{"report_id":"65b38c46-4ca2-4c2e-a325-d77869801b16","version":6,"status":"done","tags":[],"date":"2026-05-11T12:38:31Z","url":{"schema":"http","addr":"sgaibingx.com","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":0,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"title":"undefined","dom":{"size":37688,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (31206)","md5":"d9c08fbc9b0adce4543fdcc5c9d018b0","sha1":"7503feed3e8d233c47863c28bd7598ccb2e0f957","sha256":"0ec9af4cd932796d697f70aa46f67e0171147ede98f98afe637b34f3fd3668cb","sha512":"629facf6891d273e19e73a477763389db8bd37bdab0ef01bfe009f72a3a8114c5c732a904ec5ea9b568b1f222b99d38558fec70fa9878d3ba554dfcc40bea5f7","ssdeep":"768:ExQxz2lKHL3FngrSvnhrSunsrSxndrScn4rSmn3rSGnhrSBfqNBENiYY84I:ExkSKHxngrSvnhrSunsrSxndrScn4rSb","tlshash":"08031f30e600906692a39bc3f4257e187176f71ff48dcc44baac4c925fe3da5a9a9473","dom_hash":"domhash8ac002d4bc006e3693e8d615346c98bb","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"sgaibingx.com","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":0,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-15T12:38:31Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":16,"urlquery":0,"analyzer":2}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:13Z","timestamp":1778503093,"ip_dst":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"ip_src":{"addr":"Client IP","port":49504,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:13.928188+0000\",\"flow_id\":1734375669877472,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":49504,\"dest_ip\":\"47.254.218.26\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"api-admi-malai.oss-ap-southeast-3.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":912,\"bytes_toclient\":6423,\"start\":\"2026-05-11T12:38:13.576224+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:13Z","timestamp":1778503093,"ip_dst":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"ip_src":{"addr":"Client IP","port":49520,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:13.949795+0000\",\"flow_id\":1693010839849937,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":49520,\"dest_ip\":\"47.254.218.26\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"api-admi-malai.oss-ap-southeast-3.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6423,\"start\":\"2026-05-11T12:38:13.576465+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"ip_src":{"addr":"Client IP","port":49532,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.065646+0000\",\"flow_id\":2242607739948070,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":49532,\"dest_ip\":\"47.254.218.26\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"api-admi-malai.oss-ap-southeast-3.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":912,\"bytes_toclient\":4662,\"start\":\"2026-05-11T12:38:13.576550+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"ip_src":{"addr":"Client IP","port":49552,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.072763+0000\",\"flow_id\":2071552077450493,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":49552,\"dest_ip\":\"47.254.218.26\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"api-admi-malai.oss-ap-southeast-3.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6423,\"start\":\"2026-05-11T12:38:13.576765+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"ip_src":{"addr":"Client IP","port":49548,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.079680+0000\",\"flow_id\":183823756545143,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":49548,\"dest_ip\":\"47.254.218.26\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"api-admi-malai.oss-ap-southeast-3.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6423,\"start\":\"2026-05-11T12:38:13.576631+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"ip_src":{"addr":"Client IP","port":49516,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.099059+0000\",\"flow_id\":543011871509379,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":49516,\"dest_ip\":\"47.254.218.26\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"api-admi-malai.oss-ap-southeast-3.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6423,\"start\":\"2026-05-11T12:38:13.576387+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58302,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.220624+0000\",\"flow_id\":144838338360468,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58302,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":789,\"bytes_toclient\":6667,\"start\":\"2026-05-11T12:38:13.734356+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58314,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.226062+0000\",\"flow_id\":1681075125695956,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58314,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"UNDETERMINED\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":953,\"bytes_toclient\":6196,\"start\":\"2026-05-11T12:38:13.734676+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58306,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.247774+0000\",\"flow_id\":2010623671350632,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58306,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":789,\"bytes_toclient\":6667,\"start\":\"2026-05-11T12:38:13.734568+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58294,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.282075+0000\",\"flow_id\":2024462055977961,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58294,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":941,\"bytes_toclient\":6667,\"start\":\"2026-05-11T12:38:13.734185+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"ip_src":{"addr":"Client IP","port":49554,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.325656+0000\",\"flow_id\":576903458433940,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":49554,\"dest_ip\":\"47.254.218.26\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"api-admi-malai.oss-ap-southeast-3.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":912,\"bytes_toclient\":6423,\"start\":\"2026-05-11T12:38:13.830356+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58334,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.468979+0000\",\"flow_id\":296845820889531,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58334,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":941,\"bytes_toclient\":6667,\"start\":\"2026-05-11T12:38:13.985531+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58326,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.479812+0000\",\"flow_id\":1144380307343738,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58326,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":789,\"bytes_toclient\":1654,\"start\":\"2026-05-11T12:38:13.985466+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58322,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.482353+0000\",\"flow_id\":642414594558205,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58322,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":789,\"bytes_toclient\":6667,\"start\":\"2026-05-11T12:38:13.985341+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:14Z","timestamp":1778503094,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58318,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:14.894689+0000\",\"flow_id\":113974703371821,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58318,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":7,\"bytes_toserver\":1372,\"bytes_toclient\":6667,\"start\":\"2026-05-11T12:38:13.734765+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-11T12:38:15Z","timestamp":1778503095,"ip_dst":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":58304,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-05-11T12:38:15.014349+0000\",\"flow_id\":1249014300620025,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.6\",\"src_port\":58304,\"dest_ip\":\"8.141.181.162\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-upload.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":3,\"bytes_toserver\":1676,\"bytes_toclient\":1654,\"start\":\"2026-05-11T12:38:13.734457+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"webapi.sgaibingx.com","ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"domain_registered":"2026-05-08","domain_rank":0,"first_seen":"2026-05-11T12:38:34.38378Z","last_seen":"2026-05-11T12:38:34.38378Z","alert_count":13,"request_count":13,"received_data":55364,"sent_data":6647,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"sgaibingx.com","ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"domain_registered":"2026-05-08","domain_rank":0,"first_seen":"2026-05-11T12:38:34.384905Z","last_seen":"2026-05-11T12:38:34.384905Z","alert_count":48,"request_count":48,"received_data":3817117,"sent_data":20379,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2025-03-07T08:58:53.829979Z","last_seen":"2025-12-28T04:21:24.46274Z","alert_count":0,"request_count":8,"received_data":176539,"sent_data":3659,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"echo-upload.oss-cn-beijing.aliyuncs.com","ip":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2026-05-11T12:38:34.385077Z","last_seen":"2026-05-11T12:38:34.385077Z","alert_count":0,"request_count":6,"received_data":33698,"sent_data":2850,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e49dd1af2b02da7c6a3d36b8a2b18e64","sha1":"bfd182f4650c3dcdb4fcbc220d73e67c90bd7997","sha256":"d1c7f9619d7210a25d887b487f03a689d795310110092e02db0dee1abf9bf329","sha512":"dafa9ec9883faa8aa3ea289fc0193a1f00c284b63315e23c034b36a8f83bb7c05286147fdc35ac