,\"amount\":6761595738.1591,\"count\":6751904708,\"vol\":6749681443.2165,\"volume\":6749681443.2165,\"canvas\":[2511.29,2510.67,2511.01,2511.35,2510.77,2511.16,2511.16,2511.42,2511.87,2511.79,2512.02,2511.06,2511.39,2511.35,2512.15,2512.82,2513.6,2513.98,2513.7,2513.37,2512.64,2512.72,2512.53,2512.84,2512.21,2512.56,2511.05,2510.89,2511.18,2510.6],\"usd\":\"2,326.910000\"},{\"market\":\"xag\",\"open\":29.457,\"close\":29.458,\"high\":29.458,\"low\":29.457,\"change\":0.0034,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[29.96,29.94,29.95,29.95,29.94,29.95,29.96,29.95,29.97,29.95,29.96,29.96,29.96,29.95,29.95,29.96,29.97,29.99,30.02,30.02,30.01,29.99,29.99,29.98,29.98,29.96,29.96,29.96,29.96,29.98],\"usd\":\"29.458000\"},{\"market\":\"xptusd\",\"open\":935.266,\"close\":935.0796,\"high\":935.266,\"low\":935.0796,\"change\":-0.0199,\"amount\":0,\"count\":0,\"vol\":0,\"volume\":0,\"canvas\":[936.5152,936.1131,935.9102,936.35 length:12426 type:longString] eventPhase:2 isTrusted:true lastEventId: origin:wss://vnforexs.net ports:map[actor:server1.conn0.watcher14.process7//obj422 class:Restricted extensible:true frozen:false isError:false sealed:false type:object] srcElement:map[actor:server1.conn0.watcher14.process7//obj423 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object]] target:map[actor:server1.conn0.watcher14.process7//obj420 class:WebSocket extensible:true frozen:false isError:false ownPropertyLength:0 sealed:false type:object] type:message] sealed:false type:object]","filename":"https://oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"oandaofficial.com/static/index/images/ru.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.544Z","timestamp":1781714321544,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/index/images/ru.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 2823\r\nlast-modified: Sat, 18 Sep 2021 13:27:54 GMT\r\netag: \"6145e95a-b07\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2823,"size_decoded":3164,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 47x47, segment length 16, baseline, precision 8, 268x179, components 3","md5":"bf6ba80ad73b1536ca1eaadcf1e6d7ee","sha1":"3655aa6557d155cb171cf75181ff885d7024561e","sha256":"1ba143597a6f749bd4bd2234bf37a6290df1adff1efe8cee9907b7233c6a8b26","sha512":"fb74f5dc8d38d00af7e869a264279a5137b482a65b011f9cdd9d3d3a59acd46fc9913cb9194feff203b147e6ff536af8eab15a16c88c78809df5bf123ef7f1d9","ssdeep":"","tlshash":"be51256eddc17f89db60ae382079a402b2c745ef8d53679c70466e04ee17ab7140ef82","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T18:01:05.929759Z","times_seen":58,"resource_available":false,"data":null}},"time_used":908,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":505,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231008/aaf7be2f2793890779c762f9582d7295.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.568Z","timestamp":1781714321568,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231008/aaf7be2f2793890779c762f9582d7295.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 19764\r\nlast-modified: Sun, 08 Oct 2023 13:31:41 GMT\r\netag: \"6522af3d-4d34\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19764,"size_decoded":20107,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"9cb5ea274c428822002e6229c8ddc2d8","sha1":"2f41196d22a42f757d7b95457fc810c8162c1c83","sha256":"cd69a4ba50ea947353f79f292df38477c11ae8e3f8aa6c55f89172f7bf11fcd0","sha512":"3a342696adeda07f432f5240a93f3536598a9adaa0ccd822a8ff03e7e0ef6d75bf1ab057a91147ef57c6b99f52798bd9a729b17a9def25f39cfc28f3188c6b96","ssdeep":"384:iwWGpxHJ2Ex3qE6/zaUYEzkfRctUuXAm3RwadjRuIn:bWO2hE6/z3LzkfRcthAmwkuIn","tlshash":"b292bf8c9a54c0f4dcadf67711fe0ecd0b5398319aa253d2691ec4ac1ce9fe701496e4","first_seen":"2026-05-26T08:50:30.558865Z","last_seen":"2026-06-17T16:39:53.759077Z","times_seen":9,"resource_available":false,"data":null}},"time_used":2538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":886,"receive":1652,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/form.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:46.364Z","timestamp":1781714326364,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/plugs/layui-v2.5.6/lay/modules/form.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:46 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 03 Aug 2021 08:56:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"610904aa-2577\"\r\nexpires: Thu, 18 Jun 2026 04:38:46 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9591,"size_decoded":4520,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (9284)","md5":"a55a0aaf3d84264e3373f58f347a18fb","sha1":"921760fdababb5639192c73866c1b3b5f2ca0644","sha256":"03315f4a8fa90d66f3115d686bcb50d9356136607f92edbc9c59d4f27090a0f3","sha512":"7295dd0874606a2605b16a49ca696bfe305e16d769a7d037cfba0e074591e4def8dea94e4157cbd7c52e85e8de4ae496155c0af6d21b00943ba04ab6164edc13","ssdeep":"192:7U7m+EjWnSTmyANS4B7R6EoHv9w5iaHe16GL:7U7msqmHBV6LP9yiaH6n","tlshash":"1312a319715135e2367b60a1405f981ba0bf4635ab09c8947093d4f92ebec9493f3faf","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.956136Z","times_seen":112,"resource_available":true,"data":null}},"time_used":189,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210903/2e14ef300eb04ae7152f17bae563ea0c.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.575Z","timestamp":1781714321575,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210903/2e14ef300eb04ae7152f17bae563ea0c.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 34526\r\nlast-modified: Sun, 05 Mar 2023 08:43:50 GMT\r\netag: \"64045646-86de\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34526,"size_decoded":34869,"mime_type":"image/png","magic":"PNG image data, 489 x 510, 8-bit/color RGBA, non-interlaced","md5":"3824c957aedd596398faf70639d228ed","sha1":"0f2876350b3676c6db04855898895ccfb5f3d1a0","sha256":"a53fbfa102b6f2f57c203e3d26c0652fc1b77c35a42a5183231163c5f47cac49","sha512":"5e0cd9fdc6ed03699f1b70efd4f65150252f456d62ee407a44262da3ad123bbb0bb6cd0b7200a43f35a007db659611d81eb7328a4a11c58b9ce0023127636398","ssdeep":"768:ihQPhiUPe2aQ87s6AASsz5cZrhLYBIXcp05sWIDcmf28:iBUP1aQ8/5cHY8cp0xIXO8","tlshash":"71f2d066c5e41c4b8d4a918241cf44e0c91b7783da2c8fd7be0a7ac76de9d3515ba308","first_seen":"2024-08-20T10:15:14.350734Z","last_seen":"2026-06-17T16:39:53.801012Z","times_seen":26,"resource_available":false,"data":null}},"time_used":2936,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":880,"receive":2056,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20230807/bd7879fca0b308b18be8752af7b924fa.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.597Z","timestamp":1781714321597,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20230807/bd7879fca0b308b18be8752af7b924fa.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 6262\r\nlast-modified: Mon, 07 Aug 2023 04:29:15 GMT\r\netag: \"64d0731b-1876\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6262,"size_decoded":6604,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"3995dda1d5ba80db7cd32dabec383ed2","sha1":"63b9047fcd22cf8e135331eb406cbd4829779490","sha256":"1c9a8c54dd8ea7a179aef54270fd61c49f20552cae14df5e82d00c93dc41ff24","sha512":"5df53b80bf18f3cdb9654fa4d8f65084074c5a0dbf223f019c597fa995db4bc6d2d84a542c401ebc1c4803ebcb57c4567d18d8f1a235c5e0a306c46de6be69be","ssdeep":"96:kWcxhlTyi9iNyWySkFgrFHSY2cXMXYQxI3zcH+VizVZJKUHzL1nK4R9l0V6:kTGiwNByNKFX74qQeVYVRf1x9ly6","tlshash":"74d19fac89cf561b4d2b6648426b843337c7113bc6455a118aaeadfdf60bc4046d358f","first_seen":"2023-11-22T12:11:16Z","last_seen":"2026-06-17T16:39:53.742253Z","times_seen":137,"resource_available":false,"data":null}},"time_used":3979,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":860,"receive":3119,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/bar-right.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.598Z","timestamp":1781714325598,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/bar-right.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/static/mobile/css/mobile.css?v=178171432121\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: image/png\r\ncontent-length: 2064\r\nlast-modified: Fri, 10 Mar 2023 01:41:18 GMT\r\netag: \"640a8abe-810\"\r\nexpires: Fri, 17 Jul 2026 16:38:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2064,"size_decoded":2405,"mime_type":"image/png","magic":"PNG image data, 210 x 16, 8-bit/color RGBA, non-interlaced","md5":"6d506e21ad1a31db63ac286259d8f5bc","sha1":"6ddca17c5680b11eb52c2c21fdbead826b5112e5","sha256":"da85579c28fbeb70f1bf970210cfb2f8026574f3530ff6e452921b1df0e9f2b3","sha512":"d7cf62f82c6dfa2ddab288e85dc1858336ff238b6860434c9660ec7dbe6372eaf6db94187abc36d66806bd0aff77e3ad4b8d501e72825a1326e4d7d99a6bba0c","ssdeep":"","tlshash":"0441810bf9457d112a4dfb066af790676b2387d09a81a5c6bcd95d07acb20fccc0c2ca","first_seen":"2025-02-26T18:00:22.731167Z","last_seen":"2026-06-17T18:01:05.902435Z","times_seen":35,"resource_available":false,"data":null}},"time_used":530,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/img/home_ai.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.561Z","timestamp":1781714321561,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/img/home_ai.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 71714\r\nlast-modified: Mon, 07 Aug 2023 14:14:27 GMT\r\netag: \"64d0fc43-11822\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":71714,"size_decoded":72058,"mime_type":"image/png","magic":"PNG image data, 1812 x 1416, 8-bit colormap, non-interlaced","md5":"28bce220642938bda0b1f1ceeed917b6","sha1":"f410cb905315be47ccf2a253a33a06364baf61bf","sha256":"36cdf7bfdc67ddbad9fc935951170c25f8ed46af03abea5165680fecfc45f84e","sha512":"7de3aa48b67b4dd1b02dc05fa43ceac4eefac3fe791d0cd3feb952312a4e94cb4cbe0f880e98190b7130fae81eb63fdde6202813651dd11626fc361fe04f0c9e","ssdeep":"1536:GsAF8yM/DHE2T/MQp5lwOKCAhlbWbbX4HROUnAaeMGZMake:GbF8fVoSabWYYaAGGhke","tlshash":"5663f17a80196dd0f64227b10cf85405f5aa4683b6838fdd0bba1693df276cc872394b","first_seen":"2025-03-15T23:28:02.074885Z","last_seen":"2026-06-17T16:39:53.819379Z","times_seen":12,"resource_available":false,"data":null}},"time_used":4199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":893,"receive":3306,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/6d28f71484aaa8396aa81afc44a5040b.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.594Z","timestamp":1781714321594,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/6d28f71484aaa8396aa81afc44a5040b.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 6078\r\nlast-modified: Wed, 08 Sep 2021 13:43:24 GMT\r\netag: \"6138bdfc-17be\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6078,"size_decoded":6420,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"f59be5c92fd713e4563ce3960a08bb25","sha1":"2c3f91962f03e10378a8cdfba1e86697fc1267f6","sha256":"2deb48b990b5a8e3374f242f4f7fb5e66ae9b33f77ac718c13b940eb84565d84","sha512":"c99f9c03e90cde62d126ec3828182b69768a95c9ae69e625f1c5389ad8437c7eef713d76d1f313c3d3c16db18e7412c4474daa729bab5fb77f32455a083b35e3","ssdeep":"96:kU095GoMuxICKue9fv7+bUFlzgdIP+nmT23sXI//mwRNvw1dMSxaSkMm7Iiz4OF9:z095hMuSCKXfSQFlzg5nmT+/eVLMS0Sm","tlshash":"4fc18ef2ef5e83b8093577c5a43cc90abc327132e812475a6457443f16965cefaa1584","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.770179Z","times_seen":54,"resource_available":false,"data":null}},"time_used":3799,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":863,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/lib/font-awesome-4.7.0/css/font-awesome.min.css?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.477Z","timestamp":1781714321477,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/lib/font-awesome-4.7.0/css/font-awesome.min.css?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 17 Aug 2021 08:01:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"611b6cbe-7918\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31000,"size_decoded":8151,"mime_type":"text/css","magic":"ASCII text, with very long lines (30837)","md5":"269550530cc127b6aa5a35925a7de6ce","sha1":"512c7d79033e3028a9be61b540cf1a6870c896f8","sha256":"799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd","sha512":"49f4e24e55fa924faa8ad7debe5ffb2e26d439e25696df6b6f20e7f766b50ea58ec3dbd61b6305a1acacd2c80e6e659accee4140f885b9c9e71008e9001fbf4b","ssdeep":"384:wHu5yWeTUKW+KlkJ5de2UYDyVfwYUas2l8yQ/8dwmaU8G:wwlr+Klk3Yi+fwYUf2l8yQ/e9vf","tlshash":"78d241e8e54c01d66731c48bff81b36862b6fb3dd5854da9f01f290c29d226522c5fba","first_seen":"2023-04-05T03:13:25Z","last_seen":"2026-06-18T07:32:30.424332Z","times_seen":287312,"resource_available":false,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/259232d0bde771fc930bef7532f3e086.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.590Z","timestamp":1781714321590,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/259232d0bde771fc930bef7532f3e086.