{"report_id":"5d0209bc-f1d9-4cf1-b0d4-ca2be0bb7a00","version":0,"status":"done","tags":[],"date":"2026-06-20T08:14:27Z","url":{"schema":"http","addr":"moonshots-x.lol","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"104.21.3.143","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"New Private Tab","dom":{"size":4247,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"b009a0785e1e4034bfe7ec2473fb0506","sha1":"6c492dd67d491ed4beaadf63b2eb8847d49ae8a7","sha256":"9f0013b1f70e073c59baa424c8087ee1baae101222c4733986bbf64211047b50","sha512":"74a4524e5fbc0d45ed3371318f8c0162ddc344977d63c90bd80cef6f4ad4e0206dcb542b726349721cbbd830b6f6e2169c97fa209bb71f751d17e2c415aa2301","ssdeep":"96:DJFs1Bx13gb61j1l0H7gx10UFZV4jl22D+i8kDNLeOl:H61rpfmULV4jM2D+z0sI","tlshash":"1e9161a544f5663b18a386a9e9d07f07af817607ce8d29407baf40e31f8bd54c86f20c","dom_hash":"domhashe55c5b0a9b0c37e90d2a11b31f2bc448","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"moonshots-x.lol","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"104.21.3.143","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-25T08:14:27Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-06-14T22:45:09.968061Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":487,"comment":"","tags":null,"fingerprints":null},{"fqdn":"moonshots-x.lol","ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-04-04","domain_rank":0,"first_seen":"2026-06-20T08:09:54.415014Z","last_seen":"2026-06-20T08:09:54.415014Z","alert_count":6,"request_count":3,"received_data":2564913,"sent_data":1356,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"moonshots-x.lol/","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"be3d076b5f7bb36a63acbc82c4e5b6b7","sha1":"88bdb1fcb761db1b2142922bce22df8f2b10fc65","sha256":"6607bd1958dc86be23f3d3b8c5bbf6b13c8520ade38bf06f1c6ff7d0e8819893","sha512":"bb198602b972ea8442afeeb6755b6c521b59f3f13c73c3566581efab4ef3147ab0658d34c2b53f2d069890f5451873d0554f8ab3260afcb8c1404fc0ae67bd1b","ssdeep":"","tlshash":"6f115b26122632753c8ef0ee5db6dc4d7a7f100be90960a0b59ed08d3930b5544f76dc","size":949,"data":"","first_seen":"2026-06-07T13:49:40.147319Z","last_seen":"2026-06-20T08:14:30.616682Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshots-x.lol/","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b71e36fff66466d94d73cd41c60dcbbc","sha1":"8403a4d7b73d3dc79e961eeb5c4bea6477d3227d","sha256":"ea33462c739e825659542778ee8a25be997b4f7732d33f4d48522573201bdce1","sha512":"7801f849d85981f85158ad983e35656c22274746b2d53d9421b3c2aed9a54ec468f8e34aa9bf231c5bb9968be0510f6a5be1ae9ad67bfead36e045dd45b1fca5","ssdeep":"96:DVs1G9gQKjrWxh9Gwzwz0/x3n7S6C2S8ig7XtfxvNFm:DyAgQKjTwzwz0/x3n7S6C2S8DTm","tlshash":"5c919d6fbbbb0534daab753a5befa38477308003140ae1013e6c85529fe5f9415bbac5","size":4243,"data":"","first_seen":"2026-06-20T08:10:14.64605Z","last_seen":"2026-06-20T08:14:30.618277Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshots-x.lol/","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"6d110cab4c9a3e519bc781c5e94b6225","sha1":"eace89854178b1a671652ade22668c1fb68b2993","sha256":"822178fa13ebe3efe3b19ab2dd47a3893f221768e5f648db9c60fcef7be92ae9","sha512":"c2ea484bf8638494a215e3e7fa30bb033d9936638652404ab20808a791c605d89f7d7d1eb0510dc4040e9f25ac6656a8a2b95e8de47aab7354a8e604734a8b83","ssdeep":"192:JH45oLP/OQNjTTns5vm5JW249rXpyPf1pfurMrEWvhs0A2g25XTMgH4:JLZVjW9OpfXKo5gW4","tlshash":"0402721a7ae30875ace7213fabefa39879a484434849d4103d4cd4554fe0f616abfbe4","size":8322,"data":"","first_seen":"2026-06-20T08:10:14.652249Z","last_seen":"2026-06-20T08:14:30.619659Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshots-x.lol/","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"0b4020bebf4d53ae3bdbe908114b38fd","sha1":"be27935df3138e5d531b745cc5a728b4a7c20dd6","sha256":"4d363f44eea8055c88910fad06d90036bd97662a886644a7ea2624c89ac6de67","sha512":"6ffac162ee647b39e2167d434d1d23912fad3c8259cd26c2f2a6aa3e28e54206365838bad412f470c76fc1c2666be1f05a711384dad94058bfaa3cf2be2d8b00","ssdeep":"3072:Lz0Usp3z0UsfKJvtwkH5E40EisJFItE2SjTEZSo/e1h07lcJhB9jmGJbTWA5rNUi:v5SvEZPsnpJT9","tlshash":"609443f8a2c7550fc7cf05c6bdf289c8d871487ed305263aaa03e695ecacce158d2995","