1534390a888886a2a4e7460ab45b739ef56582f29d69a18873","ssdeep":"","tlshash":"e5c08cc8a1d36e012606681050bf25e890344026b04c2b029ca8d8683e6a1b08233e98","size":145,"data":"","first_seen":"2026-05-11T12:38:42.26652Z","last_seen":"2026-05-11T12:41:38.581797Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"60d048e4c2a1eb5d800d7af368cc92ac","sha1":"7ee48e9063a598ebd38d8b0c7430bd748c810c56","sha256":"fc5dd52f9a7f2cd9ac63f3d4e537d6a04f9d97421d87aebf080b38d981c6fb80","sha512":"d3eebc743f8fa489e50ff88bb1c004951f637a926125d6b6698d3d37f899147e2cc425f4ca1b10efdc2e5a69db4ba67f5615281c07adec44f17dd4aaa85d72e2","ssdeep":"","tlshash":"e8c08cc9b1e33d001602641050bf24e490244426b04c1b82ddd4ec492e220b08233e98","size":145,"data":"","first_seen":"2025-09-27T05:00:10.591622Z","last_seen":"2026-05-11T12:41:38.568887Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ec4c1d5196aba60d94e140a373eff54b","sha1":"3dd138ec0af6761c2a33a2c83029bfa4f664dbc5","sha256":"ab39237c410b7884ae76d0bf39fe69f1291c24374f6ed095b135ac23fd21c96b","sha512":"5bb9e931ec252a36f73a85dd6e945708c1fef54fc720cdffb90765e78c51c81080ac95ef1e567bc5ae9863c243de0882e1183561e754d82e123890b96d47fa4a","ssdeep":"","tlshash":"93c08cc4b0c22e001602651010bf34e89024802674481b028ce8d8a82e260b48233e9c","size":142,"data":"","first_seen":"2026-02-01T01:35:54.682726Z","last_seen":"2026-05-11T12:41:38.580804Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f3de45722edb9a9e8c3e6bd127b92fe7","sha1":"ec7ec51db78d7c871ab7e064d5321665dab42ebf","sha256":"65b126ac4f07d022b90cb8cd4519fb643ee140ba17dbba7103311c8f25cda727","sha512":"11b335ca47beecf95284ea8095def5cf112dafc28ee84dc352b25186308828ea20f3e6876b5b5d379b258bfa25549431bf2259b5601677f32cc4647e5ac83cc0","ssdeep":"","tlshash":"67c08cc4b0c32e001603651110af35e49034c066f0481b028c94dc492e230f48233e98","size":145,"data":"","first_seen":"2025-09-27T05:00:10.581706Z","last_seen":"2026-05-11T12:41:38.575873Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e21a880dd4e3258951787a42857bfaea","sha1":"d69092393af4e813929289ea3c5a180c722ed227","sha256":"b409d8c03eaa683dc7ddd1fdd40df4dccb80954fd3ee28ccd07d14415c28944e","sha512":"e340b50c449986a72c671e9f082b62ba21b40061c898e7d11b24a908efd7755559b88ced0fc5ce1002aeeb69f90b86eaf58edba7f1716ba5b7376a387ed22aee","ssdeep":"","tlshash":"45c08cc4b0d22d001602642060af24e49025442670481b028cd4d85c2e220b08233e98","size":139,"data":"","first_seen":"2025-01-03T15:55:01.306059Z","last_seen":"2026-05-11T12:41:38.570558Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c2a59594b7c750c554d59b777cf7e0a5","sha1":"cc0ac4dbb49aff978ff3ee7d7c1a27f761ba6a20","sha256":"505695da350a211f6c8dbebc42f4bdc2bd8e287e4f5611c8eaf94c81f8951468","sha512":"8fdf9120a742f4fb36ebe9f4bd7684db839a87a5773a496dc5a6e6a8403cfe7562e67463995d588160f8fe75170f338034d8676b7708873d3c0b5c84a0da3b51","ssdeep":"","tlshash":"eec08cc8a0c22d041702641011af24e890244026704c5b02cca4d8683e220b48233e98","size":139,"data":"","first_seen":"2023-05-10T15:08:47Z","last_seen":"2026-05-20T14:15:09.897279Z","times_seen":6328,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-0ecc7c64.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"9d40d7717d8977d25c55ba857b1aa331","sha1":"69f414a88036690e84b811c44e296a246cf252ad","sha256":"05addf61a6ff4ed0a0c72d2c14599149f272d85ca189f10adfd7051fb0857dfb","sha512":"f6f143180e63314f7eb539e1c395633393962c47ed676d0fc936ec97fe4329dd2f3cc85bc7868449c91cf911fa9f4861893a7bb78152b3adddf44a3d66ec6f8d","ssdeep":"1536:zPtPhzBKo1j2BRCISebSA+whSHs8ap12HSZx:ZlBKo1PISebSA+whSuJx","tlshash":"2aa35cc9a50b0eff6dbd0804b9579610216c1f93988ccc9773baae4527facd4638a71c","size":100264,"data":"","first_seen":"2026-05-11T12:38:42.236364Z","last_seen":"2026-05-11T12:41:38.567712Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"60d048e4c2a1eb5d800d7af368cc92ac","sha1":"7ee48e9063a598ebd38d8b0c7430bd748c810c56","sha256":"fc5dd52f9a7f2cd9ac63f3d4e537d6a04f9d97421d87aebf080b38d981c6fb80","sha512":"d3eebc743f8fa489e50ff88bb1c004951f637a926125d6b6698d3d37f899147e2cc425f4ca1b10efdc2e5a69db4ba67f5615281c07adec44f17dd4aaa85d72e2","ssdeep":"","tlshash":"e8c08cc9b1e33d001602641050bf24e490244426b04c1b82ddd4ec492e220b08233e98","size":145,"data":"","first_seen":"2025-09-27T05:00:10.591622Z","last_seen":"2026-05-11T12:41:38.568887Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"01dbf3f0e1749724b20dd04ab28ba059","sha1":"220719c76d93859704cb125d30de2ef4c42ba16d","sha256":"d12a541b73ee27a5ba0e6bfd5fc57e26a729e57d6c6fc79bdc40488b71eb9880","sha512":"17fc904039c47634988ed7324bff1b09881b95e6cb1d4e78c816ba00607d2797b1080074072d57e37cca053a39eb2492c6ed37324a9813656474d96e4843f669","ssdeep":"","tlshash":"31c08cc8a0d33d081a56a52155af78e490288026f4492b239ca5e85c3e2b0f09233ee8","size":157,"data":"","first_seen":"2026-05-11T12:38:42.273245Z","last_seen":"2026-05-11T12:41:38.577534Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a6c5d65e551430b1950331879b14a51d","sha1":"34d6767dc2fd9f9f5b161f4af7d580a75850105a","sha256":"1837fcfd5443eedd4b56189cae3a113e0d9701ff0c043d5fb1c1692262674880","sha512":"2b1477e3636c1c537ad7b2f376c9834ac9b30f810529053220f39695e05465cac05bbbbd0cd1886917ad9ea8ed1b28fd5ba75304c18168e05a15b32c2fc465e4","ssdeep":"","tlshash":"66c08cc8a0c22d001602641020af24e49024402670482b03cca4d8d82e220b08233e98","size":139,"data":"","first_seen":"2025-01-03T15:55:01.034291Z","last_seen":"2026-05-11T12:41:38.580295Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"cb0024a141d820b14f417d71dff50639","sha1":"dbe8e483f72be637712343df2ceb3d5c72f3e178","sha256":"64142350d82d76d517d19b5c4470f76264c5717b3dd313da5fc5118b354cac74","sha512":"27802f8ab379567efd52186754ff5f08e5f3c5739ac9e443f14c3123b544300517aff97aebb3f4489c14d77d3e12ca8fd5ebc4b24a08c7617c251aeee6e1cc63","ssdeep":"","tlshash":"f1c08cc9f1d22d001a06655050af38e4a024802b744a1b428ca4d8482e220b08333ea8","size":145,"data":"","first_seen":"2025-07-13T15:45:44.61234Z","last_seen":"2026-05-11T12:41:38.574669Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/currencyItem-bfb2dc97.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"importedModule","is_inline":false,"md5":"6c7fc330c561d804c315981183a23611","sha1":"77923b302b32c978a6ff99b0c6b6d8bfbe6914bf","sha256":"3bb6a82d7d1f2ef7c2575cd725a5cc27b9ad241a4d102fffc8a80ad3f5d5e322","sha512":"aca85fbfccc5ca8d14e525abde142634d327eefefe2d7823a1f26a84e740dc4caa119455fd4d2be0eaa99094fbe4f976cbeaaa46b9c51709cd1abb52985130cb","ssdeep":"","tlshash":"d95195adb71182b9d77ed99184ac2810172d37c73022cbd4bbde05067f1ae94d329b34","size":2534,"data":"","first_seen":"2026-05-11T12:38:42.229672Z","last_seen":"2026-05-11T12:41:38.546296Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6e6b08dc2c47899612bf4e0491d57dbf","sha1":"28eb103f9178c8b1f500a212e79d726bf668306f","sha256":"7f6df38d84115ff245fe7e10563637427f5d11fb73326f9f8d030c9e54e923e1","sha512":"5719a333b67d55c0f482fab4307f3dc9480a62dbc2528ec87864d30f1933c449c565a1ee5a4d86274b6911254483a96c3fa548cfc28abf1665efd68fed9c1d49","ssdeep":"","tlshash":"c5c08cc4a0c22d005602661010af24e890248026704c1b429ca4d8492e220b18233e98","size":139,"data":"","first_seen":"2026-03-27T06:35:36.225739Z","last_seen":"2026-05-11T12:41:38.582323Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"65cc32c48c6ca2b8b2fd44c1670ae667","sha1":"f2a116897b02c9bf0bb31247024703d913d0cd13","sha256":"83e989e9718ddc6751b336792e962c10faa616a9f3feaffc90f9c430e4c6d221","sha512":"bd8ce0e0a56f50ef5d499026d682702cf4fc60698a0152097cad28c8b889fcd4bdad15f87af7f14437f9cba7bac5e26d80af6bbc49249f7efbdc468ef39be9f4","ssdeep":"","tlshash":"11c08cc4a0c22d001602681110bf24e890244427704c5b028c98dc583e220b49237ed8","size":139,"data":"","first_seen":"2024-12-08T15:39:09.862859Z","last_seen":"2026-05-11T12:41:38.574094Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/charting_library/charting_library.min.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-05-20T11:21:40.032218Z","times_seen":962,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-fa932ca7.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"importedModule","is_inline":false,"md5":"92ea283848ed7bc3052c5ed927e4fc88","sha1":"b62fad06b73e8f24399f9dcbe8924121e8c439b9","sha256":"0196d5e29a00f7ccdb2c0d46aa32d51cb27cbcae809b8a20ddd93c8ab06f6a69","sha512":"192cabe8b6af570f220d59a64b9928f48bb80e83c5831fbd039475ff4441dfeef1bed73fa638edd6e4a5f0e22b79657b87dc8ba838bd5ff0f5e865f3603b2c03","ssdeep":"","tlshash":"6501fdf8fd0d8ebb0fb20a4001a0260014091fddfa1419e198867d661be5940d7ce32d","size":776,"data":"","first_seen":"2026-05-11T12:38:42.234029Z","last_seen":"2026-05-11T12:41:38.534692Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5fcc7474df534337bc6207ce70824bdf","sha1":"e1d3ce77a73ca60d9f5da43a17b3cc8e63deba31","sha256":"364a066dcb38fd8ce8ac5c4db05c21bbd3b811cf1209895bd9d2e4e4e86940f9","sha512":"139f90729758fc74c5b6c02b09700ba3414f6021e662572df8c8243d56043b9b861c1a2770ab09758f2c5d51c940228b0d0082cd48d06a0dd355afce4b5c7713","ssdeep":"","tlshash":"ebc08cc4b0c23d001602a42010af24e49035402ab8481b528ed4ec482f2b0b09237ed8","size":148,"data":"","first_seen":"2026-05-11T12:38:42.279472Z","last_seen":"2026-05-11T12:41:38.571099Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"66f3832186e63f9e6dc840695647afd7","sha1":"c88b5b4a0ad23b5e63454693716ea7e6e9b37a4c","sha256":"11c1c2b458ec629dcc74c85cd672bb7708e34ffb7efbb68aeaeb6ac913255b71","sha512":"5424db2d753294f6a8a6c4034187ad5b9d12787552d9c5e70b8eac316ab99076b4c3710935cc347d80726007276d9b75887bd352641dae8529f2e95695256eb1","ssdeep":"","tlshash":"efc08cc4a0c36d001a06641010bf28e49034402674881b03ac94e8482e220b08233e98","size":139,"data":"","first_seen":"2024-07-02T13:45:50Z","last_seen":"2026-05-20T14:17:45.309859Z","times_seen":3807,