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 3324\r\nlast-modified: Wed, 08 Sep 2021 13:32:38 GMT\r\netag: \"6138bb76-cfc\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3324,"size_decoded":3665,"mime_type":"image/png","magic":"PNG image data, 238 x 250, 8-bit colormap, non-interlaced","md5":"30724277cb16d714c2634075aa6149db","sha1":"93a46b50196b0f53c065a0ee26e97807815d182b","sha256":"39d5f84e3ca9a8f532d434a27be910e40ceb526bd86ef08e1b7017ba846370c7","sha512":"eb3da0d961dad39e8b0bfa7814efaca012ef560e1b3c1f9764f99b69979b592d3a40a1c98b6834f02ba6177ce328e386a131bfd7552da43ad8d15c1c536e910d","ssdeep":"","tlshash":"a0614bc3986822bc8784a4563418e6bce8d4f8d373e8ee760b8bd9556138083d1d8e5d","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T16:39:53.795854Z","times_seen":53,"resource_available":false,"data":null}},"time_used":3802,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":866,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/layui/css/layui.css?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.470Z","timestamp":1781714321470,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/layui/css/layui.css?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 18 Nov 2021 07:39:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61960328-1224e\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":74318,"size_decoded":16916,"mime_type":"text/css","magic":"ASCII text, with very long lines (65504)","md5":"6490be49e910a3e2ccac0cd63ac5be57","sha1":"bc1b9e3070e5e051a9132a27f9a5ac494d4ded1e","sha256":"4d891687db5cd12b3f5fb777a151efcdc0a94bae9e4231d719d0b3f7716f8f2b","sha512":"09083b4fd7802d880b94aa6fe674f8c5ec5b7fb63b550251fa2ae04b622d6164e1551998e4d7c8aaa152e303da70b9dce2c94747655a32b7000fbad8c11efc9b","ssdeep":"768:4/nEWwcY/8zYbRzycl81JpZlwyQaIYKsR3zdVhlu9Tr1BpRBtfKa6G6nr4wdV7np:tWwcY/8fG68wjHmavq8","tlshash":"59739632e6012ca5762bd215b1dcbdfda0789512ea634e6df3823b1b87848471077f6b","first_seen":"2023-09-23T10:36:02Z","last_seen":"2026-06-17T18:01:05.925869Z","times_seen":43,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/user_withdraw.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.552Z","timestamp":1781714321552,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/user_withdraw.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 501\r\nlast-modified: Sun, 19 Feb 2023 16:38:46 GMT\r\netag: \"63f25096-1f5\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":501,"size_decoded":841,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"bd3e92965ba7cbf7eeb81c4dab73632a","sha1":"3fbc1882fbcaf51e8dcec54c16272cb8676dc545","sha256":"b0af5a11a40065971fcf2450e55d329970471bb1c65ba33c3aede1306027adc4","sha512":"9177a37b060423156841b3f4541fba27a9dd678645ccf3078155e92852e5de23d77d239f4903919d92add9dbd37596fa63144643b4b9d94341d7e36af6fffc2c","ssdeep":"","tlshash":"96f05c83bb38bc73ccc09f304cf61ed3c27643e08b6186490e21ee38b008aa0a0e0705","first_seen":"2025-02-26T18:00:22.713677Z","last_seen":"2026-06-17T17:53:17.720678Z","times_seen":39,"resource_available":false,"data":null}},"time_used":901,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":498,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231008/0a40dde3f3291c6d9ddd1597159ef46c.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.563Z","timestamp":1781714321563,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231008/0a40dde3f3291c6d9ddd1597159ef46c.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 72764\r\nlast-modified: Sun, 08 Oct 2023 13:27:59 GMT\r\netag: \"6522ae5f-11c3c\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":72764,"size_decoded":73108,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"97a4d4daef1131fecf41b529e2a41f17","sha1":"6b86d06335cbc0ccac5606e1c7eeb4ca96115c96","sha256":"b0c07aa02304e3cfc03149d1f6f08a067f6b58f850b955d9f5b4f62923651967","sha512":"fc3a5033d9ff75c457b263a973a2d86c4c2398dc43562559cc01431b72660acac6dca70a106c659ca7a9dc6d47af415c9174b8dbfeff026a46d750a371a4a0e5","ssdeep":"1536:iArzlOvWiUkuHyw7nFN1bp8OLPHeYdXabqTKKtJYQSOL:i7vW39HysFNBp8/YdX20YQSOL","tlshash":"2763024841afeaf5c1c4f5edfb788c234309b2170660b569da645c9c67e08b18e9cdea","first_seen":"2026-05-26T08:50:30.608811Z","last_seen":"2026-06-17T16:39:53.745421Z","times_seen":9,"resource_available":false,"data":null}},"time_used":4197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":891,"receive":3306,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/slider.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:46.535Z","timestamp":1781714326535,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/plugs/layui-v2.5.6/lay/modules/slider.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:46 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 29 Aug 2021 07:25:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"612b365e-1bb3\"\r\nexpires: Thu, 18 Jun 2026 04:38:46 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7091,"size_decoded":3034,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6929)","md5":"6c35742db2e72cd4f30cefa23690ecf5","sha1":"b50d4268f547cefd984c069d276c956feef395e8","sha256":"2fdaaa9935b2d19fb54e0798e6e42fc3528d1b2772b46b9aa8731b1ab6947609","sha512":"44d0ab3649b35cec891738e6eb4f28d1857fcb900e2369b9395ea54854717108268c8ce729591923fb094cfe1b34dc0f9b2e9bf35b17b77f34c479ef80deb391","ssdeep":"192:z8Syuw2bmz0DLKypMjYXVp5D8IlM/eq9zwtyd4UduKN:z1yuw2UOPSBMj8/","tlshash":"53e19615314ab5732172c263b59fc84eb2f20779b303c564a6a540a51ebece82b37f63","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.918842Z","times_seen":116,"resource_available":true,"data":null}},"time_used":184,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/lang/en-us.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.489Z","timestamp":1781714321489,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/lang/en-us.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 970\r\nlast-modified: Thu, 16 Sep 2021 03:33:42 GMT\r\netag: \"6142bb16-3ca\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":970,"size_decoded":1321,"mime_type":"application/javascript","magic":"ASCII text","md5":"26fd80f238136ab70ac2545308240972","sha1":"9c53209dece13d2ea508801018e17a48ab20ec52","sha256":"4bc90ecaf4541f9f71e04744f90b02ec404ddb22aab1dac753d96e171e1c1185","sha512":"efb3db97c63e2cd7d447f8337e3b29c7cf369b261eadab75aa887d196feb57c4e44d0f1f2a96fb82190673acddb1c8735221617f1d6d1e4c119dbf4b5c0cd10d","ssdeep":"","tlshash":"87115c55520c9494050694cb76a716c5df8540770981768ab7dd81dc7f8bc2be2f7189","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T18:01:05.911242Z","times_seen":115,"resource_available":true,"data":null}},"time_used":558,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":558,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/script.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.511Z","timestamp":1781714321511,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/script.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 03 Sep 2021 08:35:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6131de5a-10bd\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4285,"size_decoded":2002,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"7bd8dbda74fc465ae66adcc739addd22","sha1":"9a7cdadeeec394ca68f30ceeb4cd0a5a807008eb","sha256":"816e4ac149a00e91f7dcab8e6494abac7ea31f15d0ac667e117e48308eda79a8","sha512":"37a2fcb6dca3612a35d314448726fe71334d342fa9b9cf491e90ab13920b8cdfae8db3d5d333320e13c277e3e958b94f6367711132f2ba544926f5d981b7e47c","ssdeep":"96:z9+ApqIu5jK5j6bYVslqc6v1SYs23vh831GhMxCrXH/H:5+AgIejqj6Ev1js23vh831GhECX/H","tlshash":"cc9163a87156362d83f233744cfe4425dc3ed665460b8960f0a1b9942d7463e4eebecd","first_seen":"2023-09-23T10:36:02Z","last_seen":"2026-06-17T16:39:53.775216Z","times_seen":17,"resource_available":true,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/notice_1.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.558Z","timestamp":1781714321558,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/notice_1.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 2123\r\nlast-modified: Sat, 11 Mar 2023 15:48:50 GMT\r\netag: \"640ca2e2-84b\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2123,"size_decoded":2464,"mime_type":"image/png","magic":"PNG image data, 29 x 26, 8-bit/color RGBA, non-interlaced","md5":"3d33a2acc4a695c388156dfb3b17a2bf","sha1":"17a540d26242e1fef6f9f5bd868d83f219009341","sha256":"9425f5977651d844092cb3dea8a101a38430bc8230e2dda6395bb653b75e2741","sha512":"a1c0d67fcf5f1474de1b3c331e13d3a078047b25240ef484242cf964a359ead14610967576ca8c7ed109b196447def6bf58d5139627e1916e0bb63266f254a2e","ssdeep":"","tlshash":"0a41e949fa90bc415848f686fde1b1a716178ac4de92d880aceb881b68711f9cd0d8db","first_seen":"2025-02-26T18:00:22.732052Z","last_seen":"2026-06-17T18:01:05.920652Z","times_seen":37,"resource_available":false,"data":null}},"time_used":1633,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":896,"receive":737,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/css/dark.css?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.485Z","timestamp":1781714321485,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/css/dark.css?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 30 Aug 2023 17:33:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64ef7d62-1edf\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7903,"size_decoded":2856,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"ce82aa4c31d9ff7191be2b07ae8ef3fd","sha1":"dea5e2fb05e45542dc80177b3de48b64242d6228","sha256":"0fc057a2c03734f655f8c2cdc3370237f34b0d1063b60d718d1e2bb26594c8b9","sha512":"ef4f63a37ecfd622b55e4706ec26c72b420e21b18fb7ca5d37a3abd4dedc5412dbdc0083348aa53b8b65c805cfd76f9f628caf86cbb2836f522b3143c0baccb0","ssdeep":"96:66pDT4IZ1yGvPxckf674TwGtRh47H2lXHBUAXHxmCrWs+Xozh6/KkY:6QH7ZTo74btRh4b2lXHBUAXHxbrZ+OMO","tlshash":"8ef14113e25b2c8b3113c0f55a2ea371a73c9127980e1f7dba55b0b66fc18e194b6d53","first_seen":"2023-09-23T10:36:02Z","last_seen":"2026-06-17T16:39:53.748928Z","times_seen":11,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/jquery.cookies.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.521Z","timestamp":1781714321521,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/jquery.cookies.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 10 Jun 2021 06:32:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60c1b1ea-c43\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3139,"size_decoded":1797,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"de952eda41b0edc0b5c416ee48f7028e","sha1":"dc07de882ab68370534fbf9440ac7b8c068695a7","sha256":"631ea2bc942c1791920270ba02eef37774aa10db3994b4936a2b5f891a970ff7","sha512":"674fd3c9db480ecf8680822131fc80f904ddfb3907a1033ae9ce06019a87ac6f9eb6d6535e6aba0ee0b601d039d55da7e7cd247a67db5cf7bbcb8408116a03d1","ssdeep":"","tlshash":"1b516554b6cc375f07ab22416b6f50aca63cbf72255808dc885965f82c60c37db9bd2a","first_seen":"2023-03-07T12:09:28Z","last_seen":"2026-06-18T06:56:59.942573Z","times_seen":2842,"resource_available":true,"data":null}},"time_used":527,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":527,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/layer_mobile/need/layer_mobile.css?2.0","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.527Z","timestamp":1781714325527,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/layer_mobile/need/layer_mobile.css?2.0 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":279,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-18T07:31:10.69243Z","times_seen":528104,"resource_available":true,"data":null}},"time_used":600,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/css/modules/layer/default/layer.css?v=3.1.1","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:46.331Z","timestamp":1781714326331,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/plugs/layui-v2.5.6/css/modules/layer/default/layer.css?v=3.1.1 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:46 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 31 May 2021 05:44:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60b477be-3859\"\r\nexpires: Thu, 18 Jun 2026 04:38:46 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14425,"size_decoded":3613,"mime_type":"text/css","magic":"ASCII text, with very long lines (14368)","md5":"cdf467c11d77287b09cec22297aa06b2","sha1":"57e147ee3cf8a1ea2194bdfbad5e69083fa578bd","sha256":"ba2baf1bb08b0bff57cce75934bab7768c52567bf389479bed787004ae6e653b","sha512":"9c24a7c4d5d151652e246375c42f4ef2eb29a33dd9b4bad8c19ac2dd52086db91988d0f87c5d547f377499649f02e6ac4dbe4ee7a06d8a65cb2b445482104ab5","ssdeep":"96:Jp+Ntha8qNEp+wRY1vUPXiK6nMLPD2OtLzXyPHL/LztJDzyv2OQ7KGx1jyd2/SWz:KWmLr2OtSrzzt42OQ7KGx1jCWR2b+RcU","tlshash":"f55231e144811299b0278721d6dc7eba32f88d43e5630daef2573c1f874c6dba2b6647","first_seen":"2023-04-16T09:58:27Z","last_seen":"2026-06-17T18:01:05.898546Z","times_seen":591,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/web3.min.