size":418610,"data":"","first_seen":"2026-05-12T17:14:33.828157Z","last_seen":"2026-06-20T08:14:30.620837Z","times_seen":206,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshots-x.lol/ZtRX1q3x9b.js","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6be6da703acdbbc7a74072c08825a123","sha1":"d427f54db168986bb6593b43c3a8f6f67bab68eb","sha256":"ff556fffacf35d49997435ffe4aa0932d767703f02613a45e0e993b1c4b9f104","sha512":"4af88547d0e9b8acf3064639b0eef0a76c595165878c068920d4dd2df1340b0c19734c052d5e83e86c53135551f05c77f29e53d848020d37995b88db7aeafeea","ssdeep":"3072:6z0Usp3z0UsfEBLBbM0OOalwXYoX5EK0EI+5iSPFErgim/h07lcJhB9jmGJbTWAz:NnM0VyrBS9ErNwZPJTF","tlshash":"6d9441f966c2550ed3cf85c6bdf28dccd871487eeb012636aa02e595ec6cdf048c2a95","size":440892,"data":"","first_seen":"2026-05-21T05:01:14.132301Z","last_seen":"2026-06-20T08:14:30.612158Z","times_seen":182,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"v2.7","filename":"https://fonts-css2-sans.b-cdn.net/index-3ebeq329.js line 1 \u003e Function","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj49 class:HTMLDivElement contentDomReference:map[browsingContextId:3 id:0.7632090972983478] extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[attributes:map[] attributesLength:0 isConnected:false kind:DOMNode nodeName:div nodeType:1] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj50 class:Date extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[timestamp:1.781943243691e+12] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj51 class:Function displayName:value/this.func extensible:true frozen:false isAsync:false isClassConstructor:false isError:false isGenerator:false location:map[column:14772 line:1 url:https://cdn.jsdelivr.net/npm/disable-devtool] ownPropertyLength:4 parameterNames:[] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj113 class:Array extensible:true frozen:false isError:false ownPropertyLength:51 preview:map[items:[map[actor:server1.conn0.watcher14.process7//obj114 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj115 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj116 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj117 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj118 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj119 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj120 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj121 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj122 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj123 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object]] kind:ArrayLike length:50] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj185 class:Array extensible:true frozen:false isError:false ownPropertyLength:51 preview:map[items:[map[actor:server1.conn0.watcher14.process7//obj186 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj187 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj188 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj189 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj190 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj191 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj192 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj193 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj194 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj195 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object]] kind:ArrayLike length:50] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj257 class:Array extensible:true frozen:false isError:false ownPropertyLength:51 preview:map[items:[map[actor:server1.conn0.watcher14.process7//obj258 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj259 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj260 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj261 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj262 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj263 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj264 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj265 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj266 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj267 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object]] kind:ArrayLike length:50] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"warn","text":"You don't have permission to use DEVTOOL!