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"8d497124ec87cf0582c11accf344b4b8","sha1":"58649bf2ac667017f7940584185efd7b902f63d4","sha256":"c137d4439041e548d69eb02555da6da80f853e994db7604cc8ec5ac731fda79e","sha512":"4c0ad2018e896fadbdf30a9d45d69d2df758173eefb9bf576504af3483ef6bd49d9df0991343063ac5a7f185c8182b88bfc809121e492b1e4a4f1ce8aa382402","ssdeep":"","tlshash":"1211abfe291a602d6303404ed76b7801642650a9400a184177cc9a9dbb9af7dd0cfb8c","size":1048,"data":"","first_seen":"2026-05-11T12:38:42.281439Z","last_seen":"2026-05-11T12:41:38.572328Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6bfc68ca673adf29592b7f1080026574","sha1":"ea31642ffe2af1436592801a8899f159ccd82a3b","sha256":"90a28f86c845a175ad683b18ffe710f17fd7d92bdbcc4fa194446639d200cc69","sha512":"146399870300bb6b8d0aeb1a95741d9b1af123290b182c325d40837fd50efb35a9916ad72294989e0ef4ab1537e6a9bb79e033c0349f641ce5f82baeb22611c6","ssdeep":"","tlshash":"2fc080cca5f37d0516167561146f35d4d0289017704c5b02ddd4dc483f531f48237d98","size":172,"data":"","first_seen":"2025-09-27T05:00:10.576574Z","last_seen":"2026-05-11T12:41:38.575263Z","times_seen":27,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9f73ae2f6a98b3a7c455fb46db3db35a","sha1":"a7797ef652b5ca85197143072639a89c92629e64","sha256":"b54f1adb588258baf4995088e9b9ba2b9256acc1b90f5dc4b114b35c59e55f85","sha512":"e65943e1f66069c83f92a1c6619dcbfb4f15e85b500c7b22779f94821934381d4afef99f6992704f8b65cd8b80ad92e6b1cba460fe050c2f9fada3b9fa2fe6b5","ssdeep":"","tlshash":"eec08cc4b0c22d001602a41010af24e49034502a78481b428dd4dc482e320b0d233e98","size":142,"data":"","first_seen":"2025-09-27T05:00:10.58257Z","last_seen":"2026-05-11T12:41:38.578143Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9cbeee43eb9396cc6f22ceb11a068a8b","sha1":"855c2b8e594a001965664c3dac645d713e2c239d","sha256":"4748c61b3b46c6d4621d9fe0f60dd4899f2041684946b1434ba9656cfd8db04e","sha512":"13e27d58dd059ba27341cca34d9fd559187d1a26e28aed067fb26d0a35b3e4fb6d9f0a8f9ea8f4d3d207dfda8ae35c0ce573288498bc2c56472beade7926ee80","ssdeep":"","tlshash":"bbc02bc4b0c73d001606641050bf34e8a034402bb04c1b03ccd4dc483e230f08233edc","size":139,"data":"","first_seen":"2025-03-06T21:41:52.844247Z","last_seen":"2026-05-11T12:41:38.578682Z","times_seen":129,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/zh-3294a3d5.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"492d146f4511c4eadae73543dad6b314","sha1":"9e8e9b07637b99fdf9f4df50e68961f78ba82a56","sha256":"4e39721fae5386894f559b9ac6c037a9b03d40c1d7da72aaf947cb550d3f823b","sha512":"05ab2f1a80780af1af726395e5003a12cd101aafbd588aa7adff8a7bb5d1761d32f3d4bd3b30b4d5127e437b4938ffe6d0d7b2d3cd31ea8841e98107e2da53ec","ssdeep":"768:D9sgcXP80NU/fLS5LW0/so/mgrUYxP7sP+:DzcXRmetW0/E+","tlshash":"9df2e6d47daedd9a40e3a627b04f990120f75ec68626c4191fe99ef562d8f039783b30","size":37261,"data":"","first_seen":"2026-05-11T12:38:42.253896Z","last_seen":"2026-05-11T12:41:38.565551Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-f2f155a6.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"importedModule","is_inline":false,"md5":"6a3fc243de439f9bc22968ba9a10c46f","sha1":"963f90b4de779af946ba44d5177a9cd8313c9762","sha256":"1437bff08fe388fd4b2a31239d6a5c5accfdfa0446d0074f767a2248c0f91ef4","sha512":"cf142e3971a8aefdf63b1e3d3a3592221578c83c7bba575498915c70d79f5960214f1afeb9efb3d245710ecb38dc8fbd546d7ada21e0fc1aa91102882ce60bd2","ssdeep":"","tlshash":"a4f0c97f693b91b21ba388fca1231910670c0e477360c5e8d54b1e01cb348e6e14e728","size":515,"data":"","first_seen":"2026-05-11T12:38:42.222067Z","last_seen":"2026-05-11T12:41:38.530778Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e617a06589cbd9b9e749dbf05e84b4d7","sha1":"de5c2b43329616cdbcebd9e2f30e76167087ab70","sha256":"dfd9eb9de4e813f1af7745f7afa48e751990eaa05e91e187dc07c341be873920","sha512":"cf809e892656f488a9f4864d6af042297a0f0b5e4c749bb951d16ffe524316a629fac26fbc56d582adc15b195f3d20056f61614f8c8aa543c65091fa22a73820","ssdeep":"","tlshash":"70c08cc4b0c22e101602681020af24e8a0258026704d1b128ca8dc492e220b08237e98","size":139,"data":"","first_seen":"2026-03-27T06:35:36.236259Z","last_seen":"2026-05-11T12:41:38.577Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3c9e3899f0598205967f13659171831d","sha1":"aaa77e9ef705cfc86ec45490a0e4153e78072e1f","sha256":"e2ee16c68fdda2ed2ca2e1ca623d5bff31c647bad62507e16fc7911fd3dd9e97","sha512":"eba93c6786156f201b76d764706eb16f43464c05e713aa5c8c83d145dea5e8e9015531fa2d2621754c1f63d32ba665673c6d51ccfcdb6716ea968ba32187d078","ssdeep":"","tlshash":"47c08cc5a0d7be002622a41010af28e4a024802670481b12cca4d8883e660b08337ed8","size":145,"data":"","first_seen":"2025-09-27T05:00:10.584822Z","last_seen":"2026-05-11T12:41:38.570021Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2b72232ed380a528eeb3a552d77ae9c7","sha1":"6dc118004f8c5dcbcb571446e544948e5884cd56","sha256":"b7d4991a24ab4ba72ab4e3cfa67e51ed181d0f21335bd7adb062d024a1564c4a","sha512":"9a7cba48645dd78c7a719297ffad44b3da7263835e444e0fde947908fd4345a1cbb1d672b3e53338231cd6a11b38c7d45e5395f1387d368b0e8f93beea4d6347","ssdeep":"","tlshash":"77c08cc4a0c26d001602649010af34e890244027b0485b028c94d8482e220b08233e98","size":139,"data":"","first_seen":"2024-09-19T22:02:28.519141Z","last_seen":"2026-05-17T06:45:34.2834Z","times_seen":206,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b1e6506abda1ffa5b9ab2721a0fee13f","sha1":"cc64d89d747a4c6f5293b262055d3cb8e175b738","sha256":"848a05dd565ed4ad22c665530b61473e4437ca86f8bd027a8c952177f73b5269","sha512":"ac564a39d053f7c5f6e636296207458bae1d069f50356ee85ac23a8045617ebbe8cb5f26870d5a19f2d3cf834bc578918ad2b9f46bb68e3d0961c68841bb6e17","ssdeep":"","tlshash":"ecc08cc4a0c32d001643641050af34e490348026b0481b428c94d8492e230b08233e98","size":139,"data":"","first_seen":"2023-06-07T05:45:46Z","last_seen":"2026-05-17T06:45:34.286456Z","times_seen":245,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/vendor-b37cf9a8.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"importedModule","is_inline":false,"md5":"85222bc1d26f2c0c59fae9cc0855a72d","sha1":"3df74bba84deb17ac688fb7fe87e4eb47a15645f","sha256":"611b1c1b48b9ecf7b9367ff3535178fc23defd6ea88c4a7c101507b90946d61a","sha512":"b05eb3eb57593bb86fa2e663120b21044fbaf2b15a356db1e7a3d3b2200c2388c8b2c3ee3fa23ca06ddd35bcfe34f46ff5437397f279caef13d05f49f1a7316c","ssdeep":"12288:WBIesgWlYRnKHAsm96ieFw7Ho7FVNIeJWDssQXWprmUM/hY8x4GO8:WBIeCgKgsAeFw7I7F3VLsQXWprmUMjP","tlshash":"c8153ac97292f06147ab20e140bb0006f33d6e59740e84a4f56d99eb7d69d89e2b7f3c","size":929120,"data":"","first_seen":"2026-05-11T12:38:42.248733Z","last_seen":"2026-05-11T12:41:38.54761Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-d66b1511.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"importedModule","is_inline":false,"md5":"202c691f4f1e3b9fd1fa713e8a6b03a7","sha1":"7b3301b3d010e651a97a6549f33dcdb89afe9d42","sha256":"2698fb75e151578b300cefdcceca11e1282c7097e8e659f44741a061971df816","sha512":"5538ca0a9adf2eef322eaf13cb9c45bcf5a3a762c05f3f695e7de78f888da5ca87c4facec0a157b85055f6819d4981ff8d1d57c9c73f49737e8578f5f41cd0cc","ssdeep":"96:o+9JiR9YiqD+wSqrOByR2b8hiDi+L2mMVW3hvW7O43fO25i80of5Uj06:o+9JiTYiqiwSER2bDT0ehvWZm26of5ib","tlshash":"19a1a798f502c1badbbb085088490420329c7ffaf10448f6f6fdad4967b4d78e794724","size":4992,"data":"","first_seen":"2026-05-11T12:38:42.224149Z","last_seen":"2026-05-11T12:41:38.534005Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0b187c879c4b6764614b28355e2be026","sha1":"194471538aa1c0dabfd55ef4faa0cebd9ac26388","sha256":"8e0f7685bbe95883933aa5881a179721d795b031c0cdcf35a50344efac911152","sha512":"68c7d53c4dce0cd6057aa64e64240e877258593647ffc9795f04d010d77cfde7d2ad9094b8e0ea77e551e671868e6845e89981cec96d6e4a34bbb1a968e2b62c","ssdeep":"","tlshash":"e8c08cc4a0d26d001a12a51010af24e49024442b704c9b239ce4d8482e220b08233e98","size":145,"data":"","first_seen":"2026-05-11T12:38:42.28768Z","last_seen":"2026-05-11T12:41:38.569386Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-05-20T14:48:47.639119Z","times_seen":34573,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-05-20T14:48:47.64168Z","times_seen":37337,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/#/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c464eee61a30b35747e8e9848e60be3e","sha1":"3b58c9c7de2dd7f0322fd7bb9947ad3a01ac8cce","sha256":"955a99d585122831f4cabbe60b7755379393349c40795ff761e7ce78b3e491d7","sha512":"d548dacba908d5bd228c19df9e45083444741e1151dc914e356f01fd7fcb666a7077df8a57af5bc72e249160aa32ce3e40c77f22dc01fb2af95a6c3d19be3e4f","ssdeep":"","tlshash":"d3e0abeb3139c16456f09f2b6cec4c1bf69b27334d8c050bf8b4a9051ebad64227c894","size":420,"data":"","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-05-20T11:21:40.125259Z","times_seen":367,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-f68dd8b7.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"ce83d1a9a0a4dd833b4fde29773c5f16","sha1":"67d6b2c8523253dc773c25e749b50acc76210620","sha256":"33f98d4e75fe481a7091e4ff97d83abbd70578d16d8f03de7c01bde35277ed28","sha512":"21c5ed6d78535ab3754d82b24e014af0e65a496bf03b745a2978f744e6f4300728698a8ebd5d4edcb364e22b5b50d78be3146935ff0458853774dbb32c612786","ssdeep":"1536:KOoSdfbd5d8hYlWTe1Rp2GJyqXJvbOVL5NbRGgJv6CyCQno7VQ3pXR2A1zVK:hd8/TejLO1bvJvgno7VeB2r","tlshash":"8473e7ddb282f436429661a0403f060bf337ae99741e4598f228d4cd7e7c989a17bf79","size":79335,"data":"","first_seen":"2026-05-11T12:38:42.226896Z","last_seen":"2026-05-11T12:41:38.54233Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getMt5Amount?coin=xauusd","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xauusd HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T14:56:09.172064Z","times_seen":15491553,"resource_available":true,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/grid/fast_help_loan.