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.496Z","timestamp":1781714321496,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/web3.min.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 21 Apr 2023 06:09:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"644228a2-152100\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1384704,"size_decoded":438082,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (43607)","md5":"3dc3d8cf48a40af775c23b6e13e80fb6","sha1":"81c654f0d85665cf39e5b6358db7fc4c659cbcc9","sha256":"7ca86cf23873b463ae5620892d2bf3f7adc23e74754bf3b97edb5b9a9a26ba0d","sha512":"97d0e32150fe2f71b9a8a74f5df2cb7ec7c2e052f599a50dce6f6cd0af342a941e95410f813a8baa2034b9deca27e650ff67cc06291e4b333d1956e06d816ff9","ssdeep":"6144:dGTpkXGg97WCcHlzHGIXBzBkLxDVmNiS9KQqDNX4Y6eW0BQXOJ4DXt/KLO:QZoQjxAO","tlshash":"9f25a6c4b6507051c3a56e90442f900ae33efd693c4e0169fb57ecf76cb8a89552af3a","first_seen":"2025-09-06T18:04:03.23715Z","last_seen":"2026-06-17T16:39:53.789095Z","times_seen":23,"resource_available":false,"data":null}},"time_used":552,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":552,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/index/images/de.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.546Z","timestamp":1781714321546,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/index/images/de.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 154\r\nlast-modified: Sun, 04 Dec 2022 20:43:40 GMT\r\netag: \"638d067c-9a\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":154,"size_decoded":493,"mime_type":"image/png","magic":"PNG image data, 92 x 92, 8-bit colormap, non-interlaced","md5":"72a365a37b672f5a20da4f8f0880e857","sha1":"1d395668bd5404aa8b26e4d9586d1129798e5f21","sha256":"3da97ff56eb98940e046126ce7c727856df8722c833128141d15c640013675e6","sha512":"7b828444c21dcb95b151bca6b8d30a8466dee73019ec8096d04f85ebcacd6131480c2cf83885559d251be96da019f74a84260109760d3dc57643624281eea934","ssdeep":"","tlshash":"f1c08caeea8928a4c34aa1b21b781c349907a17ac1a49222a085981c1d1a1281486aa3","first_seen":"2024-08-20T10:15:14.338399Z","last_seen":"2026-06-17T18:01:05.91647Z","times_seen":55,"resource_available":false,"data":null}},"time_used":906,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":503,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/chat_ico2.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.559Z","timestamp":1781714321559,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/chat_ico2.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 7744\r\nlast-modified: Mon, 07 Aug 2023 15:40:31 GMT\r\netag: \"64d1106f-1e40\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7744,"size_decoded":8086,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"1338dfab4c0aab2c2f386bc5be278909","sha1":"bb6b46f7bf9e824d49c44d5d7697259829f7f49d","sha256":"8d768bbbf1390cb185c953a00a70793072cb6d376f5ca1bb0ffc66161cce7470","sha512":"adf4072b34dfa89a2966ccf4810bb291feaf94676cbe814ef2b5915fa6224a2aa15301167ed8e6d1bf85f41b02491255f36ab1202f1de5bf184b92b432cd3ed9","ssdeep":"192:AWARjpYt26dimKFMcupC3HPjDfMVvwPrY0Y1z7lsUufqzPvDC4v:AWYdYpbmn9HXMqTXElsC7v","tlshash":"08f18f93130234a6e18ee6bcc49ff6d2088b93bbcf7645d5435d96447e680b2f53488a","first_seen":"2025-03-15T17:54:55.56617Z","last_seen":"2026-06-17T16:39:53.803668Z","times_seen":19,"resource_available":false,"data":null}},"time_used":1639,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":895,"receive":744,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210903/4d23f281f001c087951c9c57d80dd92b.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.579Z","timestamp":1781714321579,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210903/4d23f281f001c087951c9c57d80dd92b.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 7932\r\nlast-modified: Fri, 03 Sep 2021 08:42:52 GMT\r\netag: \"6131e00c-1efc\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7932,"size_decoded":8274,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit colormap, non-interlaced","md5":"954ec3d9ebe1b76f4741eb6b1af54a7e","sha1":"add6dd8bbe3612b99b2931b518f9a14f8e981c36","sha256":"f073eabacf9aae474525dd0f2176e1dbe8ee8af799188aea2c1b4f5390f0ddb7","sha512":"4afc07a6c9995d1ca94beef54dcb825e1fa9a5e1639c5eb47207b6b6a23fe800bd2f481d725ce14fa69322da6caa8ceb6afde467fad19288d9665f7e4b34a388","ssdeep":"192:vIbwMz78FJPQGDYUc55peHqPt2XWB79k0goLp5JWf:gbwMzonPQ8e7EU7dfJ0","tlshash":"d8f1b01acacec79bcb19c072f2c5f61ddf5a04581c054784da59cf16077fe9c29a864a","first_seen":"2023-05-04T02:59:55Z","last_seen":"2026-06-17T17:27:25.609314Z","times_seen":174,"resource_available":false,"data":null}},"time_used":3079,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":877,"receive":2202,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/48e303e31b11578b9b228243c6e2f8f7.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.587Z","timestamp":1781714321587,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/48e303e31b11578b9b228243c6e2f8f7.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 5075\r\nlast-modified: Wed, 08 Sep 2021 13:24:54 GMT\r\netag: \"6138b9a6-13d3\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5075,"size_decoded":5417,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"637141ec9008e3829c06808e7aa42dbb","sha1":"2a21bb4ef148b775625109917cf62514f7b12800","sha256":"d52371b6eefab5bf34e7905295bbeecca542d5d4d30808d844827ebee237c03c","sha512":"b0d8d8d950c8e5054bf70c2f2eca8bb1f1078686799f01e590bad715d8ba9d6a6cb525c542554589c2418f941b3b3b4333f395eda8dff12db1a14a84d9bc7b83","ssdeep":"96:snrT20Ll0w9mDbILjuBfboPx8NjvsqAxHlAzxfZjanQA:snrTTmwibAjKoPx8NMxqzxfN6D","tlshash":"a8a19ff2f57c628d5058980b7d94ec79e1f09133522e6873a76463214428bd1e57bec8","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T16:39:53.825263Z","times_seen":54,"resource_available":false,"data":null}},"time_used":3630,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":869,"receive":2761,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/layui/font/iconfont.woff2?v=256","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.631Z","timestamp":1781714325631,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/layui/font/iconfont.woff2?v=256 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/static/mobile/layui/css/layui.css?v=1781714321\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 25964\r\nlast-modified: Tue, 17 Aug 2021 08:01:00 GMT\r\netag: \"611b6cbc-656c\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25964,"size_decoded":26236,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25964, version 1.0","md5":"d8c214c89e33a7bea93d656bd865e869","sha1":"c188dbfc6951b7c305940ac3a279227aeb5617f4","sha256":"bef73f87b8a3972427dcece922ed8f59d1d01c4a3fd572316efa70de9aec9c09","sha512":"0e5897c1b874a714fbab221e97717c5bd8b6c525b539a24eca76391206f931abf5cad2441743c441239ca2830f3fb33c34d207e13ee4d1eb3eeba806763f8405","ssdeep":"768:4kZIXl8feK5HavVh7VQB+l9yDbzKu1eNxECo:4kZIV8fqxQB+l03zdeNq3","tlshash":"fbc2e1c340bb8ab8b077783c6a9e96b9d51134261dde919427cc096043feb49eace701","first_seen":"2023-04-14T13:17:16Z","last_seen":"2026-06-17T18:01:05.950714Z","times_seen":1006,"resource_available":false,"data":null}},"time_used":497,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":489,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T16:38:40.130Z","timestamp":1781714320130,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:40 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: /mobile\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T07:31:18.139418Z","times_seen":16505664,"resource_available":true,"data":null}},"time_used":769,"timings":{"blocked":-1,"dns":10,"connect":184,"send":0,"wait":204,"receive":0,"ssl":371},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/index/index.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.519Z","timestamp":1781714321519,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/index/index.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 25 Aug 2021 08:26:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6125feaa-1211\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4625,"size_decoded":2054,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"0dcd53515a6992b2222ee4d9f4a3e682","sha1":"0aa981db906694ccb7650bd5defc855bf01a2f18","sha256":"4cf6b72d4faa38b5a6d0500c798cdabeb6a4f241d34d0612bbc6c328773cdca0","sha512":"795e3c8e0b69f8875b02c8ab820c1eadea220864ae64192e419ef354898b01684fbc71b54a49bbbd344e5bb090c96999459eb5df90e5be998791a2072b5509f9","ssdeep":"48:4NHsJYS7AEGyUjmHAuEZBnZBJOt9dxGiKsu5RtpmJpZzPDvuli+hIg:mHsJ/oQARZJZTADoPtpI3v4ikIg","tlshash":"88915606e4e314536e23909a8feb4005a1adc033d20acc4dbb9ed69e2f5c9ac5555ede","first_seen":"2025-02-26T18:00:22.704148Z","last_seen":"2026-06-17T18:01:05.922215Z","times_seen":37,"resource_available":true,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/topuser.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.536Z","timestamp":1781714321536,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/topuser.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 1358\r\nlast-modified: Thu, 09 Mar 2023 06:21:50 GMT\r\netag: \"64097afe-54e\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1358,"size_decoded":1699,"mime_type":"image/png","magic":"PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced","md5":"798ee5b7c48089f973d2334698f394c3","sha1":"e33c49825cb86f1454b47790559731f1a4dacc5f","sha256":"76a3cebb81c441ab872f0649c21e064e0ceb32dad5a6500b9ec8342b5fdf3bbf","sha512":"adcf452d696b6ee76422020052a7c1ffd7b15914e292afc32c2fee0cbee6c438ec69936cd990bc7efabba6f5e5d8997e9dab66ed9faf894c0e5c71dd2be40546","ssdeep":"","tlshash":"5621834ce9c1a981446a658778e76023991a4c40a6e0e09b6cfbc0af08914f4d56b89f","first_seen":"2025-02-26T18:00:22.732774Z","last_seen":"2026-06-17T17:53:17.677309Z","times_seen":32,"resource_available":false,"data":null}},"time_used":915,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":512,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231009/990a2e209de5688ddc85055820e5cc45.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.596Z","timestamp":1781714321596,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231009/990a2e209de5688ddc85055820e5cc45.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 192992\r\nlast-modified: Mon, 09 Oct 2023 04:22:55 GMT\r\netag: \"6523801f-2f1e0\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":192992,"size_decoded":193337,"mime_type":"image/png","magic":"PNG image data, 441 x 389, 8-bit/color RGB, non-interlaced","md5":"92f372e779a09fd34d41d9d18f9c447b","sha1":"202e51a0311583f4c6b07ae19813c2e851ee1f51","sha256":"bfdb5f8a1ab188da7e3daa745402f5e4e8e0d9955a9b5ea520b4c38ef00048b8","sha512":"e94551f725ae9616101e9d4076f9ecc90379f6959e7b032ab21e708ab7e28b04500747c279a75964b52d63c0b33ba79cfb428f32eb1c93d94a4c735273db7c36","ssdeep":"3072:bbmu1JjkPZ5A0Fhy1JGDfuVGyh/T8XVbZ6IAU7g2DmYs+Ixss8/Nbm+yhbBXL8Za:bbmu+Z5BF0JG9yBT2xZ6IDUcY+IxsPY3","tlshash":"851422c168aa1e7c861124c05f10f5ed3cb5642af0daef23d9b9e6f0f0966a34d9505a","first_seen":"2026-05-26T08:50:30.619619Z","last_seen":"2026-06-17T16:39:53.778037Z","times_seen":9,"resource_available":false,"data":null}},"time_used":4531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":861,"receive":3670,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/clipboard.min.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.513Z","timestamp":1781714321513,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/clipboard.min.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Aug 2021 08:01:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"611b6cbc-2780\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10112,"size_decoded":3964,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10002)","md5":"aa7c9d74f567a8877522f816d7c387cc","sha1":"d79bfe29e732477cb27598dedff9495ddc05f390","sha256":"6717dbf025d81f537cc639903fb560e01912c0467e8da579fcdf92c6f58f7a65","sha512":"da4a20fae935b42cb957a322479c0e779835b37291c6ac8cb41f300dde796847897f788e849ff6153a32004cff087615d37f9f2cb8aa5751cdb1b8bab2534b16","ssdeep":"192:q0Z14dOk1XSHkKpI/230xlH3G4Ly9+vxo53CoD87JxKllkvc363Pw/3JyUZu5MpL:HZCQfI/wsXCz3rbllC3P83JVu5/Gz","tlshash":"6122a68cb29071b156eb50ba802f420fb271c42db06e40a8b21de8f56c7de9d4627f3d","first_seen":"2023-04-08T01:19:22Z","last_seen":"2026-06-17T18:01:05.90943Z","times_seen":2201,"resource_available":true,"data":null}},"time_used":536,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":536,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/earth.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.538Z","timestamp":1781714321538,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/earth.