【type = 6】","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj269 class:HTMLDivElement contentDomReference:map[browsingContextId:3 id:0.7632090972983478] extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[attributes:map[] attributesLength:0 isConnected:false kind:DOMNode nodeName:div nodeType:1] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj270 class:Date extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[timestamp:1.781943243691e+12] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj271 class:Function displayName:value/this.func extensible:true frozen:false isAsync:false isClassConstructor:false isError:false isGenerator:false location:map[column:14772 line:1 url:https://cdn.jsdelivr.net/npm/disable-devtool] ownPropertyLength:4 parameterNames:[] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"log","text":"map[actor:server1.conn0.watcher14.process7//obj333 class:Array extensible:true frozen:false isError:false ownPropertyLength:51 preview:map[items:[map[actor:server1.conn0.watcher14.process7//obj334 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj335 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj336 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj337 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj338 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj339 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj340 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj341 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj342 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object] map[actor:server1.conn0.watcher14.process7//obj343 class:Object extensible:true frozen:false isError:false ownPropertyLength:500 sealed:false type:object]] kind:ArrayLike length:50] sealed:false type:object]","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"warn","text":"You don't have permission to use DEVTOOL!【type = 6】","filename":"https://cdn.jsdelivr.net/npm/disable-devtool","line_number":0,"column_number":0},{"level":"error","text":"Failed to import Coinbase Wallet SDK:error loading dynamically imported module: https://data-image-svg--base64.b-cdn.net/assets/index-65381a41.js","filename":"https://data-image-svg--base64.b-cdn.net/assets/index-b637b742.js","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/ethers@6.16.0/dist/ethers.umd.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moonshots-x.lol/","date":"2026-06-20T08:14:02.680Z","timestamp":1781943242680,"http_version":"HTTP/2","security_state":"secure","security_info":null,"request":{"raw":"GET /npm/ethers@6.16.0/dist/ethers.umd.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://moonshots-x.lol/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-20T12:29:39.37956Z","times_seen":16579301,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshots-x.lol/ZtRX1q3x9b.js","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moonshots-x.lol/","date":"2026-06-20T08:14:02.273Z","timestamp":1781943242273,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshots-x.lol","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 15:49:21 GMT","end":"Mon, 31 Aug 2026 15:49:20 GMT"},"fingerprint":{"sha1":"98:8C:79:A7:7A:61:A4:E9:DB:D5:C3:5C:E7:BC:7C:A7:E4:87:55:80","sha256":"9D:0F:76:2A:FB:97:8D:1E:4E:D8:EA:A1:AA:9C:49:CC:E8:BF:34:B6:BA:A3:39:DC:51:7A:5F:79:B9:1D:49:81"}}},"request":{"raw":"GET /ZtRX1q3x9b.js HTTP/1.1\r\nHost: moonshots-x.