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/grid/fast_help_loan.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 02:59:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b4fe-125c\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4700,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"abeca3abfc9bd7e938ce03ffe4336846","sha1":"14da412e77a271a07ecedce2ae59bf9ec3e82d7e","sha256":"ef98e502113bd47d0cd313a36cb869c901b0098d422ab945e145dc6f85023cd9","sha512":"f1ad211c48a84c19f4fe27095bf9440f862c904a27bd6119afe1b01c0f7fe2f09f19b4b43c750722f9eb02f50e7e792faee7c2519df673d872bb1c0602d85a8e","ssdeep":"96:A4BTb4irVgrOkLvZp93nYXEIMGWknNUl2BofAfo9pByRzBYJ:A49Vgr1RMXEIFg2ifJ93UBYJ","tlshash":"43a19dd5b07772a4d047ab3a3517b39afe75b0e841c98bccb71c1138992508af0fe205","first_seen":"2024-12-03T23:58:43.611351Z","last_seen":"2026-05-19T13:26:54.050634Z","times_seen":44,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/grid/financial.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/grid/financial.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 03:15:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b8c3-806\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2054,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit colormap, non-interlaced","md5":"4d102b8972353c4a509a95473393327e","sha1":"8dc24ce1adb4745ea44c49fdef2adb53dfd9a39b","sha256":"e72e4d393f9d4de9aa87ddeeda30496b3b3e7f6b000b1ee67a577043dd01a459","sha512":"6046c8383f1f1f8aab3f209f8890c46a73b0bfd839f1e2077f5b1b71bb71506e64ff5c5adfa3e5a94cbb8975583de49c832515521d8fa061d4793bb078e1fbee","ssdeep":"","tlshash":"3e41d873fd1a1a64fc1b0711df9c5e72e42a0092429545df495abe6d1ae3224d0f1d46","first_seen":"2025-07-27T10:32:31.384254Z","last_seen":"2026-05-11T12:41:38.543092Z","times_seen":10,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/litecoin.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.531Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/litecoin.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 34858\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB636350F30336D26BF\r\nAccept-Ranges: bytes\r\nETag: \"BB27C369A3AA54D9C1F8E59E1706DA48\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:04 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2593469271640333430\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: uyfDaaOqVNnB+OWeFwbaSA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":34858,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"bb27c369a3aa54d9c1f8e59e1706da48","sha1":"7e1b9677305cad40b686a5a1077da57c4f6cf07f","sha256":"e691621963c6de60c05c0e91cf7c65cba4191df054a3b1bd5becbef3a426f9ee","sha512":"4ff3058897ecbcee5464eb954955cc40bad7f411ee86f21dcbebe3d02ee45410b42f68c8e3a22537ef530c65c9bc9960fb36134aeced2dd36688a21c0cb02415","ssdeep":"768:FAbT/SSUokJQD9Wvnwoo2hzabJIqRw/VH3+WFxL1nHLy:G/RU4yni2kKl53+WbBLy","tlshash":"3df2f155ed69527406b90571846e302ca4669a7ebdceb11bffbd67302b3246f008e06e","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-05-20T05:30:29.229032Z","times_seen":620,"resource_available":false,"data":null}},"time_used":1967,"timings":{"blocked":849,"dns":44,"connect":246,"send":0,"wait":255,"receive":16,"ssl":554},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-f2f155a6.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-f2f155a6.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 515\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\netag: \"6a009c1a-203\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":515,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (514)","md5":"6a3fc243de439f9bc22968ba9a10c46f","sha1":"963f90b4de779af946ba44d5177a9cd8313c9762","sha256":"1437bff08fe388fd4b2a31239d6a5c5accfdfa0446d0074f767a2248c0f91ef4","sha512":"cf142e3971a8aefdf63b1e3d3a3592221578c83c7bba575498915c70d79f5960214f1afeb9efb3d245710ecb38dc8fbd546d7ada21e0fc1aa91102882ce60bd2","ssdeep":"","tlshash":"a4f0c97f693b91b21ba388fca1231910670c0e477360c5e8d54b1e01cb348e6e14e728","first_seen":"2026-05-11T12:38:42.222067Z","last_seen":"2026-05-11T12:41:38.530778Z","times_seen":2,"resource_available":true,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-c9e73426.css","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-c9e73426.css HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-37fb\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14331,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (14330)","md5":"285a9d57f3a0e5ace2b29a0d04a19e6e","sha1":"369fdca38e40f6bf739906526bd1e0bd9ff9c835","sha256":"c9e73426a40dcee0a966c60a36a179f981d180299ee5029b15b318fa896f8b77","sha512":"376d7eac2e751140e92e7c823a15eeeee66863c9e9f8adea3de45f8d344e592e6dda671dc75a7727762475280d9045e297b7c98559d3f6a5cb8009021c74c841","ssdeep":"192:yrJgoF0zx1sCCNhRFfok7UAEYvVp8qfBQR7mrirYFh:gJ7GlihL5ttGWriy","tlshash":"d8528328b7915634fc7bd2987a8459cce219f612da5b4ed4e303e9168ddfae3173044c","first_seen":"2026-05-11T12:38:42.223054Z","last_seen":"2026-05-11T12:41:38.56092Z","times_seen":2,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-f2f155a6.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-f2f155a6.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 515\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\netag: \"6a009c1a-203\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":515,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (514)","md5":"6a3fc243de439f9bc22968ba9a10c46f","sha1":"963f90b4de779af946ba44d5177a9cd8313c9762","sha256":"1437bff08fe388fd4b2a31239d6a5c5accfdfa0446d0074f767a2248c0f91ef4","sha512":"cf142e3971a8aefdf63b1e3d3a3592221578c83c7bba575498915c70d79f5960214f1afeb9efb3d245710ecb38dc8fbd546d7ada21e0fc1aa91102882ce60bd2","ssdeep":"","tlshash":"a4f0c97f693b91b21ba388fca1231910670c0e477360c5e8d54b1e01cb348e6e14e728","first_seen":"2026-05-11T12:38:42.222067Z","last_seen":"2026-05-11T12:41:38.530778Z","times_seen":2,"resource_available":true,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-d66b1511.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.108Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-d66b1511.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-1380\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4992,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4985)","md5":"202c691f4f1e3b9fd1fa713e8a6b03a7","sha1":"7b3301b3d010e651a97a6549f33dcdb89afe9d42","sha256":"2698fb75e151578b300cefdcceca11e1282c7097e8e659f44741a061971df816","sha512":"5538ca0a9adf2eef322eaf13cb9c45bcf5a3a762c05f3f695e7de78f888da5ca87c4facec0a157b85055f6819d4981ff8d1d57c9c73f49737e8578f5f41cd0cc","ssdeep":"96:o+9JiR9YiqD+wSqrOByR2b8hiDi+L2mMVW3hvW7O43fO25i80of5Uj06:o+9JiTYiqiwSER2bDT0ehvWZm26of5ib","tlshash":"19a1a798f502c1badbbb085088490420329c7ffaf10448f6f6fdad4967b4d78e794724","first_seen":"2026-05-11T12:38:42.224149Z","last_seen":"2026-05-11T12:41:38.534005Z","times_seen":2,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getCoinList","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23183,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7abc3c1beb735208d49f2c03995b9d20","sha1":"86c3f8ff911978dc8fae02438e52ecfe85f2314d","sha256":"f605cd20b15efd58af6c79f9bef8f4f92efa3cc754db07a1b3b745c1aa02f4d8","sha512":"080d53c2ab71ad78bd820ed90335ec16fe05d398450e94cda1399486fb9edb28b3f6b2073c0ed20b9816530b0deda6362ccdcdbacd0027182fe2cd8dfa15a045","ssdeep":"192:VXbCX6H5XuDX/ZWXvKXaKSX5E0XdAXKfXIVS1gujqwXXwYAK7xYfsCK+njoLxvQc:9n1NelS8+n","tlshash":"50a23145562ca5a8da7a80d21eaf7e1651cd317ff8c9ce0ed6ce4d488ed8fb4150af02","first_seen":"2026-05-11T12:38:42.225387Z","last_seen":"2026-05-11T12:38:42.225387Z","times_seen":1,"resource_available":false,"data":null}},"time_used":283,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":283,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/quote.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.574Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/quote.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 02:42:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b11c-4a4\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1188,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced","md5":"966aaf41f4db84f6f0313f764e595f87","sha1":"ec31ebd55b615166aec1e4bff4a95366252f957d","sha256":"dbc3430ec06cacc10616c517f710085fd959912984173da9798bd95223efe816","sha512":"3bfbad89056f33eac8910a9d416780d6818aece383fce4b23f2a658b657a42e57a991a92c7ab958da140e3b293ff62b25771ccc0ce092c9d458d23e0ad646d9b","ssdeep":"","tlshash":"0921da29d5ed9095521586cecf0d4354d012ca70e4c42437bdd3b3f27651aa2405ad81","first_seen":"2024-12-03T23:58:43.681666Z","last_seen":"2026-05-19T13:26:54.105813Z","times_seen":102,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-f68dd8b7.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-f68dd8b7.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-135e7\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79335,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators","md5":"ce83d1a9a0a4dd833b4fde29773c5f16","sha1":"67d6b2c8523253dc773c25e749b50acc76210620","sha256":"33f98d4e75fe481a7091e4ff97d83abbd70578d16d8f03de7c01bde35277ed28","sha512":"21c5ed6d78535ab3754d82b24e014af0e65a496bf03b745a2978f744e6f4300728698a8ebd5d4edcb364e22b5b50d78be3146935ff0458853774dbb32c612786","ssdeep":"1536:KOoSdfbd5d8hYlWTe1Rp2GJyqXJvbOVL5NbRGgJv6CyCQno7VQ3pXR2A1zVK:hd8/TejLO1bvJvgno7VeB2r","tlshash":"8473e7ddb282f436429661a0403f060bf337ae99741e4598f228d4cd7e7c989a17bf79","first_seen":"2026-05-11T12:38:42.226896Z","last_seen":"2026-05-11T12:41:38.54233Z","times_seen":2,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/charting_library/charting_library.min.