{"report_id":"60610330-5cb1-40db-8f8a-ca3e1dbef7d7","version":6,"status":"done","tags":[],"date":"2026-04-28T13:33:12Z","url":{"schema":"http","addr":"link.trustwalletondofinance.com","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"13.249.8.43","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"link.trustwalletondofinance.com/","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"title":"twFINON","dom":{"size":4150,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"0d53035f0f491d7fe9d7f70d067c1d44","sha1":"e8a860001caf3546914fad62d4536c659707fdbe","sha256":"74c274d704fc0f5cd8ecb5340c61f0aa2c72d71dd6ece87b71517afe781f3752","sha512":"eb1821915092725626af8eeab20ffe3da70d082055bb77105bfcfa6b2bee8e7366cbc3707433027ceb29176020e64cac36a1ca8428a8e5c3c2b00d97b9afa27c","ssdeep":"96:xTux2eSCxvQaniCdAChU8yjYyieBCOp/CZYPcgiG:G2eSCBQaniCdACG8yjYyieBCOp/CZYUg","tlshash":"f381558a65f2109f201764325abe93492f16e42b964acd447fddb2e09f81d988cf3764","dom_hash":"domhashbb221e6cf896a6f094816a31cecfb78f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"link.trustwalletondofinance.com","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"13.249.8.43","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-02T13:33:12Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"link.trustwalletondofinance.com","ip":{"addr":"52.84.50.12","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":8,"request_count":4,"received_data":4156388,"sent_data":1919,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"link.trustwalletondofinance.com/","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"52.84.50.12","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"4007c3af907a3926ed35735b47304b24","sha1":"607c1031a3b425e7b164e4ea2deb418fc37913d6","sha256":"7cb297c2179694230ef2f60564236ea71c82b33d5eb66724d53f67b5d3446621","sha512":"41bc54d8166ff551cf6c9cba1c247de87c3583393664dcef848018afdd03970255d1e58ac8fcad0a1bbff63e9b0df8788686a6632d51e801c20d482d9e8effa8","ssdeep":"","tlshash":"0ec08c8ec8a494d704f234fa4c47930032ab408a505030a17bef43806bd3d2c179b800","size":182,"data":"","first_seen":"2026-04-28T13:33:19.521846Z","last_seen":"2026-04-28T13:43:40.949754Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"link.trustwalletondofinance.com/assets/index-ZH7LSshG.js","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"52.84.50.12","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"788ccd842994af6746cc8be8b60457d0","sha1":"9a4f0f7317db33207f0fe44fa1ea5cc2a77ff580","sha256":"88716b41c4f90654623a3827715209839bb928341ec5dabbedd51faef25a0829","sha512":"9216087fdb6209ae1ccf4b52bca45bf41838e7457fb858d6f1d1b4841667280402e1d8ca487830d9f2f2ba3627ece7bf8f9f01f1d70aba13039ea68703e39a4d","ssdeep":"49152:Vaw5UpSovb6se3wtlRhFF1IEGWjM5152WYnVfYqNYyD1koWCescxloc1WxA5FD7T:nUpSDNPqmyD1XWCemKGj2rbL","tlshash":"83167db073a5b465479345d8147b1101f238a842b40dc0ecf7ec9af76fa998a85bbf39","size":4140969,"data":"","first_seen":"2026-04-28T13:33:19.524722Z","last_seen":"2026-04-28T13:43:40.95116Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"link.trustwalletondofinance.com/","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"52.84.50.12","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-28T13:32:50.381Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.trustwalletondofinance.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"67:90:EB:80:55:33:B1:44:DC:A8:9E:F5:79:CE:8F:C6:AB:2F:AE:37","sha256":"18:98:BD:FC:09:93:8E:EB:DD:4C:EB:43:ED:8B:34:39:73:66:FA:ED:5F:79:7E:88:4B:EC:DF:9D:8D:99:34:49"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: link.trustwalletondofinance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nserver: nginx\r\ndate: Tue, 28 Apr 2026 13:32:51 GMT\r\nlast-modified: Tue, 07 Apr 2026 02:05:54 GMT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\netag: W/\"69d46682-102d\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 5f042aad530968241af9b660cec6b106.