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 631\r\nlast-modified: Sun, 19 Feb 2023 16:24:56 GMT\r\netag: \"63f24d58-277\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":631,"size_decoded":971,"mime_type":"image/png","magic":"PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced","md5":"364a83017bdcf5096652b1dc7d6c54a2","sha1":"241ac64fb0e4db0e2c1a554ce129b5d897a5683d","sha256":"8d4eefec090b8fdd600a40fbf67273a0f18a1c23af1a83972e8d1da6186f3b1a","sha512":"2af7b18054d07d8376929f2958b31d7747046324c328ab98a7db15ac1b00953d9fd93a1af5215478e4351555f672485411e0989fc191b6e69d64f633c5135fc0","ssdeep":"","tlshash":"40f062f650285f1be018e1b8a11d517bdc1b80b051d098283e2bf8da8a3a90d1196ad2","first_seen":"2023-09-23T10:36:02Z","last_seen":"2026-06-17T17:53:17.715029Z","times_seen":36,"resource_available":false,"data":null}},"time_used":914,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":511,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/ieo_ico.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.554Z","timestamp":1781714321554,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/ieo_ico.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 1245\r\nlast-modified: Sun, 19 Feb 2023 16:24:56 GMT\r\netag: \"63f24d58-4dd\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1245,"size_decoded":1586,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"4b4b5b0dfc201b7dc1897dc5cb23b58d","sha1":"7e54c993639b80b58a934d18ec3d3c21288199c6","sha256":"5d85368fb1eb4d9147df8049f46041299f5dc19dead62fd76b8776b3aa4e0374","sha512":"95c9bccd8356218c674bab31359b475f739c866d1b7226d106247e281f67e81754cebfb13890e6775e91c815eff5d4988647a1231b4465124e88236d58e15d36","ssdeep":"","tlshash":"6821e7b3cf1cfe348f280c2a0b094a5ac16df39d592ab44b6c762e7052110fa2023ac7","first_seen":"2025-02-26T18:00:22.712852Z","last_seen":"2026-06-17T16:39:53.800179Z","times_seen":13,"resource_available":false,"data":null}},"time_used":900,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":496,"receive":404,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231008/533cebfe34585cb0ae4b2c31687ac423.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.567Z","timestamp":1781714321567,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231008/533cebfe34585cb0ae4b2c31687ac423.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 91756\r\nlast-modified: Sun, 08 Oct 2023 14:23:51 GMT\r\netag: \"6522bb77-1666c\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":91756,"size_decoded":92100,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"5db77497d8747a94af406f5affe6d0b3","sha1":"659fe3f5ef315f075ea4cefde7705815a341d33b","sha256":"c0d28d3f63fc8a04a5a33906f62f5c36bab35b870cbe596fcb0a299883177d84","sha512":"498c678ab1c7d1b344d5856a79daeecc25351751722646142b5b05ccf60990997ec0dbaf0395c878663576400f3e663f8113f371f7b3ab68aa2eb50287dc15b7","ssdeep":"1536:tpOseRRMdaizYHbvKyd9g/ec/VNKqt9qddU/xSr3tMcpLkI4gnY7ia9M5G+zVLcR:eVR8aiz6byy0/ha1r3zpLkkn1a9RGVLm","tlshash":"c49302be0031c1c6c5a39b314eee931ac77be18bc542dab9494407da46a9c866ccfc7c","first_seen":"2026-05-26T08:50:30.635828Z","last_seen":"2026-06-17T16:39:53.831159Z","times_seen":9,"resource_available":false,"data":null}},"time_used":4193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":887,"receive":3306,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/315ba4b3a7c32f5dd920eea7dfb1ef7f.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.585Z","timestamp":1781714321585,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/315ba4b3a7c32f5dd920eea7dfb1ef7f.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 7037\r\nlast-modified: Wed, 08 Sep 2021 13:17:36 GMT\r\netag: \"6138b7f0-1b7d\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7037,"size_decoded":7379,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"04579b0e931d4de1eff2108468ad518c","sha1":"3731484ee0b9ab9b0f4fa977f861f6fb6cdec8b2","sha256":"48cc3486a90c7cc75e9b675e62abfc5ac78c17ba81b54f7f1053f569bad73c7c","sha512":"f63b21e39f1e00ec70ffe4d20871a3759f8851ddf22ed7549be613529a3ad33e5deca1b507911d7bb21e4b751d183d21fc87953ad30a56ea5684d8e06ad66121","ssdeep":"192:CrZ3rmpzbvJlngM1TD+g1IqdfzWP76dkFfRyNxOJcU:CtwvDgMNdfzLQR4OiU","tlshash":"4ae18d878101ed88ec2f4722639b0c6d2fde4f9c86059ff199d30b322a49d661008c3b","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T16:39:53.752666Z","times_seen":47,"resource_available":false,"data":null}},"time_used":3624,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":871,"receive":2753,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/iosapp.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.515Z","timestamp":1781714321515,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/iosapp.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Nov 2021 13:32:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61950462-806\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2054,"size_decoded":1247,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CR line terminators","md5":"7c2f59781d7868eff1bed99be0478af8","sha1":"d8bd7c15428c99cdbb38795df05438471953ba6e","sha256":"b16d7795b265d380540612bfed9739a90fb46aade4228c670fc8d17abce9adaf","sha512":"2e979baf0d2f94e91eef9665df48555ab4dcf4e7b8bc149465ec25d9e09a07dd625edf0750a6f9d7e47f64162f8099663c7986c4a4840948b177237581b4ff6b","ssdeep":"","tlshash":"c94132999a9d683919d3b42d1a3fb15c72333aa5a4428110bc0fbf943b34a4a162db98","first_seen":"2023-09-23T10:36:02Z","last_seen":"2026-06-17T18:01:05.921689Z","times_seen":43,"resource_available":true,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/index/d3.v4.min.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.517Z","timestamp":1781714321517,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/index/d3.v4.min.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Aug 2021 08:01:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"611b6cbc-36305\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":221957,"size_decoded":82825,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65471)","md5":"e899651bcf1a3591032d7213daeab171","sha1":"607e02087446eb2efadcbee253db3aca3d794a7b","sha256":"8585db4092b8a9d26201e0d58e343d1b40fa034c4b9c343878923d7649bb1699","sha512":"44927534d0bcf1084deddc29098f2b9bfe8ec48f987503f8f03acb19efde48077e9feb353d7c10924a73cc082825ee1c6455b61802d0a31a31eb5812636c907e","ssdeep":"1536:wJdNAq50g6ds5VIG2pUfpgBU3gPDSb7+CmeoA08h6Vh5Lbg5ECfmDoo5rfIrTGE9:wrN3F2pHSYlyLG1sVAupFmuFyiI7R6","tlshash":"092494ccb682b096936320b0417f244bf33b2d59684f4568e029e9d97c7895e51bbfbc","first_seen":"2023-03-07T21:28:45Z","last_seen":"2026-06-17T18:01:05.952837Z","times_seen":431,"resource_available":true,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231009/4ff1fe59804a52ad9bc809b25f7f8995.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.572Z","timestamp":1781714321572,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231009/4ff1fe59804a52ad9bc809b25f7f8995.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 36978\r\nlast-modified: Mon, 09 Oct 2023 06:54:11 GMT\r\netag: \"6523a393-9072\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":36978,"size_decoded":37321,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"1ba6ff962e3bad5eabce255e9f9c2e01","sha1":"dd74083f128254888fdf7c18f1f804cb1a0a463a","sha256":"52a2883a423107c7276fc5dd32c5d2b804e0ad9cc0062337aac5d2c4107186fb","sha512":"3c8d8a1dddff0baa887aac45dd7e8e84c8c2fbef409fb1ed0e596375423837637a8e23af0c6a9ce4a4b16359c48f26813a14fc7fb84daac8340dfffe762174fc","ssdeep":"768:Z5W11/wEDBa/JKgBSVlNBuVMkAna5G0kzzM8+xsaDF3fXOK3U:Z5opJDkojE5jczz0sUpU","tlshash":"ddf2beaa2d34c1a11f6df02956bd16ce478b953b1ea8b7e0781de45d00d4fa310ed5dc","first_seen":"2026-05-26T08:50:30.509632Z","last_seen":"2026-06-17T16:39:53.79486Z","times_seen":9,"resource_available":false,"data":null}},"time_used":2718,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":882,"receive":1836,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/lib/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.642Z","timestamp":1781714325642,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/lib/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/static/mobile/lib/font-awesome-4.7.0/css/font-awesome.min.css?v=1781714321\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 77160\r\nlast-modified: Tue, 17 Aug 2021 08:01:02 GMT\r\netag: \"611b6cbe-12d68\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":77160,"size_decoded":77433,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 77160, version 4.459","md5":"af7ae505a9eed503f8b8e6982036873e","sha1":"d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c","sha256":"2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe","sha512":"838fefdbc14901f41edf995a78fdac55764cd4912ccb734b8bea4909194582904d8f2afdf2b6c428667912ce4d65681a1044d045d1bc6de2b14113f0315fc892","ssdeep":"1536:/MkbAPfd1vyBKwHz4kco36ZvIaBfRPlajyXUA2jVTc:L0nXnHdfRVEAS2","tlshash":"7d7302e63b6c4943e03d6460708abe9f104b3ab42fe057e5c876db7f2722992b71552c","first_seen":"2023-04-05T03:30:47Z","last_seen":"2026-06-18T07:30:47.346953Z","times_seen":497809,"resource_available":false,"data":null}},"time_used":678,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":668,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/index/images/vn.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.542Z","timestamp":1781714321542,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/index/images/vn.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 9049\r\nlast-modified: Sun, 23 Jul 2023 08:56:10 GMT\r\netag: \"64bceb2a-2359\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9049,"size_decoded":9391,"mime_type":"image/png","magic":"PNG image data, 800 x 533, 8-bit/color RGB, non-interlaced","md5":"45255c9ccaa2aa5fc3742baee93ecfb9","sha1":"7b1eb5e5db500d3e72e488de1724788b638a676b","sha256":"3fa711c64741497358c7ec7cd79a020752246df8dcbec0dfc5aa2be0fee1e1e1","sha512":"89b771ffba7a2755edb4cc534ab7bcc25a37815df90673fac8ef13ec66d5d727a8c8ee35e344d9f594cbb077fc7bc3636b4f43ae81cf56e8fc67c9d4f6e164b9","ssdeep":"192:scI8xibfamfU5b+9VadMmKpD6z5T3mxmAutu1C+XTs3pYb:y8xibymfUlmSMmKpu5TmYAutcC+EpYb","tlshash":"2c122889f8dc1f924a548a369dc4b7b2615b4339068d0e56bc3f0291794a2c7a6ff343","first_seen":"2025-03-15T23:28:02.080267Z","last_seen":"2026-06-17T16:39:53.786497Z","times_seen":12,"resource_available":false,"data":null}},"time_used":910,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":507,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/notice.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.548Z","timestamp":1781714321548,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/notice.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 539\r\nlast-modified: Sun, 19 Feb 2023 16:24:56 GMT\r\netag: \"63f24d58-21b\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":539,"size_decoded":879,"mime_type":"image/png","magic":"PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced","md5":"7891a0219f54f843fd5d8d8a33426825","sha1":"fcd8d245752e3c7c9ce5ab8cf1deb5e1aef29682","sha256":"660da6387b18b407a644cc8586b438d93d5843a3463442cb489c67543cd297b4","sha512":"818d564fe544d35dab7e644dbf67395690fbbb800b480935c20a3582e19b71fea357de54dc5bd4c724e6fc96485b1626b1ece0388e584c9c2aa748d5f9e1ae89","ssdeep":"","tlshash":"d9f075432548513697afa07feae336a1bf26373a7f01c4aabd44c1042f6f1664cd0b29","first_seen":"2025-02-26T18:00:22.730452Z","last_seen":"2026-06-17T17:53:17.706926Z","times_seen":31,"resource_available":false,"data":null}},"time_used":905,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":502,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231008/719056cdf6ba107e87541ad7ce01d5ca.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.570Z","timestamp":1781714321570,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231008/719056cdf6ba107e87541ad7ce01d5ca.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 5645\r\nlast-modified: Sun, 08 Oct 2023 14:17:50 GMT\r\netag: \"6522ba0e-160d\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5645,"size_decoded":5987,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"99d794037b72d8e0288eed7cb2e27a58","sha1":"b39c11a69a7105b394bc3a02253834d184da6f57","sha256":"10410c6567005698f7c84df83f92d2ce053af325f21da75280df1c796538a7bc","sha512":"90ca2141c2f5b131f7daa3b0f80deb717a9560ff4c69a60d3044f7c885ffb4f48c6d2732c02d57d1e7e77405fc462c9c4789777c4ec7d0a08e49014b00f412a5","ssdeep":"96:mSecpXYMx/HM7maeB19DA/wJIQ4d2G7uS+2JAwnL:lDYEU7mD8CIWz2xnL","tlshash":"81c11789eb1108bec1e1cbf610e38d1609a7c9702233538b6f8681ee7d2b7359421ea0","first_seen":"2026-05-26T08:50:30.499028Z","last_seen":"2026-06-17T16:39:53.793497Z","times_seen":9,"resource_available":false,"data":null}},"time_used":2535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":883,"receive":1652,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/bar-left.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.595Z","timestamp":1781714325595,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/bar-left.