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:10.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 01 Nov 2023 13:05:29 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65424d19-2a6b\"\r\nexpires: Tue, 12 May 2026 00:38:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-05-20T11:21:40.032218Z","times_seen":962,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/bitcoin.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/bitcoin.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 2691\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB61698CC353911AF36\r\nAccept-Ranges: bytes\r\nETag: \"2EDF1EF8B333C40979976D1A49BC234C\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:05 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 1939274224005843766\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Lt8e+LMzxAl5l20aSbwjTA==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2edf1ef8b333c40979976d1a49bc234c","sha1":"d75ac12795b4a9575c874e1b190712cd62a87afc","sha256":"50a1901684f223bf26594dd3415b1e50f184820a16daa810cc5452911e9117a9","sha512":"f697a1fa0786316fc01003f72621920932e2657e4acf5a471e35d02717c42c9db5a12df311895a776a563dcae9b8fc0b6721833529a054b9dbfff4c52fc564d3","ssdeep":"","tlshash":"2b515ee60252267980d32438616db1e178beabb2c3021ded6c1444954acc4b62555cfa","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-05-20T13:38:36.377124Z","times_seen":21502,"resource_available":false,"data":null}},"time_used":1894,"timings":{"blocked":858,"dns":57,"connect":174,"send":0,"wait":177,"receive":0,"ssl":624},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/home.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/home.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 02:42:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b125-465\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1125,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced","md5":"3e844bfa12234f1f112eafaaa9e21322","sha1":"b75a3140cad1c6e7e8364e7843b575a0e0c7b07f","sha256":"37407f0de333e2b65f0685e4e169beb089a025b37fa8081230ea6888b46cddb6","sha512":"a56a102c46fce5255ba0fd3751ef99ec4019e2256e9cde44c3fbf09fc66773ef9a61d4e9f29bb78ffc6b928defbf15e8deb835d72d2fdcf5ebc32e9f4b8dda31","ssdeep":"","tlshash":"16219af12247c83adb127dba863a8f59d4229e765e41d110cf84dc60b61d73442595f1","first_seen":"2024-12-03T23:58:43.650196Z","last_seen":"2026-05-19T13:26:54.054089Z","times_seen":23,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/type/defi_activity_type","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"POST /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: zh\r\nlang: zh\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:14 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":635,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7a423e3451e474878191a0a7f1d323b9","sha1":"13312f533f380295131f6a1540f425d0c98a16ba","sha256":"49c938e0bb3a834cab9319575489cf6c1694cace3f1ceb9671570024328e2a35","sha512":"0522e47fc06c4329cee21e354b264c90ae4b0725941d75cf63af54bee4a307fbe91e7078a412bd9750f3856657159ffe5efff139a652ec0443368f7c146bfdbf","ssdeep":"","tlshash":"5af028143d3dcebf098f65e745ec7818399c152794a0fca058ab0f3c5ae4171088921c","first_seen":"2025-04-07T11:28:26.961944Z","last_seen":"2026-05-20T11:21:40.093356Z","times_seen":639,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/currencyItem-bfb2dc97.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/currencyItem-bfb2dc97.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-9e6\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2534,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2533)","md5":"6c7fc330c561d804c315981183a23611","sha1":"77923b302b32c978a6ff99b0c6b6d8bfbe6914bf","sha256":"3bb6a82d7d1f2ef7c2575cd725a5cc27b9ad241a4d102fffc8a80ad3f5d5e322","sha512":"aca85fbfccc5ca8d14e525abde142634d327eefefe2d7823a1f26a84e740dc4caa119455fd4d2be0eaa99094fbe4f976cbeaaa46b9c51709cd1abb52985130cb","ssdeep":"","tlshash":"d95195adb71182b9d77ed99184ac2810172d37c73022cbd4bbde05067f1ae94d329b34","first_seen":"2026-05-11T12:38:42.229672Z","last_seen":"2026-05-11T12:41:38.546296Z","times_seen":2,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":357,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/grid/flash.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/grid/flash.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 03:00:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b55c-1225\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4645,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"d495266cebee387c923f9c35b7a75004","sha1":"d3f85952e625fc4c5fe9bdb3733a9d589d0c658f","sha256":"4488825ffc7f5ae1a7d6a517b4c0a01d8a04d6d21ff595a0c77af68444d4ff4e","sha512":"c08c85a60a40a3be62902b6b7be8e16130cf5716d8acdde8fd90fb5e11413ad2bfdb70518e51e2cf021f19df146edcafdd090185fb0e12c4395ad2fc72a304c2","ssdeep":"96:A4BTR3Hu4Fv5sYCHq7n/8++i4bnl7a1lh6FqEnPCc4XU+oFq:A4D3PFv5s75957JqEn6/","tlshash":"52a17d987f1437a0e9a011b3be17ae618a4c5c180f993557e1ebd4b249344f0eaaec60","first_seen":"2024-12-03T23:58:43.612755Z","last_seen":"2026-05-11T12:41:38.554938Z","times_seen":34,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/grid/trade_tab3.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/grid/trade_tab3.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 03:15:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b8e3-14ad\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5293,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"14f4459e5458afcf2187d8918ac74ad2","sha1":"8dc1c829cf711279380050e152580ed62d392be3","sha256":"de9a547070d83dcccba1436f557d41564ada25b6b83b6754f65093549e8b73fd","sha512":"79c4d83d51680ee6a0a7825d24fcae31925dfff1326c7881180cfc372e117a5e84b55d2760bb062b2a0940d9849b8fee17848f9a5fd4aa43a80c129e86acfc6f","ssdeep":"96:A4BTqHyHZws+lWKnoO07vuMa5aiD6w2hmPeCudPQ76IlB2lutADcP:A4sHy5+5noF7GLEutWn4TlYMm4","tlshash":"50b17ee35166691901eb1032ad2e51b35cce3415e04edbcf6f6a60349debfd218883b4","first_seen":"2024-12-20T23:51:30.224493Z","last_seen":"2026-05-11T12:41:38.56666Z","times_seen":21,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/tron.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/tron.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 28273\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB61698CC3539A9AF36\r\nAccept-Ranges: bytes\r\nETag: \"D5CA5F90C7A46CB88E5F57B2D3046BA8\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:04 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 651333452456791640\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 1cpfkMekbLiOX1ey0wRrqA==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":28273,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"d5ca5f90c7a46cb88e5f57b2d3046ba8","sha1":"4a46fba9e1f7e0419539519e1936e6002f99b3a8","sha256":"a584af003890eeb5d527e91031218b66fc8d429ce7d8ddc5f5ceb9efaf627a40","sha512":"60e2cb71c7155b2f51159c37f53d85c567698b9baec7ffc34ec898df057fb64e2528909f68df9e901bf5243a4ee451f0ff432e210db1635ca0c448073e7811e2","ssdeep":"768:CXuoEFXvWj4CBn04bX73fOlLiRO2lFIVmfSD:9FXvWj4CueDGlLmOuIcqD","tlshash":"b2c2d005f8f592ca744cc6104925cd97f273a15b30a53eda3ddcca6f7f9c9e916a0282","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-05-20T05:30:29.216341Z","times_seen":570,"resource_available":false,"data":null}},"time_used":1383,"timings":{"blocked":1029,"dns":0,"connect":0,"send":0,"wait":227,"receive":127,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo-upload.oss-cn-beijing.aliyuncs.com/echo2.096481013e18d4131a0f90f148b960f61.png?2.0.1778424858016","fqdn":"echo-upload.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.096481013e18d4131a0f90f148b960f61.png?2.0.1778424858016 HTTP/1.1\r\nHost: echo-upload.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 3735\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB719E4A23435DDEF05\r\nAccept-Ranges: bytes\r\nETag: \"4E3E5A1078DC8ABFDE51AE4C941D5183\"\r\nLast-Modified: Fri, 08 May 2026 17:44:56 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2384614968424144843\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Tj5aEHjcir/eUa5MlB1Rgw==\r\nx-oss-server-time: 22\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":3735,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 201 x 200, 8-bit/color RGBA, non-interlaced","md5":"4e3e5a1078dc8abfde51ae4c941d5183","sha1":"9324c80248de28e7b704c50cc8b835d7a380af1b","sha256":"c663a0539cd42ff6a185a3da9f4ca4c8ba7d3605980361c512b31d7e0d57667f","sha512":"09560f10f0cbd9e6a070cc4745a6df741292faef47c53b6d4f54550ce2d3107c65ea2acd417ebae90bdd840e9ee651b5a32a7657b07fa6eb5ba44d70b943074e","ssdeep":"","tlshash":"2e719eef04690f7adf4979f434a24447eef4d020c67089575a03a8cd7e48b6820bca26","first_seen":"2026-05-11T12:38:42.232085Z","last_seen":"2026-05-11T12:41:38.556466Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2017,"timings":{"blocked":-1,"dns":183,"connect":260,"send":0,"wait":284,"receive":0,"ssl":1289},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/financial.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.579Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/financial.