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: ake07w3qi_Zd16PZu5GAYnnZXV9PBMw0wzpD_3P2jP4qZvkNnDWUmQ==\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":4141,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"fa462c0d9da01a84aba6717bab8579ca","sha1":"f855d1b501801c4b4927ba6ed10de7156d762142","sha256":"f205be44d2675929d3c028beee0a1991cf96fdce41650c34faf7c79581182b82","sha512":"007573787c40347274cb271dc6514bb94e116b4789c91646b33ec51808bbe2a007d576d4e89e8b09af679d5af8d7fecbd7eb5db1b8d7faca376ebcd7be424845","ssdeep":"96:dou12eSCxvQaniCdAChU8yjYyieBCOp/CZYJcgie:j2eSCBQaniCdACG8yjYyieBCOp/CZYCg","tlshash":"0081858965f244df201764325bbf92452f16e42b964acc453fcdb2e49f81e988cf37a0","first_seen":"2026-04-28T13:33:19.512226Z","last_seen":"2026-04-28T13:43:40.945867Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1563,"timings":{"blocked":607,"dns":105,"connect":1,"send":0,"wait":350,"receive":0,"ssl":498},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"link.trustwalletondofinance.com/assets/index-ZH7LSshG.js","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"52.84.50.12","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://link.trustwalletondofinance.com/","date":"2026-04-28T13:32:51.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.trustwalletondofinance.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"67:90:EB:80:55:33:B1:44:DC:A8:9E:F5:79:CE:8F:C6:AB:2F:AE:37","sha256":"18:98:BD:FC:09:93:8E:EB:DD:4C:EB:43:ED:8B:34:39:73:66:FA:ED:5F:79:7E:88:4B:EC:DF:9D:8D:99:34:49"}}},"request":{"raw":"GET /assets/index-ZH7LSshG.js HTTP/1.1\r\nHost: link.trustwalletondofinance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://link.trustwalletondofinance.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nserver: nginx\r\ndate: Tue, 28 Apr 2026 07:51:52 GMT\r\ncontent-encoding: gzip\r\nlast-modified: Tue, 07 Apr 2026 02:06:12 GMT\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 28 Apr 2026 19:51:52 GMT\r\ncache-control: max-age=43200\r\netag: W/\"69d46694-3f2fa9\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 5f042aad530968241af9b660cec6b106.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: F6pILJJfUJ1OTtKJLZYHZTcATtk0gkQaqa5TGi9xGpEEH-soCAWQJQ==\r\nage: 20459\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4140969,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20952)","md5":"b597a6be59752a500cc0e5e12ae3277b","sha1":"ebc7d9a89c4024e51f055277d021279d83c4267c","sha256":"0c0ec704e65d2295bbd312cce7485a40ed4ae471077b66d3f478e123e8981aba","sha512":"172d84632c834e125a128676b1e168a2e32500fa08eaf94452ab6387d9a39dfc182acb66a21f25082cef04867dc39460e053b7bc05f4e5b65b1d207cd91f80f2","ssdeep":"24576:Vaw5UpSX42eb6se3waulRhFF1IEGWjM5152WYnVfYqNS:Vaw5UpSovb6se3wtlRhFF1IEGWjM515r","tlshash":"9a255cf27666b0d403b315c418571102f129ac84e80d50ddf6fccaaf7eba989956bf3a","first_seen":"2026-04-28T13:33:19.514266Z","last_seen":"2026-04-28T13:43:37.242269Z","times_seen":2,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"link.trustwalletondofinance.com/icons/icon-192.png","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"52.84.50.12","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://link.trustwalletondofinance.com/","date":"2026-04-28T13:32:52.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.trustwalletondofinance.