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/static/mobile/css/mobile.css?v=178171432121\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: image/png\r\ncontent-length: 2041\r\nlast-modified: Fri, 10 Mar 2023 01:41:18 GMT\r\netag: \"640a8abe-7f9\"\r\nexpires: Fri, 17 Jul 2026 16:38:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2041,"size_decoded":2382,"mime_type":"image/png","magic":"PNG image data, 210 x 16, 8-bit/color RGBA, non-interlaced","md5":"3534398517d4c701b134c0b54373012b","sha1":"8059eee19b3eef33d698f232c7986943835978ce","sha256":"2792e2bc2f685e496ea34677dfb172585e80f7c346994836e8a82caefa6638ca","sha512":"39b6e50b92170da611ac8bf6475a996f20b56f964fd9b6dc03ab8d445d5869d9f5c45a8b3c13cff5f3d9e7227cb70a9abc55257b08a4a4dda5d2e6af10632da1","ssdeep":"","tlshash":"2641b389f9519a02350df746b9faa0ab663743c4cac08591bce24b63a0711fccd1c1e7","first_seen":"2025-02-26T18:00:22.72948Z","last_seen":"2026-06-17T18:01:05.953835Z","times_seen":36,"resource_available":false,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/element.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:46.332Z","timestamp":1781714326332,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/plugs/layui-v2.5.6/lay/modules/element.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:46 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 31 May 2021 05:44:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60b477be-1c60\"\r\nexpires: Thu, 18 Jun 2026 04:38:46 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7264,"size_decoded":3110,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (7203)","md5":"784379625afe1516f69075a78007e7bf","sha1":"4eca1e2bd313d46ddcf113095074da797b145aa6","sha256":"763c30063a00b2698ab3aa17948b5008a33d477fd7dfd45f11f3d4a49e29b73c","sha512":"f08d8e5c3c091ca2a0f00109cc55dcf9a7ce055996f1fd2d6cc2f7b414e533c0b8356fb5bd3ec7eea1692e5aa56d2be0465465f60479f3eb2afb783cec3ca87a","ssdeep":"192:nZKp8KKtRtwFC2q6IsTPJB91RGRtX9uEUn0Gs:nZltcF+6IsTP5ONN","tlshash":"bfe19518b05236f73197b5d143bfa21da03f4636e70246ac3066d4ba09bbd891673f9b","first_seen":"2023-03-07T13:00:48Z","last_seen":"2026-06-17T18:01:05.927555Z","times_seen":268,"resource_available":true,"data":null}},"time_used":184,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/icon_night.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.549Z","timestamp":1781714321549,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/icon_night.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 2837\r\nlast-modified: Thu, 09 Mar 2023 06:00:16 GMT\r\netag: \"640975f0-b15\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2837,"size_decoded":3178,"mime_type":"image/png","magic":"PNG image data, 92 x 45, 8-bit/color RGBA, non-interlaced","md5":"992438573332abf8326c5d3beda6cbf5","sha1":"7d1d9f890441fc6f035e81f55bfdec0890e0e085","sha256":"1fd997305fdbb50e6b8c10e34520d0e20fa6c90b37b52eca55d98114597fbcc0","sha512":"3b096ec5d6cfdfb7acdd77bfad48502c0cdbdc2b930c888847e35d22e6353f38fe70b874d9b29eb74930c312bd75a64d3bf036da67c38c79116773c84cb7331d","ssdeep":"","tlshash":"cf514b0adc931c9467a868e755e2817aa8abc450aff0385f98894c3f047a3b64f4f5cd","first_seen":"2025-02-26T18:00:22.734141Z","last_seen":"2026-06-17T17:53:17.693657Z","times_seen":30,"resource_available":false,"data":null}},"time_used":903,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":500,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/layui.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.491Z","timestamp":1781714321491,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/plugs/layui-v2.5.6/layui.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 31 May 2021 05:44:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60b477be-1ce3\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7395,"size_decoded":3631,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (7324)","md5":"055cb5361d0dadf75de67f6875def943","sha1":"97ddce827fedb8869a9d0248a16b70c14da2a8ec","sha256":"91ffac1a9d64f3dae4e8091b4feea25981e750d279cb71491b25dc24b33ecaf2","sha512":"3c074594a667484aa78b2227f834c4bebab07a6b4bd795f94570d3e3da911aa48275e13c54e1c6848cd2ec1fbb2bad5cb104e9a6bc1f71c967e93dfde62aa9b2","ssdeep":"192:TDTGeNtb7/j9Eg3JMunJYJjdlrr1+p8XqlPBOTXLLRUweK:TDTGeNtHj9Eg3JMunOJjdlP1+K6Pw7Lz","tlshash":"c7e1a898b5b27452473b306572af901ea67b44ad284c8090d1ced9e63cb6cbe4377f9c","first_seen":"2023-03-07T01:06:15Z","last_seen":"2026-06-17T18:01:05.895657Z","times_seen":541,"resource_available":true,"data":null}},"time_used":556,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":556,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/i5scroll.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.525Z","timestamp":1781714321525,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/i5scroll.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 25 Aug 2021 06:40:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6125e5d2-6f3\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1779,"size_decoded":1301,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (762)","md5":"229ae241044a0a16861b8583b4435079","sha1":"8051376b7ff4f9eb4c40389985ceed910bd8a868","sha256":"00323fb404aa8d1151ba1d3842ace6e1b7dfd723faa7b0402c20bcbd7d93e59a","sha512":"edafd940bd292208de80d57343ef7dba5360bc21f5dd691f24b13d167b15b3f5529bae2735c1d2c67fb23de10ea4b907f7adf371db7d150724a2ee5d1ef82cc5","ssdeep":"","tlshash":"cc3167c47000b636859620b271ab56d9f3398ad7346d881174beb189bd1cdb50d2fda4","first_seen":"2025-02-26T18:00:22.707066Z","last_seen":"2026-06-17T18:01:05.953387Z","times_seen":37,"resource_available":true,"data":null}},"time_used":524,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":524,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/invite_ico.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.553Z","timestamp":1781714321553,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/invite_ico.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 1295\r\nlast-modified: Sun, 19 Feb 2023 16:24:56 GMT\r\netag: \"63f24d58-50f\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1295,"size_decoded":1636,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"c82040c580b6eca49811c56ae79f3587","sha1":"f63a38832c18963d98ddc76601d71ff7b6b52a2a","sha256":"369a5bc2f018e1f969b7c60a6c76ac38be06cae378742478b20d1a644d123581","sha512":"cb66a529dac4c37f6549caed53892f3e31a259bdca73f24764736c9b8872dbca3b2fc86e9685d3e938b6ca9219345147c9a7a89bc5ddbd987e74e59df1f91dca","ssdeep":"","tlshash":"bf21eafdd546b0f4ddb2b24231d8dc4af137b55d752f665d43351017709064e81a9a0e","first_seen":"2025-02-26T18:00:22.710118Z","last_seen":"2026-06-17T16:39:53.792374Z","times_seen":13,"resource_available":false,"data":null}},"time_used":900,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":497,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231008/ce0bf0f7801850cae194227656d52cef.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.565Z","timestamp":1781714321565,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231008/ce0bf0f7801850cae194227656d52cef.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 24243\r\nlast-modified: Sun, 08 Oct 2023 13:30:27 GMT\r\netag: \"6522aef3-5eb3\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24243,"size_decoded":24586,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"0fb3d6867fed39387d6daecd457516f7","sha1":"9dbd42a1f4d5e0cbd8ef34d76298494df0599200","sha256":"8f411eaf088d81dbb1a1efab5f6969edd22905b102db9cc8b9124e1328cbdaf7","sha512":"c66c0b088c395ea56792eabc13af82be31d60abb047f933d28671637ff80ddcf6a44b3f5d750b1981812e0ac0b2639bd50b46b0e37f0ec1e78cbd4d637028f34","ssdeep":"384:ADrcp/ZCHO4mmqqlPZ1u0SXxKDQdRJT+TfkU8XasZqsgpA0Tm/kugkYbg94mUTy:As90uzqlP+1xE2T+Tr/ENgFi/Yknh0y","tlshash":"05b2cf0beb70e4f4df2d533145ab0b696b8295736dc232d37891806c6864fc21da9bec","first_seen":"2026-05-26T08:50:30.630771Z","last_seen":"2026-06-17T16:39:53.78063Z","times_seen":9,"resource_available":false,"data":null}},"time_used":2358,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":889,"receive":1469,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20230305/dcc7c3a27c4439e944ddf52816171c5f.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.577Z","timestamp":1781714321577,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20230305/dcc7c3a27c4439e944ddf52816171c5f.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 33767\r\nlast-modified: Sun, 05 Mar 2023 08:46:30 GMT\r\netag: \"640456e6-83e7\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33767,"size_decoded":34110,"mime_type":"image/png","magic":"PNG image data, 488 x 511, 8-bit/color RGBA, non-interlaced","md5":"42dcfd352acf5b243a04cd03925965cd","sha1":"e541dba9482658398df3459f0cc14dde9f3c0546","sha256":"9586ee5c076e7e847a71d6fcb99bfbcb5a4126fb3e7ce2b6b4ef19ce8b9049b8","sha512":"20ba038e18ae4d3bbbe717845a7921a2aebcfefec8a165eb3500a9d109c3d40242dcfdbf32d43019e5012fa9f6a89da451a0c9d4c847f5ceccea97db2188ac22","ssdeep":"768:5gu/XB2GsY8HL/isrInf5wTU//2Ig19u/RioOiQv6:v2GsY8r/i5nBTg19IioOid","tlshash":"e7e2e080b2dab07a7d636177ee74eba53803985448b05e7ccf2e17521e4f8388ca9f41","first_seen":"2024-08-20T10:15:14.351824Z","last_seen":"2026-06-17T16:39:53.824334Z","times_seen":18,"resource_available":false,"data":null}},"time_used":3080,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":878,"receive":2202,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/home_ico_HL.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.599Z","timestamp":1781714321599,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/home_ico_HL.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 842\r\nlast-modified: Sun, 19 Feb 2023 16:42:02 GMT\r\netag: \"63f2515a-34a\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":842,"size_decoded":1182,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"59288ebf5b1824f2c55da80cdcf6484b","sha1":"a1eb7616cdba90ce1e7b1c96367eedf8c0b63f25","sha256":"10967137c2aa860e517c12d3ee52b10e0c11d005fa728b0693d9a1c74c07f96b","sha512":"692753b33c0056f3f5acc7f7e6496f4ae0d2f2c5642bbe4f1af8c8caa3cdde0cf68ff4470aef5ce270ad7b07ae4ddc6cbe86a00f70545e84ba47c0f760b8e89f","ssdeep":"","tlshash":"440152b775149233ee66d5238979112063a131091a47f79b9e016d028810ba2a1fe58b","first_seen":"2025-02-26T18:00:22.734909Z","last_seen":"2026-06-17T18:01:05.927031Z","times_seen":51,"resource_available":false,"data":null}},"time_used":3977,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":858,"receive":3119,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/layer.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.649Z","timestamp":1781714325649,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/plugs/layui-v2.5.6/lay/modules/layer.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 31 May 2021 05:44:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60b477be-5619\"\r\nexpires: Thu, 18 Jun 2026 04:38:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22041,"size_decoded":8706,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (21984)","md5":"3ffd5603784dbfeef189498c1a705c15","sha1":"983f2308aab1a1addad5be4f1c49099f5dd589cc","sha256":"2aa83aee413f9b91a2dcc536cfd6acd6e44b3fcdb59c26586e32d083396a8db5","sha512":"76d0b3952e17783ab3b597d0db1f734bf7b933ef8ff316c8107f5192f1ecf318c3f11c9ba10a4d15063b26cbb32133af7581070d7c782ebbbcd6580cfd21545a","ssdeep":"384:619Cih92A3igTLXSt/SdMrXqE6K+LxzAOTElH0jjhtjfs8:614iV3iaWtXIKiF13k8","tlshash":"b4a2b66a754034976323906ad11fba0b31f21d24d7078128f22ba4be1dbcd95a2b7f5f","first_seen":"2023-03-07T01:06:17Z","last_seen":"2026-06-17T18:01:05.901889Z","times_seen":434,"resource_available":true,"data":null}},"time_used":671,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":671,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T16:38:40.908Z","timestamp":1781714320908,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /mobile HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: lang=en-us; path=/\nPHPSESSID=abe8467c670c9e2a112a75e49b3e5088; path=/\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Clipboard.js","description":"","website":"https://clipboardjs.com/","common_platform_enumeration":"","icon":"Clipboard.js.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40732,"size_decoded":9560,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"62d66de7658d75525dcda7b5d0bd67fc","sha1":"a1de08e55f8cacea7c6a999d46bc54d82fd2ccd3","sha256":"e064f86e1f97afb41ae9d82dfcc8486935384a2d9659bdf4cddf5511a824e5c3","sha512":"cf758b27c4a926f0cf8208e3bb97232f1d2b468b0ddc78699186b0bfb55f40e087c9d0a44611bad820c2e4069c4301d5d07b7b54ddc8dc711f6759bec4d03b4b","ssdeep":"384:OgFUcZPTY2pTUjyD6I5QKNUMymCrrfYq0wS2cQ0fSWAiG2GAqzAVATPwIzoVzeA/:ZFUcp5cWdQN5fv0wS250fSWvZpyMx","tlshash":"58036400d2ee0c23607290c3aab6af29b4dfa937d35a4404f7ff0d766b87d157a12559","first_seen":"2026-06-17T16:39:15.722073Z","last_seen":"2026-06-17T16:39:15.722073Z","times_seen":1,"resource_available":true,"data":null}},"time_used":272,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/jquery-3.4.1/jquery-3.4.1.min.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.487Z","timestamp":1781714321487,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/jquery-3.4.1/jquery-3.4.1.min.