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\ncontent-length: 578\r\nlast-modified: Mon, 19 Aug 2024 04:45:29 GMT\r\netag: \"66c2cde9-242\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":578,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 44, 8-bit colormap, non-interlaced","md5":"dadfa18f1faf465c9b55a343f5e04e94","sha1":"e3ff2475cacacbfad5061c55dc3b487988405f6e","sha256":"48aa7feb7f5113a32d51df9560171e8546e977080beb2a08e5ff1e26dc3b73ed","sha512":"ca526872da2868f6999ef426c0c1d340eb4171defacd8e02f843437a148f631fc24cd738fd151f01b8b06d9830d87457f9d2801c3bb5e3b14de588d7d040447c","ssdeep":"","tlshash":"a1f081f6cfc71c54dbd8d1b9837a9764fe8611749f1345ff950085518856805c5421b5","first_seen":"2024-12-20T23:51:30.266177Z","last_seen":"2026-05-11T12:41:38.565022Z","times_seen":48,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/fonts/DINOT-Medium.otf","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/fonts/DINOT-Medium.otf HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://sgaibingx.com/assets/index-770e31d6.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 73096\r\nlast-modified: Wed, 01 Nov 2023 13:05:29 GMT\r\netag: \"65424d19-11d88\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":73096,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"ab876400560626fbe045633dc44f0748","sha1":"85bbfb1729e86f40ddc9af7197b5f54ed6136226","sha256":"5888b24f6b65ff7c989b4a258dbeb5d997320d61417371210da0258be21d854d","sha512":"82e96ade51b0570c1f691ba45d1a3c0802015dad7598954675c4abe2fa8a9fc705adbe6eb5e677aa5cc03b6704e594cfe99279c678855ebbbcbade6d5028dbd6","ssdeep":"1536:TlK/cP2D2oV7otQjBG1+acfZZHHDEdom1hvd5JItkB7k3Z:TKQQtG1yZSdomrvpIqcZ","tlshash":"0b636f031d4fb9548de4513a52de4ea34bb39ecc1ca493c30ae12d938fece6657152ae","first_seen":"2023-08-16T00:37:20Z","last_seen":"2026-05-20T11:21:40.065273Z","times_seen":927,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":310,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getAllSetting","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.655Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T14:56:09.172064Z","times_seen":15491553,"resource_available":true,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-fa932ca7.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-fa932ca7.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\netag: \"6a009c1a-308\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"92ea283848ed7bc3052c5ed927e4fc88","sha1":"b62fad06b73e8f24399f9dcbe8924121e8c439b9","sha256":"0196d5e29a00f7ccdb2c0d46aa32d51cb27cbcae809b8a20ddd93c8ab06f6a69","sha512":"192cabe8b6af570f220d59a64b9928f48bb80e83c5831fbd039475ff4441dfeef1bed73fa638edd6e4a5f0e22b79657b87dc8ba838bd5ff0f5e865f3603b2c03","ssdeep":"","tlshash":"6501fdf8fd0d8ebb0fb20a4001a0260014091fddfa1419e198867d661be5940d7ce32d","first_seen":"2026-05-11T12:38:42.234029Z","last_seen":"2026-05-11T12:41:38.534692Z","times_seen":2,"resource_available":true,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/platform/dev/logo.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.425Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /platform/dev/logo.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 10 Mar 2025 14:11:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67cef2f7-27d8\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10200,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 144, 8-bit/color RGB, non-interlaced","md5":"945b7462640468168f6ecdf987e35863","sha1":"a4ca209b1a140ee513c73d732c743335eab6fad0","sha256":"482c0e1a3fa0e9c2280dd3a72dea23e4d04b3a5b3f07002e6e49efbf94f8ce0e","sha512":"b413b429ed7b99e85d18bfd20070432c6f4005a51606e165c405834f8ccea0358b5e9c755dd03ef2c860b5d29460fce4439d89b463401e1ef3a38295ae568317","ssdeep":"192:ftVRy4uEu+l4Dmu+pOGxNFkNT6ILD93M96CaI7sr5tE5eX6D9vIdxJoiiiK:ftbuEcirqT6W9HAsIsX6D9vIdfg","tlshash":"d222ae6b5e351a20da15af7fb40b1270cfae8c153a853dceeb5f4401cda2a7963e4141","first_seen":"2026-05-11T12:38:42.234895Z","last_seen":"2026-05-11T12:41:38.539477Z","times_seen":2,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/ethereum.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.523Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/ethereum.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 9807\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB636350F31386E26BF\r\nAccept-Ranges: bytes\r\nETag: \"12D9722461759CEFFF02D9076A3D2718\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:04 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 9445008190181339835\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: EtlyJGF1nO//AtkHaj0nGA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":9807,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"12d9722461759cefff02d9076a3d2718","sha1":"6b763fea0b17257a36b90c465593e1629aee0564","sha256":"af89450e1873196692af0d9d4d0c03218b4be8091171b9d8f7349298d4e82586","sha512":"8eb0f616162be914a3945fb383250796e1134da22e8ae612f403f28804ac04b7fd0f607e132403dc28505d80377c9281601cb23ef1f0814e08584428f3efa05f","ssdeep":"192:4V3ZO9Gxo9H+wp5qh6BKfMPaB2kXTfwoVqO2Rzhj7TfhBcHEhaI9yLKKD:4V4GxoYwp5wQKfMP6LXT7V+RzhzncpLb","tlshash":"7112bf66ab39a301d66d2bbe5cc59302db15ad10dfe14a3fcb840980370c6f9de5a6c4","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-05-20T05:30:29.223081Z","times_seen":591,"resource_available":false,"data":null}},"time_used":1898,"timings":{"blocked":857,"dns":50,"connect":186,"send":0,"wait":186,"receive":1,"ssl":614},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-0ecc7c64.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:10.488Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-0ecc7c64.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-187a8\"\r\nexpires: Tue, 12 May 2026 00:38:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":100264,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65526), with no line terminators","md5":"9d40d7717d8977d25c55ba857b1aa331","sha1":"69f414a88036690e84b811c44e296a246cf252ad","sha256":"05addf61a6ff4ed0a0c72d2c14599149f272d85ca189f10adfd7051fb0857dfb","sha512":"f6f143180e63314f7eb539e1c395633393962c47ed676d0fc936ec97fe4329dd2f3cc85bc7868449c91cf911fa9f4861893a7bb78152b3adddf44a3d66ec6f8d","ssdeep":"1536:zPtPhzBKo1j2BRCISebSA+whSHs8ap12HSZx:ZlBKo1PISebSA+whSuJx","tlshash":"2aa35cc9a50b0eff6dbd0804b9579610216c1f93988ccc9773baae4527facd4638a71c","first_seen":"2026-05-11T12:38:42.236364Z","last_seen":"2026-05-11T12:41:38.567712Z","times_seen":2,"resource_available":true,"data":null}},"time_used":502,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":502,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getCoinList","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T14:56:09.172064Z","times_seen":15491553,"resource_available":true,"data":null}},"time_used":1332,"timings":{"blocked":534,"dns":37,"connect":253,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo-upload.oss-cn-beijing.aliyuncs.com/echo2.017ffbb248e2a4eb5a0ec15a90312efa6.png?2.0.1778424858016","fqdn":"echo-upload.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.560Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.017ffbb248e2a4eb5a0ec15a90312efa6.png?2.0.1778424858016 HTTP/1.1\r\nHost: echo-upload.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 5929\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB73807663636047E5C\r\nAccept-Ranges: bytes\r\nETag: \"7E007EF3EE5B0E6080D83B02145A7519\"\r\nLast-Modified: Fri, 08 May 2026 17:48:40 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 7131042928305553063\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: fgB+8+5bDmCA2DsCFFp1GQ==\r\nx-oss-server-time: 25\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":5929,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 201 x 200, 8-bit/color RGBA, non-interlaced","md5":"7e007ef3ee5b0e6080d83b02145a7519","sha1":"752d841a9b40b1bc12139b069fd06ee965f17efd","sha256":"68e8d2a366155f91991e8bcf40ed818a8849fdfa56ad9ba919520ba135e5b2ce","sha512":"65f8fc0ae9d7aca1f0e624f725ba39b675adaddfa85b365e755757b12dd310fd73d9587ecf256910de927bb3f37fba6ea98d90da679f2f3476aa4d395fbd9381","ssdeep":"96:pSlxGssf0C2dDdiAcE6PPGiOw9yuRZgzADKVJ7UnvJtZXMvGSsSFo9VRhoC+2aWk:pSlxpsf0C26vEiPGK9yuRCn7rvfA1+2w","tlshash":"18c18d8abc7220bdc3cbb9be40aa58a444f509a8dc48e48b4a6141c74dd8f40ce5c7c5","first_seen":"2026-05-11T12:38:42.237419Z","last_seen":"2026-05-11T12:41:38.533046Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1637,"timings":{"blocked":-1,"dns":179,"connect":236,"send":0,"wait":262,"receive":1,"ssl":958},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo-upload.oss-cn-beijing.aliyuncs.com/echo2.0dafcf38e75f649188a1867342f75b7fb.png?2.0.1778424858016","fqdn":"echo-upload.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.0dafcf38e75f649188a1867342f75b7fb.png?2.0.1778424858016 HTTP/1.1\r\nHost: echo-upload.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 4028\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB732B1A63532FE9969\r\nAccept-Ranges: bytes\r\nETag: \"02CA897ADE3F9CCE5E6D7615C7EC5ADD\"\r\nLast-Modified: Fri, 08 May 2026 17:47:30 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4897042984484237288\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: AsqJet4/nM5ebXYVx+xa3Q==\r\nx-oss-server-time: 26\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":4028,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 201 x 200, 8-bit/color RGBA, non-interlaced","md5":"02ca897ade3f9cce5e6d7615c7ec5add","sha1":"cf18d6e8e0e28c1651dd3d70d94bba1b3ec27c58","sha256":"5b9d9218185590a19f35bdc420ddc17684ef038a90337cc31d95c986f1ebc76e","sha512":"3ef5aa249886648c3093efcd7b7f06ecf19a858ec372d8e326cee32fdb07d6e36a23f44aeafd1d1fdd716442c8dca1528c93fd505322ead53bae4a5246bc9903","ssdeep":"","tlshash":"36816d45fe6baa39d20b8ebc0ea10dd2f4b433f91cac219887a4ac425208dac504d332","first_seen":"2026-05-11T12:38:42.238193Z","last_seen":"2026-05-11T12:41:38.537807Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1659,"timings":{"blocked":-1,"dns":183,"connect":255,"send":0,"wait":281,"receive":1,"ssl":939},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/platform/dev/config.js?1778503091934","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:11.