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"67:90:EB:80:55:33:B1:44:DC:A8:9E:F5:79:CE:8F:C6:AB:2F:AE:37","sha256":"18:98:BD:FC:09:93:8E:EB:DD:4C:EB:43:ED:8B:34:39:73:66:FA:ED:5F:79:7E:88:4B:EC:DF:9D:8D:99:34:49"}}},"request":{"raw":"GET /icons/icon-192.png HTTP/1.1\r\nHost: link.trustwalletondofinance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://link.trustwalletondofinance.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 8255\r\nserver: nginx\r\ndate: Mon, 27 Apr 2026 02:17:48 GMT\r\nlast-modified: Mon, 09 Mar 2026 08:48:57 GMT\r\naccept-ranges: bytes\r\netag: \"69ae8979-203f\"\r\nexpires: Mon, 04 May 2026 02:17:48 GMT\r\ncache-control: max-age=604800, public, max-age=604800\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 5f042aad530968241af9b660cec6b106.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: Jvy7lRK9TDiwcUgeX6_uQsCXQMEV8-BAT9s9fEFw3sr-WuTPGYOAlw==\r\nage: 126904\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8255,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"1721a0bb3954cfabc122247f29c6b8cc","sha1":"ef880750e5969c61c866429ba697072841573670","sha256":"463e7fa8189106636ea450b0b8cd561fa7a478d1c55f3f225c30a01068c2aca8","sha512":"296d321e70f6a9436311cb55d847b6d8a69c13bc264ba5c442d5d2561db81763e191202b0f3eefad13ee8b8022d417dc49286000c54677ed60103bad72c52db5","ssdeep":"192:5o7WW1VcLOpyHTAV1o/jCKyICiNc6fIqdpnEdGyDaSed/SKY/+5z:KD1VZmc1o/2KyZbsIqdREd7DaSEY/+5","tlshash":"7802b0383f1eb8216e408a31b7c18258c93b51610b7758e94a94b464497f2faff98716","first_seen":"2026-04-28T13:33:19.516505Z","last_seen":"2026-04-28T13:43:40.944133Z","times_seen":3,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":189,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"link.trustwalletondofinance.com/assets/favicon-DrxHISqg.svg","fqdn":"link.trustwalletondofinance.com","domain":"trustwalletondofinance.com","tld":"com"},"ip":{"addr":"52.84.50.12","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://link.trustwalletondofinance.com/","date":"2026-04-28T13:32:52.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.trustwalletondofinance.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 24 Feb 2026 00:00:00 GMT","end":"Wed, 09 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"67:90:EB:80:55:33:B1:44:DC:A8:9E:F5:79:CE:8F:C6:AB:2F:AE:37","sha256":"18:98:BD:FC:09:93:8E:EB:DD:4C:EB:43:ED:8B:34:39:73:66:FA:ED:5F:79:7E:88:4B:EC:DF:9D:8D:99:34:49"}}},"request":{"raw":"GET /assets/favicon-DrxHISqg.svg HTTP/1.1\r\nHost: link.trustwalletondofinance.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://link.trustwalletondofinance.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/svg+xml\r\ncontent-length: 854\r\nserver: nginx\r\ndate: Mon, 27 Apr 2026 02:17:50 GMT\r\nlast-modified: Tue, 07 Apr 2026 02:06:08 GMT\r\naccept-ranges: bytes\r\netag: \"69d46690-356\"\r\nexpires: Mon, 04 May 2026 02:17:50 GMT\r\ncache-control: max-age=604800, public, max-age=604800\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 5f042aad530968241af9b660cec6b106.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: m__VNf6BbZxgCHJRmlIkAju3Y3SDunuXE2ZaZAoO4Su8iDnORsVtfA==\r\nage: 126902\r\nvary: Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":854,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1a2ea22e9e3715f46aa10c5d5d515802","sha1":"8a1c176baabdea1858dbbfa49ebdd2bd08e84fa7","sha256":"c3729a732e44aec8b096f4b888d211efe395566452e3eccc7c6743467158b148","sha512":"150f8e44dbc8627b7a6b06b4098facabd4465b6bbd4279a7fe8a15cce065607bc65e3787d6497a530b9defe1c8c79d105dfc87549b47d7ed230d91c07f997038","ssdeep":"","tlshash":"4a0108268798e62bed5ed20ed058e420312650e76bc8c245f2be9f4f5f145864c477d9","first_seen":"2024-01-20T14:08:29Z","last_seen":"2026-04-28T13:43:40.942947Z","times_seen":166,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"link.trustwalletondofinance.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}