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Aug 2021 08:01:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"611b6cbc-15851\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88145,"size_decoded":34848,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-06-18T07:27:08.767483Z","times_seen":134092,"resource_available":true,"data":null}},"time_used":407,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":407,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/mobile/ajax/findcpm.html","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.743Z","timestamp":1781714325743,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"POST /mobile/ajax/findcpm.html HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 16\r\nOrigin: https://oandaofficial.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: application/json; charset=utf-8\r\nset-cookie: lang=en-us; path=/\nPHPSESSID=abe8467c670c9e2a112a75e49b3e5088; path=/\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10,"size_decoded":272,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"b9e754add75d51d888ce7585dc9dfe41","sha1":"0fd53114199a1a46e887032b7efa05f1fd74c807","sha256":"7a97b9b4d758a3929b8a2be53fbe189c9ba9378d6fbb8190d37f7cc14f5cf5d3","sha512":"6ea97d926607e77cda3275af2c3ba966fd45c1d4b4aa97b53d63a718f0941d93c1d4e67939885740dc6bfd59a0021ed049073ddfc61cfd0e8a5553efb449b539","ssdeep":"","tlshash":"2f500000003c000300030000000c0000c33f00000c0000000c0c033000000000000030","first_seen":"2023-04-06T21:01:20Z","last_seen":"2026-06-17T18:01:05.958302Z","times_seen":5320,"resource_available":false,"data":null}},"time_used":578,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":578,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/05b753051a4d9379614370e96ade2ac8.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.583Z","timestamp":1781714321583,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/05b753051a4d9379614370e96ade2ac8.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 18553\r\nlast-modified: Tue, 07 Sep 2021 16:36:40 GMT\r\netag: \"61379518-4879\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18553,"size_decoded":18896,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"41173f1fac2d8fe9fcf0285d0e7d6acd","sha1":"2262cedafbeddfe8d47ffbd2ac442b0b92e681fa","sha256":"25f2ced7253fac8937192733091dc789301446bb306bdda4e7814999d03dc692","sha512":"73354a1dab8eec7ae4d2ea5c65ae235c9b9fe2860806f1a4825284a6971a001754649f868c91bd9e29e4141e6ac8bbad092296439678b02a26e9d3463e0ea070","ssdeep":"384:ci7lfIt9MsjkET7AlZaxL9qiCH5cAWs0IMzz9zgDlV52smW7NZorx:lRfTstPSa9SDIzVgbkXWAN","tlshash":"c682e0aee2d37c184a5bcb144be634b26cd23e694b636c43703dc70c9e5481963a327b","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.80184Z","times_seen":336,"resource_available":false,"data":null}},"time_used":3442,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":873,"receive":2569,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/index/images/en.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.540Z","timestamp":1781714321540,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/index/images/en.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 1856\r\nlast-modified: Sun, 12 Sep 2021 07:19:18 GMT\r\netag: \"613da9f6-740\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1856,"size_decoded":2197,"mime_type":"image/png","magic":"PNG image data, 49 x 32, 8-bit/color RGBA, non-interlaced","md5":"19e8aa640b1d129c94e299dfd580f210","sha1":"ccfa030c16120a11d224fa1ba72afd55f0776523","sha256":"7385aee2de7d89a525b33e6ff1e8c1246de9234fcc7346f5877ee7d3301f8ca1","sha512":"6ca9e3f44d4ce8a0f7734c8f814138fe54c3224f08905a6e0634f36f1c4de6ecef43281df8a7b29f473300a1096565b148ced5e51fb23b050457c63714af11c3","ssdeep":"","tlshash":"e4311bb469a26052fa5e2ad4be1045df4ef89c0605d89251e60645e13c9eef19f0c437","first_seen":"2023-05-06T18:37:16Z","last_seen":"2026-06-17T18:16:19.270206Z","times_seen":428,"resource_available":false,"data":null}},"time_used":912,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":509,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/assets_ico.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.602Z","timestamp":1781714321602,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/assets_ico.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 810\r\nlast-modified: Sun, 19 Feb 2023 16:24:56 GMT\r\netag: \"63f24d58-32a\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":810,"size_decoded":1150,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"ba5d2f079a74c42c1486936d86e25f78","sha1":"13274a2106e7c46d56c51ede0bfd008588f8d3bb","sha256":"c6467151f233a6a7ef87879997827a216154c6514d9d0b414aaa6d45ca25dd72","sha512":"386db736f8af1f4dcc16a3bd779fecb8773169cf3d9368e2abe4e6bdbacecaf9373e1e0e635ba7ed66599f541aa4b6eb75e57c24e802d184128e87239484408f","ssdeep":"","tlshash":"89011e439f0f4bb8d487e17202720a6fb821106985aea448ace66eb9c22d15d81ac157","first_seen":"2025-02-26T18:00:22.737718Z","last_seen":"2026-06-17T17:53:17.722069Z","times_seen":31,"resource_available":false,"data":null}},"time_used":3975,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":856,"receive":3119,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20231008/e986a126df7358ae57a6010690650ea6.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.562Z","timestamp":1781714321562,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20231008/e986a126df7358ae57a6010690650ea6.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 12729\r\nlast-modified: Sun, 08 Oct 2023 13:30:03 GMT\r\netag: \"6522aedb-31b9\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12729,"size_decoded":13072,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"d09e82ca7fe3f63b2998d111f149b56d","sha1":"be69394d766c3fd1251b3c1f1c90667ad45808b8","sha256":"8fd480b6919432dca5aa3d8c7f08b1e542d7806b6b250e87e8284c65291f47be","sha512":"a02954ee59bdb446c1ee6e10e784b77a55bd5676114a6e8d782af6cec9d951e382c1cc3fda4e6ca5b758c289197c22546923612d0490741d1c84e32b76629cc0","ssdeep":"192:lxoMy6HgPnGCjBUYaLpDoea1KmRpSb91OpBkXck0V3W4gwyswXpFE:Ny//GCjBU99oUw6UkXlR4gPQ","tlshash":"68424a03eb549dedc30ed33918db03226c93857427e3505a5da6a6a9bc323213f68ef1","first_seen":"2026-05-26T08:50:30.621484Z","last_seen":"2026-06-17T16:39:53.822438Z","times_seen":9,"resource_available":false,"data":null}},"time_used":1819,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":892,"receive":927,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210903/829b852fe70d16d14b3f5a18c41e9484.jpg","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.580Z","timestamp":1781714321580,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210903/829b852fe70d16d14b3f5a18c41e9484.jpg HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 45278\r\nlast-modified: Fri, 03 Sep 2021 08:43:24 GMT\r\netag: \"6131e02c-b0de\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":45278,"size_decoded":45622,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"04be35b0e7109c765b2d88f6723579c7","sha1":"39c4da94ebac160e080789f6e17a2a18c6100c42","sha256":"a5ce75d62c31a4300256b26bb4635ff079daf02c80f8412306b5b029d078c34c","sha512":"299c2ae67a5565ee0dcf5ebc0f24cb2cd8363f292739d54784db82b3190eb9bc93b8641441964c41d7e188a70be82c121cd1c099df4d6bb1d1e78750682f1719","ssdeep":"768:PdaGS/mtVpY8KeXwis4F4/p7WD5kHP3lm0UiO9xI9:PdaGS8tKMXvSStW3by2","tlshash":"8013f1558a013aa8cad407f6815b18530fb73b36f86047eef4ca4ec054397616e77aaf","first_seen":"2025-09-06T18:04:03.231316Z","last_seen":"2026-06-17T16:39:53.828595Z","times_seen":11,"resource_available":false,"data":null}},"time_used":3261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":875,"receive":2386,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/websocket.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.524Z","timestamp":1781714321524,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/websocket.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 15 Sep 2023 03:22:51 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6503ce0b-4012\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16402,"size_decoded":4936,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"57b1a28a4e742f3794afd1621bca55a0","sha1":"4f6bf7ad2037e0f8c758748f4835ae1918852817","sha256":"562feb8ca6122423ef629c082d81004211bbb792dca40cc76eec14896a6a3c2f","sha512":"f57265b7d4bfead5fdf84ce44bc82d966e44a3b642db278635c450144a1cf7b53d8a99e709d28d1186b8e6a03766d8c255d3b132f7a3382b32b201e046127be5","ssdeep":"192:EHjrXg7hWXwiQRdUFdMeajJiMF0Cl3Loa5fFwy4HrwIIgUdjAN:EDrQ0XRQQM1iMF0Cl3LoaILEWNN","tlshash":"92725290fbac155f40f6102d84ac55c86bdc8571c7a849e7babca6d00748f1e146bdbf","first_seen":"2025-03-15T23:28:02.136561Z","last_seen":"2026-06-17T16:39:53.754782Z","times_seen":11,"resource_available":true,"data":null}},"time_used":525,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":525,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20230807/3b4de3c570304937f5572a09229a4928.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.598Z","timestamp":1781714321598,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20230807/3b4de3c570304937f5572a09229a4928.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 2950\r\nlast-modified: Mon, 07 Aug 2023 07:31:40 GMT\r\netag: \"64d09ddc-b86\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2950,"size_decoded":3291,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"55741b72669110cd4e00f47546874354","sha1":"e582d32fd194c2dea3f4ceddcfc38e8cff80de40","sha256":"626df335e602781f3cb8517a03eaad502cb31d51730ce3347acd80419b6a3931","sha512":"883ecc0017bb9ae0716427579b4db41a972ef9c7bf87b5c7f3fddaa5abb3a7937c68d47e0e226665efae612709bdfa3292a1d9d505480883c1dbdd583ab7f44a","ssdeep":"","tlshash":"85514ceb7a22afb1d70cb1dce62d423f87182ba8ef9b4848149b36dd5d0ace45c40448","first_seen":"2023-11-22T12:11:16Z","last_seen":"2026-06-17T16:39:53.830198Z","times_seen":113,"resource_available":false,"data":null}},"time_used":3978,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":3119,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210903/de2ad50b4fd1c5cbc1ddea2bba258958.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.574Z","timestamp":1781714321574,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210903/de2ad50b4fd1c5cbc1ddea2bba258958.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 105551\r\nlast-modified: Fri, 03 Sep 2021 08:41:26 GMT\r\netag: \"6131dfb6-19c4f\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":105551,"size_decoded":105896,"mime_type":"image/png","magic":"PNG image data, 2000 x 2000, 8-bit/color RGBA, non-interlaced","md5":"bd8a66a284e28bc271f6d0209f2de868","sha1":"3dc24b1050b2323a1eab7e5a1c22f468bf2d2168","sha256":"e0d0a66b7a841e058be92f18728cfb51c998058845bc485bb0415faaee7762e9","sha512":"758e97ccc449483036b4d683727a18c67b0295c84a1b011fe8c9a98f85170811e8fce035994c1835fa8e56a804fb54cb3834f37dddb4593b9d306ac88b9829f1","ssdeep":"3072:1prX+roURTat7D8nCXjto/jN1HXIZ28fj3qOdAM:1pSroAatMnko/j/Y0e2fM","tlshash":"50a302646d9d1dd1ccb3f6346e3b8ecd3b4940a93956dc870872fc6dbe5a402ea4a05c","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.769159Z","times_seen":54,"resource_available":false,"data":null}},"time_used":4228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":881,"receive":3347,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/1f43841470a7b1a5be381e40ac7af721.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.591Z","timestamp":1781714321591,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/1f43841470a7b1a5be381e40ac7af721.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 2559\r\nlast-modified: Wed, 08 Sep 2021 13:34:46 GMT\r\netag: \"6138bbf6-9ff\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2559,"size_decoded":2900,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"a6f6dbbfa8b81a764b530d6af26df859","sha1":"15e3d707247c6a2249d4fc5fde0eca9a9542ab67","sha256":"180ab392ff5f9fa71c27be78a9c7c92f16bf7973dac0cc9299f46471d5b41fef","sha512":"8a9e7e993104e721eee6c38139e68b16ccd14507fdec65b88f4f7b91674ef7d1b2cd6bcc7ee671af650219e56cff1d5be56c12aeccb68797112953996792fcf2","ssdeep":"","tlshash":"ca515dc68853f4b8ddb850231417b8ceee380c112839568d5080727f707d75416777f6","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T16:39:53.797587Z","times_seen":45,"resource_available":false,"data":null}},"time_used":3801,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":865,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/css/style.css?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.473Z","timestamp":1781714321473,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/css/style.css?