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /platform/dev/config.js?1778503091934 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 394\r\nlast-modified: Wed, 01 Nov 2023 13:05:29 GMT\r\netag: \"65424d19-18a\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":394,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"4bc52b1aa6813b98e0af16a138354c00","sha1":"91ee6accefe6f24544627bdd1ae2aba499d5016c","sha256":"bf904efa24cb62a824547b6df3a7bbade81bfa77cc27124d7766ae502e5d6231","sha512":"22c852a633d0c36ccf7d549fd1c6a800698e42994d993a47f534b92c8ff8430c14d668c72d2bf8eb79e8b4459f83116bc75ff5f5269f36bc3b8cf2cb9ae886ae","ssdeep":"","tlshash":"f5e0abab3138c16451b08f2b6cec4817f68b2733494c010bf8b469041e79d542178890","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-05-20T11:21:40.102288Z","times_seen":369,"resource_available":false,"data":null}},"time_used":315,"timings":{"blocked":9,"dns":0,"connect":0,"send":0,"wait":306,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-bc011be9.css","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.102Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-bc011be9.css HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: text/css\r\ncontent-length: 397\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\netag: \"6a009c1a-18d\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":397,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (396)","md5":"5353ff252ee4a5e7a3d0176de6a6c712","sha1":"c83942b5dfdb4aa8be53f26b39e53b0b257595e0","sha256":"bc011be90fd6cd33a399912151a5f69ba0d8e394563c71c4c1bea7a4ec032516","sha512":"9a17506817918ef0c9a5d0caebaed8f603641dc1015a726bdf247645a7e0a988b543756d7254abafa18dd4cd9d27c9a198300632156faf59f05c1e27f0a5e30a","ssdeep":"","tlshash":"5ae092c890d6927fb62b607d267c931ad425ac88d8007bb8e67fabb146c7ac53172215","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-05-20T11:21:40.089012Z","times_seen":680,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getMt5Amount?coin=xauusd","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.379Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xauusd HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"0d280dee7de94ff0762ce00795454c8a","sha1":"35dfb6967268a1df5ab4519512ec9c13b592ee1c","sha256":"3f8ca80ecf50f93e03c40f6149ff5f4e2c2b47418de094ef2480d506c27b6de9","sha512":"b5764bb655030c62918229fe2a4620401afc89a4ca4ecf18c0554df84c806960c1c04a8c8b53041408ee4d2f47973096bd07f7340ce6abcf6915b6583bfd9b3c","ssdeep":"","tlshash":"bc9002553c188242a88300a595061604042431642a759248cc59526580985622140999","first_seen":"2026-05-11T12:38:42.240075Z","last_seen":"2026-05-11T12:38:42.240075Z","times_seen":1,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/grid/promotion_center.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/grid/promotion_center.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 03:05:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b66c-fc6\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4038,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"c921fdf5a26ef0c99375349016a29604","sha1":"59f1789d13480332e111408c46a0d7ea7e6b2276","sha256":"03022e7ca4bb6d1f9ee43462c8f210861bf085783328e30f0c44ebd3e894eada","sha512":"7456eaf0bd8d6477a50b3a7bc9e5a073d141726242e3ceec7f8e6788c6440ebdc1601e7cb795ae47d61e9c720f554885ec672429b50dc3261ad2b72d1eb71cce","ssdeep":"","tlshash":"fb816e5cf7c1e629d4153b3e4852ec16aeb493292b0ca3450adcf42baf05daa153bf16","first_seen":"2024-12-03T23:58:43.61418Z","last_seen":"2026-05-11T12:41:38.558898Z","times_seen":41,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getAllSetting","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: zh\r\nlang: zh\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:14 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12208,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (11868), with no line terminators","md5":"d23d7e74e24005b2261984f2bb8b0520","sha1":"648b1ff7c95426f11b273575a29a6bdd033f9e9d","sha256":"61a103d1f4b6f5bed5b2855a375e174c29a073e962fc01029b71b22653a479cc","sha512":"43d985e88e0b207cb3c376cee7cdab836355c7350a598f8a8c8e59e2917f0ab5eb5d906bead137927330bed9c7eaee72eee0df7e57d20d153cb9bb6b63a91c54","ssdeep":"192:NMZLT5OSpQ+oQD+IqGucLO4YxpPfWb+cet5bOGk2seiMNV553nOS/St4XlaCjlOR:euQ+K2OMfwNeY9f","tlshash":"5a42554b32d8ccbd85d61dcdc47b364b78dc38abe6509c45e4e7ae5c949ad72480b08e","first_seen":"2026-05-11T12:38:42.241442Z","last_seen":"2026-05-11T12:41:38.540582Z","times_seen":2,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/vendor-8c267198.css","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:10.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/vendor-8c267198.css HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-16c1e\"\r\nexpires: Tue, 12 May 2026 00:38:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":93214,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"509f1a66e8ad59bd27f081062f603f10","sha1":"323e5b51ac955ca843a2669bcee4ba00cde496c8","sha256":"8c267198fe044786df26943e5e5a048895118d991e8da41a16605df914fbcca4","sha512":"ce9dcd5836d4aa80a321213612d6aeeea98f0be7d2619818051e47c2a6729759044754796239ba08203b119fa3bfdb9920466fa924aca73894a1eaec0345dba6","ssdeep":"1536:BtIyNBi3MFYaQj7FCwsBlDOFIxuVox8D/zb:BnNIClDsIxuVS8nb","tlshash":"5e93d4a5a9c461fc6f2ae2659b8765e8f13cf671cc01daa0f105511d0fcbbf60613a3a","first_seen":"2025-06-07T20:44:36.433732Z","last_seen":"2026-05-19T13:26:54.041794Z","times_seen":74,"resource_available":false,"data":null}},"time_used":506,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":506,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/currencyItem-bfb2dc97.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/currencyItem-bfb2dc97.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-9e6\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2534,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2533)","md5":"6c7fc330c561d804c315981183a23611","sha1":"77923b302b32c978a6ff99b0c6b6d8bfbe6914bf","sha256":"3bb6a82d7d1f2ef7c2575cd725a5cc27b9ad241a4d102fffc8a80ad3f5d5e322","sha512":"aca85fbfccc5ca8d14e525abde142634d327eefefe2d7823a1f26a84e740dc4caa119455fd4d2be0eaa99094fbe4f976cbeaaa46b9c51709cd1abb52985130cb","ssdeep":"","tlshash":"d95195adb71182b9d77ed99184ac2810172d37c73022cbd4bbde05067f1ae94d329b34","first_seen":"2026-05-11T12:38:42.229672Z","last_seen":"2026-05-11T12:41:38.546296Z","times_seen":2,"resource_available":true,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/grid/trade_tab6.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/grid/trade_tab6.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 03:14:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b8b2-e94\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3732,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"e326580314f82fabdf76fc955fb104b0","sha1":"46915f0d868ca1c86acc48678a5b11d64acf6ff5","sha256":"196351975fe03ce7bf12b1247416e2c3c45b9c0f0567555356176d45c70b2c55","sha512":"bd40da9deb371cd6e32884c261e0155a738c9ceabda10f2c34a337cffa923ba07c9b71d5cce7bb05f9f539b3949fa3b9a999429f908eef745c22d3ddaaf766a7","ssdeep":"","tlshash":"75715b17fb7c5a29430590b70a6237b264d701626a72d0dd2dd08bcbcac604ab6a439d","first_seen":"2024-12-03T23:58:43.617431Z","last_seen":"2026-05-19T13:26:54.05122Z","times_seen":25,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/ripple.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/ripple.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 2274\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB67A4F1F30388205CE\r\nAccept-Ranges: bytes\r\nETag: \"674B0999F6083084A2A4B1D8B20F3BC1\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:04 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2919851811578833622\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Z0sJmfYIMISipLHYsg87wQ==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2274,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"674b0999f6083084a2a4b1d8b20f3bc1","sha1":"8d14a526e83604e323723b4d25f8f8066f1ede70","sha256":"632f9cacb6b3fbedece774a8d27c436f37dc359de3bb0872ea19603b70347708","sha512":"4c04d137c2448c0d52a4298c858f95c58116c1d77e75899f5acdf6bb61ed839dbdc99fd5556eb63793b81258de40e515540acaeab007da76664476c9be2e514f","ssdeep":"","tlshash":"cd414bd7c53300ed9128e735b8c3ee819c00628d183bb46b89f5ec60b2346d31a53a98","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-05-20T05:30:29.254998Z","times_seen":628,"resource_available":false,"data":null}},"time_used":1942,"timings":{"blocked":850,"dns":47,"connect":243,"send":0,"wait":244,"receive":0,"ssl":555},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo-upload.oss-cn-beijing.aliyuncs.com/echo2.0233c6113bbb9431b925416fbbcdd99dc.png?2.0.1778424858016","fqdn":"echo-upload.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.0233c6113bbb9431b925416fbbcdd99dc.png?2.0.1778424858016 HTTP/1.1\r\nHost: echo-upload.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 5327\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB781BEF331305E4972\r\nAccept-Ranges: bytes\r\nETag: \"9998585E4519B8520DFF703FB6AE3C24\"\r\nLast-Modified: Sat, 09 May 2026 04:00:47 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13465750935726995682\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: mZhYXkUZuFIN/3A/tq48JA==\r\nx-oss-server-time: 74\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":5327,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 201 x 200, 8-bit/color RGBA, non-interlaced","md5":"9998585e4519b8520dff703fb6ae3c24","sha1":"537c571e5fdcee29f97ebf2355129761516dfcd0","sha256":"f91aef4a4db527648d340f322c02842a461c062dd3dba3273849b164ddc7e078","sha512":"391ff08b342b7a917205641347aa3b98f194879085ab30c9767136d2ffe7b20475a40ec23b570244591323081c4b01269dcf24801b4a86dd68430e12eddecd47","ssdeep":"96:pSi5FxEHh/4IZbtQ8KuEb7+ABLI2KJkQPF/u06tX4vCCWLGrmfknXS7iyHM:pSi5LEHh/4Qbtiv+UQ92pX4qJUmb7W","tlshash":"15b17ec378956bccd4d2245504ef8ab090593cb9cdbda18a461c41d96379d726f3a3f2","first_seen":"2026-05-11T12:38:42.243869Z","last_seen":"2026-05-11T12:41:38.568239Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1895,"timings":{"blocked":-1,"dns":178,"connect":238,"send":0,"wait":317,"receive":0,"ssl":1162},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/homeA.