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://moonshots-x.lol/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 20 Jun 2026 08:14:02 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sun, 17 May 2026 08:21:56 GMT\r\netag: W/\"6a097aa4-6ba3c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 274\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gnYkMkIXs6zfjjOFD4V1ArB%2FbzwNcj1ZDGpGjYi0iU%2B43CsjsdAT7CIrhyCua9asvvZA1iz4JdplblnJnjYRfsCtgJacqOC6jpZ6B4M3Wlr7BpTb8Ruv%2FKIclOnNp%2BSOcUI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: a0e951503a0835a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":440892,"size_decoded":112981,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"6be6da703acdbbc7a74072c08825a123","sha1":"d427f54db168986bb6593b43c3a8f6f67bab68eb","sha256":"ff556fffacf35d49997435ffe4aa0932d767703f02613a45e0e993b1c4b9f104","sha512":"4af88547d0e9b8acf3064639b0eef0a76c595165878c068920d4dd2df1340b0c19734c052d5e83e86c53135551f05c77f29e53d848020d37995b88db7aeafeea","ssdeep":"3072:6z0Usp3z0UsfEBLBbM0OOalwXYoX5EK0EI+5iSPFErgim/h07lcJhB9jmGJbTWAz:NnM0VyrBS9ErNwZPJTF","tlshash":"6d9441f966c2550ed3cf85c6bdf28dccd871487eeb012636aa02e595ec6cdf048c2a95","first_seen":"2026-05-21T05:01:14.132301Z","last_seen":"2026-06-20T08:14:30.612158Z","times_seen":182,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshots-x.lol/","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T08:14:01.939Z","timestamp":1781943241939,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshots-x.lol","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 15:49:21 GMT","end":"Mon, 31 Aug 2026 15:49:20 GMT"},"fingerprint":{"sha1":"98:8C:79:A7:7A:61:A4:E9:DB:D5:C3:5C:E7:BC:7C:A7:E4:87:55:80","sha256":"9D:0F:76:2A:FB:97:8D:1E:4E:D8:EA:A1:AA:9C:49:CC:E8:BF:34:B6:BA:A3:39:DC:51:7A:5F:79:B9:1D:49:81"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: moonshots-x.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 20 Jun 2026 08:14:02 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sun, 17 May 2026 08:21:56 GMT\r\nvary: accept-encoding\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\npriority: u=0,i\r\nage: 274\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dYKffgY9emtEsysUqAwbBlK9yI2AeRzoOtbRsBBJRqyHjPJyNXXO7qNJ%2Bkb9qU9aaqOgKOrsQvxReBOFCDPSVCEYukcj%2FbOvlmJRA2JRORxWNYfi8nCxAga7vTi2yGvb%2FnU%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0e9514e89d035a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2121249,"size_decoded":1392237,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (6823)","md5":"34c0109a904a11390c362f2f4b353a7f","sha1":"5b2f6a275a98532be6bdc12ce9c3f9e54795c026","sha256":"019e8968e9ae719dbce9ae6a6e4102c8b6fd75552e3c186ba6c7c5d04264d869","sha512":"e3745a7202e4b4bf8a5ff8915a044e81681e29a68dfd659fdcc72c84f3cbffae99a4f14d61135e6e668873f36fd30433bc9371c2d07692d1cd52e6e8664d21ef","ssdeep":"12288:SQugnoEBJnZ2MVVCfIcWL0bBGhEP8R6GWPDsdYENYuNlbUfxr8Z27:1Z2CVNUCEdGms7GxQZ27","tlshash":"d525ce3664b295752e23b4b923ef604c7e35f047d90ddea8becc2211cf866b49d62748","first_seen":"2026-06-20T08:10:14.636355Z","last_seen":"2026-06-20T08:14:30.613944Z","times_seen":2,"resource_available":true,"data":null}},"time_used":236,"timings":{"blocked":-1,"dns":42,"connect":22,"send":0,"wait":35,"receive":137,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshots-x.lol/p2.slim.umd.js","fqdn":"moonshots-x.lol","domain":"moonshots-x.lol","tld":"lol"},"ip":{"addr":"172.67.130.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moonshots-x.lol/","date":"2026-06-20T08:14:02.317Z","timestamp":1781943242317,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshots-x.lol","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 15:49:21 GMT","end":"Mon, 31 Aug 2026 15:49:20 GMT"},"fingerprint":{"sha1":"98:8C:79:A7:7A:61:A4:E9:DB:D5:C3:5C:E7:BC:7C:A7:E4:87:55:80","sha256":"9D:0F:76:2A:FB:97:8D:1E:4E:D8:EA:A1:AA:9C:49:CC:E8:BF:34:B6:BA:A3:39:DC:51:7A:5F:79:B9:1D:49:81"}}},"request":{"raw":"GET /p2.slim.umd.js HTTP/1.1\r\nHost: moonshots-x.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://moonshots-x.lol/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sat, 20 Jun 2026 08:14:02 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sun, 17 May 2026 08:21:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\nage: 274\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6sHdDMnTF2EJhKmqk4pHF3XDuk2R7rSPuTzW0SoHxeww5O6whcVV%2FDUFJdKSW9b8Q1uyPlm%2Bg0CP%2FbnU4NfwoDOvW%2B0t2o0TfT9r9mDikvrp6tucqzHGe8%2FOFKkKlO%2Bm9bU%3D\"}]}\r\ncf-ray: a0e951507a0f35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-20T12:29:39.37956Z","times_seen":16579301,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"moonshots-x.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}