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 22 Aug 2023 00:08:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64e3fc7c-5aea\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":23274,"size_decoded":6545,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text","md5":"a5218fcab53d8a8dfd9ca4df53835d5c","sha1":"729cff7324cee091696bed5ef9de179ea12b7fe8","sha256":"7b8cc5f0df94842e76f796144444440daf423bd37d3521e5aecfea952c36ebdb","sha512":"302ab3e0458d8fce39002f9f4eab048896acad7727eb346798a7f46ba159fd5e63c0aba17a3ad17f1919f8a9b5cbd6f3a0709aa3db4a64bd0d6904233f0610cb","ssdeep":"192:MI8pnCzLGbV81/uGzsYyh4OKImsk9Lz7Po7fKaucG5ljo4CUY4o+hnMD6rFd1VdO:MfC681/bzsVKFHo7IcG/DfFpax/FI+9","tlshash":"3ca2852777421c46b116d0b6ee6da7b2b33d5413a94f9eb4f588312dcbc089190b7b87","first_seen":"2023-11-10T15:05:08Z","last_seen":"2026-06-17T16:39:53.783145Z","times_seen":11,"resource_available":false,"data":null}},"time_used":390,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":390,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/img/banner02.jpg","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.557Z","timestamp":1781714321557,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/img/banner02.jpg HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 78314\r\nlast-modified: Fri, 18 Jun 2021 07:20:10 GMT\r\netag: \"60cc492a-131ea\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78314,"size_decoded":78659,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 750x350, components 3","md5":"51f9114ed308eee0fcf69c555cf676e2","sha1":"a240c907140cc3ade5112bde6cf8299a4ee49ff3","sha256":"ac2ba8caee74e739a038c1bd1e2d7f7429517974cdbc6b71c9c6463420c22613","sha512":"62358e1d0496fcae7c00ee1c0ba40b7f0d0518bf3ae04aa31219a8ff99f2b6c01abc46e790e7ef0e9f3bad0a645dbc546af8ecedf52c70b1a3bf62f515189316","ssdeep":"1536:WOh6yDj4ItcMUjqHanze7/27Uk2VKIeXxzOtNflujqF:3LDUgscuQP4LzqujqF","tlshash":"80731205bda2a356e597f22a4673b8d9a2dd43523fd4f87608ebdb165240cf04ac217c","first_seen":"2025-03-04T20:41:38.89197Z","last_seen":"2026-06-17T17:53:17.683938Z","times_seen":26,"resource_available":false,"data":null}},"time_used":4203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":493,"receive":3710,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/0e3bc88bcf1739272a781dc68ee40b00.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.584Z","timestamp":1781714321584,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/0e3bc88bcf1739272a781dc68ee40b00.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 55728\r\nlast-modified: Tue, 07 Sep 2021 16:38:12 GMT\r\netag: \"61379574-d9b0\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":55728,"size_decoded":56071,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"48384a67185dbdfeef3aa43c99d3319c","sha1":"23e15189bebafbbec8b23e8ed0f3392a9b7979ee","sha256":"1ceba4efa6a645fbe532e520385f37001922e14b6aa7b4ebeb19e755014feb39","sha512":"2f7a13f56ff64b874a76994d00f198c5fc2b7424181935e641eb81bcf171db54fa50b711502c0c4a7e8f5c934ed5747233d87ae0602916244947d3724eb3ce10","ssdeep":"1536:5ko5w6RHlzxqElMwBI6M3iD+oLKTn6EPwhk6g9p6uP5I:x5fR9xjlMGnMSDYLPJ6bOq","tlshash":"0d430247c0529ed2c68853aa0e3de48a84779d12358f80577ce6525a82e2df29bd770f","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.805226Z","times_seen":669,"resource_available":false,"data":null}},"time_used":3625,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":872,"receive":2753,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/1daa415d3161b100b21eda14d61a99cc.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.588Z","timestamp":1781714321588,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/1daa415d3161b100b21eda14d61a99cc.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 14216\r\nlast-modified: Wed, 08 Sep 2021 13:28:56 GMT\r\netag: \"6138ba98-3788\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14216,"size_decoded":14559,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"39f7b58012edd7f003da1056cf2dc725","sha1":"c44d086f0b415930146f8bdf3483121b1248f739","sha256":"799db04a5d13f456cf8e146818025e8afb4e457d2f225ab69f5593efede4f2fc","sha512":"2d2e010a00cdd1a45bcace62ff8f1d52398ef210bbb7d76f12b2cead465d42d2ac749c29dea69f73128760e0649c62d31ea3f6e97496d85c2e2b46674907f956","ssdeep":"192:AlZ5KKIOKfs8xgjWQRyVqHc5TAYA02gvH3j4oqduETvLQm+rJTDixLvrMLaiFdR8:wlK3gbHc5T1Argf3j4FwEv+4tvguZ","tlshash":"8a52d1cf6adfee009b6d4076d4386509c7bee0db6067663c4405c8413fe146fda5546d","first_seen":"2023-05-07T20:12:38Z","last_seen":"2026-06-17T16:39:53.765818Z","times_seen":42,"resource_available":false,"data":null}},"time_used":3804,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":868,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20230831/677e48011805d3a47157c19c5258ae3c.jpg","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.576Z","timestamp":1781714321576,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20230831/677e48011805d3a47157c19c5258ae3c.jpg HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 5322\r\nlast-modified: Thu, 31 Aug 2023 05:14:11 GMT\r\netag: \"64f021a3-14ca\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5322,"size_decoded":5665,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 222x227, components 3","md5":"8025c1ae7b2655af6e6deee6c85135f2","sha1":"a13dc24c03fc595a3292c9d4d09a9ac1a4932f9e","sha256":"99fb3dfc902056ae5fd3dc97b0d7f3417a862356c68b0c80f3b61be06a437e7d","sha512":"545b2bb0b1ac0602eb58d489c95d3e6d341d46159c6b3a7058111e3e480da005796405d0f1ce1913477f84ac42b2554abec6cb2c7fac58e5ddbdc46bab158a93","ssdeep":"96:NmqPV7ZwwWZthgIIRk+r4pvXBr/tNOPfsZiu+C4jc19OpXgFZn66:NHd9wlhXIRk9dxr1gMZiqZnp","tlshash":"b8b17e9e0493840be9320eb3b58e23b744eb3412426035967e6f7407dd8886f5995a74","first_seen":"2026-05-26T08:50:30.579934Z","last_seen":"2026-06-17T16:39:53.817418Z","times_seen":9,"resource_available":false,"data":null}},"time_used":2935,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":879,"receive":2056,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/9911518f2ea41dffe86efc9bf3b9f07c.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.589Z","timestamp":1781714321589,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/9911518f2ea41dffe86efc9bf3b9f07c.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 7083\r\nlast-modified: Wed, 08 Sep 2021 13:31:06 GMT\r\netag: \"6138bb1a-1bab\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7083,"size_decoded":7425,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"32d33b7a7a8eae613f02c047312a8563","sha1":"d73de138788be5f3a0d98f5bbbb2fec67a2b7e14","sha256":"dbb41643b69f311f7417c8e28671fd3064edb363a60d315d91325010616334f8","sha512":"e83e3dfff490f6554eb807c370fae71c16ab5aeb35dc6cb760be034f9b86afacee5026fd8cbbf592fa2dba9dda8adbc66079f76cd46c9031def466de629ef3b6","ssdeep":"96:60U9UIToHr+uc5Zs/ovvIepK064q3gCPsaHaY/9ua4D7JfmOELFUzV6U8d1cESiG:60OxChgZzDpK0jqDlRFr4R9ExIbzBi4z","tlshash":"68e1bfd8f9b98a40c473b231ec5860ec37a4fd08de91916f105abf8d8372bd6c8a6117","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.820292Z","times_seen":53,"resource_available":false,"data":null}},"time_used":3803,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":867,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/user_recharge.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.550Z","timestamp":1781714321550,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/user_recharge.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 435\r\nlast-modified: Sun, 19 Feb 2023 16:37:36 GMT\r\netag: \"63f25050-1b3\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":435,"size_decoded":775,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"629caac7156bd72c571289dab0b11043","sha1":"7b47e3b6f463461dc8f77d8c8905921fcbe19f5d","sha256":"4c20009cb9dba53afe93da3f12c2c69b9fc9121215064a268aed7536ad799969","sha512":"f623a92d7cfd810a3c23579740969cbec7574d7f9c76b7921df12d7a67af05642fea82d44e406af6fe73a38fe751baf2c1ab1934d810107e3b4f7a493c494e8f","ssdeep":"","tlshash":"f1e023e743433d5d363a8a620c2d2414ee230b4485a678049c2b7739648b30a735c703","first_seen":"2025-02-26T18:00:22.718535Z","last_seen":"2026-06-17T17:53:17.71849Z","times_seen":39,"resource_available":false,"data":null}},"time_used":902,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":499,"receive":403,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/favicon.ico","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:46.329Z","timestamp":1781714326329,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:46 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nlast-modified: Wed, 11 Oct 2023 14:33:20 GMT\r\netag: \"6526b230-10be\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4286,"size_decoded":4559,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"67c9b37a2da5a6779cd1c7ce75f63e1e","sha1":"7489c2e357decb7b2530a96f689c1908e673a7dd","sha256":"e178cac40aaa055101e3a2588b8488ecd489ca47b7e021882286ca774446e31a","sha512":"607e05a1a90cf7a6f7454148477a0870f07d4e2656a4f87e62b182095881449d824e9a932b61353c198c037774aef6652b08926af37ca86bdbb4e1444c804bf7","ssdeep":"48:GTgcKmxBpffogbQmPkv8CoBol2kV0cM2cSjloG1kQEqBc:xBm/3o2bhCoYP0c/c2loG1kyc","tlshash":"0c91514f757b42c8e9a4c6bc4c2253b003ec3e61bd1277ab692ffb3229014608e0d6e4","first_seen":"2025-09-06T18:04:03.229157Z","last_seen":"2026-06-17T16:39:53.773446Z","times_seen":10,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20230305/b4e05190842a3134ba7f8861a3a75519.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.582Z","timestamp":1781714321582,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20230305/b4e05190842a3134ba7f8861a3a75519.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 39502\r\nlast-modified: Sun, 05 Mar 2023 08:46:58 GMT\r\netag: \"64045702-9a4e\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":39502,"size_decoded":39845,"mime_type":"image/png","magic":"PNG image data, 577 x 433, 8-bit/color RGBA, non-interlaced","md5":"63118ccd7177a991ff802982be1e1fbc","sha1":"3ed2af0322917dbb8c16107025dc88c4c5ee4d31","sha256":"50aa0ecd50119d1a04f475aa05f8cb55240536f31498590553a1a8c52388e917","sha512":"060e9d1bf9401fc9fcab0bdfc540d37453c25c1e84263912a48e11224b84bafffae0a93aa11299be00d585d3b02054c2a5d5d91f10121c197bff6b02ad428a16","ssdeep":"768:eTR7KLdQMEZIg/ArEYyO3pDZYe22F42zSQGsjDCed58lBf1dozBnO:uR7KLdPEZv5YyOJZfF4xsTmIO","tlshash":"9b03d04b87d00c2803f8f6985b408819ff0c36bdbdd4929567f74b2373999d9948a96f","first_seen":"2024-08-20T10:15:14.353165Z","last_seen":"2026-06-17T16:39:53.76405Z","times_seen":18,"resource_available":false,"data":null}},"time_used":3443,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":874,"receive":2569,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/img/banner01.jpg","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.556Z","timestamp":1781714321556,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/img/banner01.jpg HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 108695\r\nlast-modified: Fri, 18 Jun 2021 07:19:54 GMT\r\netag: \"60cc491a-1a897\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":108695,"size_decoded":109041,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 750x350, components 3","md5":"6ef98fff6f735ff70faf32b5a0e037a7","sha1":"d340ff861ecef41b345e9486c3e4f556c142ed45","sha256":"6214403b99554ceeafdfdd7dbe36c036230b77e82167eb6103b7196173abd8bc","sha512":"cb3c78a8a6c5dfb279370660562347dd70f89622c41ccfb77f957f336b6349ae4690794b34ce41399c3cca1c783c49dd56fb77cdcda0d8ab0783d89e48722e09","ssdeep":"3072:wxe9Cz80ti9ey46BTNpYuVbYYuqAI3xDEmPV:wVQ0tMJpYuR5lGa","tlshash":"47b312eaf357c1c41468217094a96f8bd24d84f64474fba529c28dc8fb883e9252dee7","first_seen":"2025-03-04T20:41:38.861135Z","last_seen":"2026-06-17T17:53:17.70486Z","times_seen":26,"resource_available":false,"data":null}},"time_used":4204,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":494,"receive":3710,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/plugs/layui-v2.5.6/lay/modules/carousel.js","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:46.563Z","timestamp":1781714326563,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/plugs/layui-v2.5.6/lay/modules/carousel.js HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:46 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 31 May 2021 05:44:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60b477be-f16\"\r\nexpires: Thu, 18 Jun 2026 04:38:46 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3862,"size_decoded":1839,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3805)","md5":"f4b94959b4b5ad34cdc1dd2c12a6bd1c","sha1":"303a72c6380c4277062e85eac689d1dc5ebc60df","sha256":"ec7b67ac49f660eae790c97c9e47fd86973a01478947c603f458667fb322351c","sha512":"b4d24dd32769ad42ed0d4e7b61b80c0ef9f41e9d001a48f5bfd3a328e58e715724a2df8bb97e8078e6b1fc44be5ede4b53233f987578eaf9f3d6e0a3ec936831","ssdeep":"","tlshash":"d7811181775f386741972453935f4c0896b719ba9b06d054f2a264fa6dfbc88223eb0f","first_seen":"2023-03-10T09:41:51Z","last_seen":"2026-06-17T18:01:05.946662Z","times_seen":77,"resource_available":true,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210920/655b8a658553425ccb4adb1a03312d4d.jpg","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.592Z","timestamp":1781714321592,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210920/655b8a658553425ccb4adb1a03312d4d.jpg HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 958\r\nlast-modified: Mon, 20 Sep 2021 13:29:26 GMT\r\netag: \"61488cb6-3be\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":958,"size_decoded":1299,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 48x48, components 3","md5":"876feddecbd65e609538fa3f775ee50b","sha1":"112a9d1de8151bac9e72b249c32114cfc41041f4","sha256":"d54560600d5ecf3b41c477bca8591e9a8689a10d1613874fb56e1a56c698c4ef","sha512":"27894657fa4dcbfa352f53552d78a92114bf26c1b1fca460ee3453c15d654eb8b2a33e6bc503dc2b119fc7ae274962ba6b08cc3324dc02462c26f3e55c48c45f","ssdeep":"","tlshash":"e31196de3d789e22dd35353413f41284331f3f576790ab60159e6854adbe4ca4f4aac1","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.812215Z","times_seen":18,"resource_available":false,"data":null}},"time_used":3800,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":864,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20230807/ea197ff20ffbaf9b013feed0ba99b138.jpg","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.595Z","timestamp":1781714321595,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20230807/ea197ff20ffbaf9b013feed0ba99b138.jpg HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 2174\r\nlast-modified: Mon, 07 Aug 2023 07:36:34 GMT\r\netag: \"64d09f02-87e\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2174,"size_decoded":2516,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 80x80, components 3","md5":"c7b239990a2d293f52fcb573cd6b7f5c","sha1":"a5798ec663dffa231e60ec67c7b26e80c5ede1b0","sha256":"a2d7321385105589004b0ada2f7511b1d32813b4e63845379d03c5b89e7a311b","sha512":"a0940cbab022f87d9442094ab79e3805b93d1f82ec22c9f0325c7c5cf779ffdfe7d964122caf148bc3b46bf1b75704678df57e88da831bb7e166f152e943715d","ssdeep":"","tlshash":"eb410a9f8b6ed202f70244ba10272662a95c6ac53df5a3751fa00571d800eb54ec977c","first_seen":"2025-09-06T18:04:03.221595Z","last_seen":"2026-06-17T16:39:53.826175Z","times_seen":11,"resource_available":false,"data":null}},"time_used":3798,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":862,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"wss://vnforexs.net/wss","fqdn":"vnforexs.net","domain":"vnforexs.net","tld":"net"},"ip":{"addr":"104.21.25.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:46.049Z","timestamp":1781714326049,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vnforexs.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 30 Apr 2026 03:47:01 GMT","end":"Wed, 29 Jul 2026 04:44:32 GMT"},"fingerprint":{"sha1":"EB:21:0C:31:73:96:B8:09:DC:D0:C6:0A:F6:E3:86:9E:AF:C4:AE:0C","sha256":"B1:4D:9E:F4:BC:D6:9B:7B:5F:B7:B8:11:B4:AF:2A:6C:75:2D:54:30:EB:29:73:1D:CE:F1:0F:F9:78:04:F3:F7"}}},"request":{"raw":"GET /wss HTTP/1.1\r\nHost: vnforexs.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-WebSocket-Version: 13\r\nOrigin: https://oandaofficial.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: +Onn4bSfuUgQoB5uIqSEtQ==\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: Upgrade\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Wed, 17 Jun 2026 16:38:46 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Version: 13\r\nSec-WebSocket-Accept: bUEYrqoL4B7Kv1pVMuabyP6IT/o=\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=7%2F7s6lrSvZYfj3nmiEf494TADqbMes4wXmvMzuQsTocsLLr185cWLUU7ABi3l6XVfSBKWInXmYomG%2BAx7a90Ti0NkozAuGUz8X7BUXYESz6mmo8KsHh96UCafOx0ZwA%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: a0d37c8a1dd55693-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=1068\u0026min_rtt=986\u0026rtt_var=535\u0026sent=5\u0026recv=6\u0026lost=0\u0026retrans=0\u0026sent_bytes=3187\u0026recv_bytes=1319\u0026delivery_rate=2270466\u0026cwnd=53\u0026unsent_bytes=0\u0026cid=f817af49b6b1239f\u0026ts=629\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":830,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T07:31:18.139418Z","times_seen":16505664,"resource_available":true,"data":null}},"time_used":694,"timings":{"blocked":-1,"dns":32,"connect":30,"send":0,"wait":622,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/css/mobile.css?v=178171432121","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.475Z","timestamp":1781714321475,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/css/mobile.css?v=178171432121 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 15 Feb 2024 05:05:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65cd9b90-cf99\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":53145,"size_decoded":14960,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text, with very long lines (2654)","md5":"19e018a7ce608aab6e7fa8826ddd275a","sha1":"ff489174322233943c7720e859c6533ad35ede4a","sha256":"501f3fd3d6c48e6384ac0c437f4c0daa4a1b653e4e71254cdcb857d340ea3ca9","sha512":"3560df130b687ef1907172b9f349d7d8041646ab767965fa5c74252ea4fa7c8208feb6e4f8676e54cfb505f03365710facc04a1a382a687adecad95445930b94","ssdeep":"1536:6q81fxcdGtBEQTk+8AnSgfKQhYH+ntX/cmBFOT:k1fxPtBJNfzh2+ntX/14","tlshash":"0533a72767631d06b01bd4545f6d6ba2632c8013940fd9f9bad1726d8fc2ae184f3b8e","first_seen":"2025-09-06T18:04:03.226913Z","last_seen":"2026-06-17T16:39:53.802708Z","times_seen":10,"resource_available":false,"data":null}},"time_used":388,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":388,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/layer_mobile/need/layer.css","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.493Z","timestamp":1781714321493,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/layer_mobile/need/layer.css HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 26 Aug 2016 09:35:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"57c00d68-148c\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5260,"size_decoded":1772,"mime_type":"text/css","magic":"ASCII text, with very long lines (5260), with no line terminators","md5":"633915e62d14a714594b95b974ee0836","sha1":"e11ebb64a70272c4f35b92fea064f27c4b87efad","sha256":"eecc7effcae5f246e6212c30c525cee9e11cadedc7d32aa6def213f1a90d98f6","sha512":"3a0f469c32521c0fe51838b099650f055410cbdabf64659856e009c8d5e1f3a32fed568832282a92892f1398c8557fe1f64a6a34881f711ecd55b41b054d243a","ssdeep":"96:tJA7fs72Cyf26B6ZtbXBh+Bcw0iZRfcSNHIFSf:J72b5YZtbXucwlrESNoa","tlshash":"9cb1c796989303e8b027c51796dc5efe70388d43915209aef157382fc74bdd9b1b260b","first_seen":"2023-04-07T00:16:00Z","last_seen":"2026-06-17T20:48:13.327627Z","times_seen":5056,"resource_available":false,"data":null}},"time_used":554,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":554,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/js/layer_mobile/layer.js?v=1781714321","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.498Z","timestamp":1781714321498,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/js/layer_mobile/layer.js?v=1781714321 HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 21 Apr 2023 07:22:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"644239a0-d02\"\r\nexpires: Thu, 18 Jun 2026 04:38:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3330,"size_decoded":1936,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3267)","md5":"b779281d1bc48453207fe2cfe0fc269f","sha1":"9d7a4f3faaa85d8abf62bb8f450146a5920144eb","sha256":"27751e247667cc06cc4985515759153864421aab1f2f5a660a79ea82548c7ed4","sha512":"92553de96e3388f4ac94924f577f72cd1cb4b2c3ecef7dbc8a86eac66d4b51ee24292d8d39d0d22c495842a30b99a622d08dafb9fbec890e4f7f24bc417e5bc9","ssdeep":"","tlshash":"8361b876f1013677662321c4e06f590f7a736591b100c802e0e4d1ada9fec4ca8bbf6d","first_seen":"2025-03-15T23:28:02.133651Z","last_seen":"2026-06-17T16:39:53.762452Z","times_seen":12,"resource_available":true,"data":null}},"time_used":550,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":550,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/184d4967369e79c741e01e5815b71794.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.586Z","timestamp":1781714321586,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/184d4967369e79c741e01e5815b71794.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 3670\r\nlast-modified: Wed, 08 Sep 2021 13:21:50 GMT\r\netag: \"6138b8ee-e56\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3670,"size_decoded":4011,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"7e9081379bab37c4cb737bc6109b1676","sha1":"8bfc84d647da70d2443fb78d718a8340a96b883f","sha256":"09d44b86ba44a144f1e60e5056c22a7ad35d3e783c6281f3412e0f761b5b37e5","sha512":"0ec46180c768cb4be6419bd8f912f2ed8df79fafade52f191f91c454bf2fd0490ee0b56c25681cf41a15a5ec7800fb76b14fce0bbb75e4b266d70d1e3ab98ae8","ssdeep":"","tlshash":"f4716dcd048506f7d01a02738811b01da3917f5911a63da0c1305effe5b78d4267375e","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.796739Z","times_seen":50,"resource_available":false,"data":null}},"time_used":3631,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":870,"receive":2761,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/upload/20210908/851d2468d967e3d35bfec8e7e12dff18.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.593Z","timestamp":1781714321593,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /upload/20210908/851d2468d967e3d35bfec8e7e12dff18.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 14881\r\nlast-modified: Wed, 08 Sep 2021 13:39:10 GMT\r\netag: \"6138bcfe-3a21\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14881,"size_decoded":15224,"mime_type":"image/png","magic":"PNG image data, 250 x 250, 8-bit colormap, non-interlaced","md5":"69be70e170d43397fd1fdd93316b56a4","sha1":"3a59d13559293f7c82884cc096a0a2e44556d979","sha256":"52398d735f894782e3387013587a9e8aa14423f541f3d9a131ca440f1d30b886","sha512":"422ef75b86bbbb21ba98f09fdd00c6aaf70ab3c7b30ddb87332bf1e1fbe87ad5c00f851fc88ec53cd20337483ac1169a29a17db4989cae333aeca1cce447eb13","ssdeep":"384:2TQWUv1by4/SxzUDjiSKf//FXKFkscSDWSZPQBF10/fH:Zv1by4/S5UDjivFFn6WSeBF10HH","tlshash":"1962c07a2b24b82fb9964b5d29f4a23f45544dc378786bac2fc074283376978636d2c1","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-17T16:39:53.747098Z","times_seen":19,"resource_available":false,"data":null}},"time_used":3800,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":864,"receive":2936,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/Dark/market_ico.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:41.601Z","timestamp":1781714321601,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/Dark/market_ico.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/mobile\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 1144\r\nlast-modified: Sun, 19 Feb 2023 16:33:36 GMT\r\netag: \"63f24f60-478\"\r\nexpires: Fri, 17 Jul 2026 16:38:41 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1144,"size_decoded":1485,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"c38cb6c12bd6e6adbb91b7354c595667","sha1":"9d0e94671c92c9a2b5aec513b548b975be933092","sha256":"0955cb8820daf195e1576c0adc5fcc8d986a35194e41c7440fc9f2cb85cd2627","sha512":"b445030a796adf66a9a740cd1a69409c8db93270e3972f7ce725e45434e01f57d3f35ece660102f691cdde2805201653b2483a0d064732032e72fd3972fefbb8","ssdeep":"","tlshash":"fe2193cbc80e8822d72e796249b9a91bc0206a4144ed7a6d7503c7a6ab7748fcc426d2","first_seen":"2025-02-26T18:00:22.735634Z","last_seen":"2026-06-17T17:53:17.707709Z","times_seen":31,"resource_available":false,"data":null}},"time_used":3976,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":857,"receive":3119,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oandaofficial.com/static/mobile/imgn/table-bg.png","fqdn":"oandaofficial.com","domain":"oandaofficial.com","tld":"com"},"ip":{"addr":"35.240.204.184","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://oandaofficial.com/mobile","date":"2026-06-17T16:38:45.593Z","timestamp":1781714325593,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oanda-group.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 06 May 2026 12:10:33 GMT","end":"Tue, 04 Aug 2026 12:10:32 GMT"},"fingerprint":{"sha1":"BE:96:10:96:6D:AF:D9:54:92:C3:E8:04:76:07:B9:20:43:53:56:A4","sha256":"5A:6C:02:99:13:85:09:68:6A:91:FE:1B:E8:FD:43:6D:15:E3:AA:28:86:1D:9A:4C:2B:04:36:5F:4F:DF:51:AE"}}},"request":{"raw":"GET /static/mobile/imgn/table-bg.png HTTP/1.1\r\nHost: oandaofficial.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://oandaofficial.com/static/mobile/css/mobile.css?v=178171432121\r\nCookie: lang=en-us; PHPSESSID=abe8467c670c9e2a112a75e49b3e5088\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:38:45 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":279,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-18T07:31:10.69243Z","times_seen":528104,"resource_available":true,"data":null}},"time_used":534,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":534,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"oandaofficial.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}