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/homeA.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 02:42:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b10a-790\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1936,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"8061eb8408a13b457654ab13953198fb","sha1":"b3c6ec63544ec3bfdce48b8595c1d0776b9a373c","sha256":"24694648b0f76973506d291e2206c941e5d55be5ea85ed6c11fc408a0d518894","sha512":"ee8c844a1d8ac78116b89df7ea1e2880e8425f7c5ff8ebbc59dc0bbb1aa963d2c49a8db92337c3709bc1c412606d88c5a3f3c5005d5c6c05b7e002aaea4f3a29","ssdeep":"","tlshash":"f2412c4b12016e699ab1060d5ae1134c54fec8b4d496ac907d30ff98eb87f588ec934a","first_seen":"2024-12-03T23:58:43.639463Z","last_seen":"2026-05-19T13:26:54.106467Z","times_seen":102,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-770e31d6.css","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:10.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-770e31d6.css HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-4bf9a\"\r\nexpires: Tue, 12 May 2026 00:38:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":311194,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"d1edc828fd3a0c1ff004030280a5712a","sha1":"5585ccd9b20e135175037a7fe085e19d47b6da17","sha256":"770e31d61193185e129908ba0552312ad8eaf0720433862864d8d7cfecb0d9ea","sha512":"1926ad1fdbf8e86170ecb061f04417e723bfef762d29610a9b6c355beab625ec3ec771a23f4e71d2d8be664a171517aaf049aebd988677f262022aa97594eddb","ssdeep":"6144:nnvxsalDW9EkZ8w71ZACkFDS3vyf58rBeV05T7:nv109dZ8w71ZACkFDS3vyf58rBeV05T7","tlshash":"0264d7a9a590117caf27aa7597ce5ad8f23ce6719c118de8f20160094fc3ffa1363617","first_seen":"2026-05-11T12:38:42.24582Z","last_seen":"2026-05-11T12:41:38.549893Z","times_seen":2,"resource_available":false,"data":null}},"time_used":754,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":754,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/platform/dev/favicon.ico?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /platform/dev/favicon.ico?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nlast-modified: Wed, 01 Nov 2023 13:05:29 GMT\r\netag: \"65424d19-10be\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"52fcbdc9b89c76570a1246925d321d0d","sha1":"3f50dd9c170be3d69730f9060d26c40c72bb9d96","sha256":"973c5a83c751f168437e3b261dbd6e939123a9908a711cbed65f18d74696a62d","sha512":"c070c3d1805d341a50bdf930c4fd272b83fe40b7f2f5fa873fc7c46c5cdfb867efa265a29b6d190f393c342edd7079d7181fadc8904d7c6b9b67aee9d3dafb6f","ssdeep":"96:fulu06nYkKiOeP1wl7tU3GLtIJyoAbdDes1:BYgF1K7tU2LtIwoEdDR1","tlshash":"c391debd5deea63cc201467128910264f6f2cf207afb2b0994f7f68dd92d40a532c9a5","first_seen":"2024-12-28T13:26:38.876326Z","last_seen":"2026-05-17T04:52:36.883949Z","times_seen":91,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/tradeA.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/tradeA.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 15 Mar 2025 02:22:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d4e44c-ade\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2782,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"4e93f9efc5ab888855c81d15fa589fd6","sha1":"2c9e75916ca59f4e8ffdd08882c6ee362d2bd342","sha256":"b320e097c21602a4b3388451bcb3f255818a55a07b88dda38617fef4b49eb409","sha512":"d91eb8522ac837c4f635e7d4c00531169e3b99c4d2f73b765ab17ffae2f52a389b0e75be169c598276254f99283937af4fd00b3e0d1cc6941d9f532238d4ff2a","ssdeep":"","tlshash":"bb515ce320df2843ce709f5bfba43a62d02435fad05433480e028e21947a72754b92ad","first_seen":"2025-07-27T10:32:31.484283Z","last_seen":"2026-05-11T12:41:38.546931Z","times_seen":10,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.904Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: zh\r\nlang: zh\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:14 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1019,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"87cd5a5d4e625bb1bad24d98760fa719","sha1":"9b8563d1f0a1c295cf299f976cde826e1f6de553","sha256":"8f5ca6e05b95628a891e705cbd7031224b29b14f651b2308d1d81ef390b67085","sha512":"8f60cbc9a32eda4c968158d6c631d87f5c8277a8c59e63fc53ff5fa8e8d78cec20233f1e9212e5641c51ebe3c909bd13d806e40c6d9b699389f3ca2cd246c81d","ssdeep":"","tlshash":"7d11250e652d6faa140240c775dd7dc45e1f268b8360c9749b9ecf6c01e29be1e2e645","first_seen":"2026-05-11T12:38:42.247817Z","last_seen":"2026-05-11T12:41:38.54934Z","times_seen":2,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/vendor-b37cf9a8.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:11.014Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/vendor-b37cf9a8.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-e2d60\"\r\nexpires: Tue, 12 May 2026 00:38:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":929120,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"85222bc1d26f2c0c59fae9cc0855a72d","sha1":"3df74bba84deb17ac688fb7fe87e4eb47a15645f","sha256":"611b1c1b48b9ecf7b9367ff3535178fc23defd6ea88c4a7c101507b90946d61a","sha512":"b05eb3eb57593bb86fa2e663120b21044fbaf2b15a356db1e7a3d3b2200c2388c8b2c3ee3fa23ca06ddd35bcfe34f46ff5437397f279caef13d05f49f1a7316c","ssdeep":"12288:WBIesgWlYRnKHAsm96ieFw7Ho7FVNIeJWDssQXWprmUM/hY8x4GO8:WBIeCgKgsAeFw7I7F3VLsQXWprmUMjP","tlshash":"c8153ac97292f06147ab20e140bb0006f33d6e59740e84a4f56d99eb7d69d89e2b7f3c","first_seen":"2026-05-11T12:38:42.248733Z","last_seen":"2026-05-11T12:41:38.54761Z","times_seen":2,"resource_available":true,"data":null}},"time_used":475,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":475,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-0c9663ad.css","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-0c9663ad.css HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-1787\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6023,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6022)","md5":"9ec0837bc986cb6ac856c7e80b2ddcae","sha1":"25077835062aa2d9666e26c33af7876c6286eeaf","sha256":"0c9663adeac8ebacfb931b23e5fabf5255b5c4611f80ee605718a79e8d6cbf4d","sha512":"16f5f1226716e4d4935a9580b56fc94ac78d4889ea571a46f5a3bbd3c23a22571c2935cdfd5f40e6146d855ab727e93813ce3184cd40ccc6e6e2fe4be8f53bb0","ssdeep":"48:lh9VE8dNtPd96dXZwFqF6dXU6Eg8lxKvdDvGZhllGBtouj8Z7IlZ9+kgOuD6cqch:P06PVos51YuAi9n4XSSp","tlshash":"fcc1761df7ed58309c77c18ebec04dcceb18fa43e40a4ddab657960249cba933691255","first_seen":"2026-05-04T13:28:20.535003Z","last_seen":"2026-05-11T12:41:38.551421Z","times_seen":4,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/quoteA.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.572Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/quoteA.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 02:42:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b132-729\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1833,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced","md5":"291b8f5b08875e9ce6af79bb0018c980","sha1":"0c791cd5963dd4c6e08ae98d962fc9c2d08bb251","sha256":"842461abf461bae7e50705d3bc2c78ef184195a5e2da4b357ca9be4f435a6761","sha512":"0dde3cc862205dcc759085d58ca8709ee85cae9a3907c30c4267ec14685d4372d8cdadad20c92af3951a0e21edba74cb26a618c0387cba5dc9f3270a68fc299b","ssdeep":"","tlshash":"fa312ddb510a3ab9944500f7e4fb09b6f19814892807ea5e8648688493c48448d0fecf","first_seen":"2024-12-03T23:58:43.672045Z","last_seen":"2026-05-19T13:26:54.057428Z","times_seen":23,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/financialA.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.578Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/financialA.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 04:45:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2cdf8-5eb\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1515,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced","md5":"fca584741f0f25e819f2992d378060e8","sha1":"b2dd4dcfd83454cf474c37ab0a4636c61ff273fa","sha256":"af9f9650a27d83441269803ee0107396b23f5e428d6ff0918f01476e9a831122","sha512":"8434501f5125fd508f944d9fd3f052f274f218b81752d630779727412d4f6f1d6d17d970dcbb875f061c56c646ed4f21f80b6dc140baa97dd74135815be56418","ssdeep":"","tlshash":"1831299997ddc0e6217929372340f49a5bebcf862608218c4e8f46db44508101b4345c","first_seen":"2025-07-27T10:32:31.401938Z","last_seen":"2026-05-11T12:41:38.563946Z","times_seen":10,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/assets.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.582Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/assets.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 11:47:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c330c6-4f1\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1265,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced","md5":"e85cb050345d627e3fe342aa14eba1c5","sha1":"966c36a1be038fd0bb9673e455ff3b6188f47453","sha256":"e9a792d1a596130e30d7b945e466f2691a563090f1ef06fe06fec57d7193e0e8","sha512":"3c97550a30076a06c1c785192fae5a5fcdc73aef866a69df4c5c4c891f35add2e58f895c7d671faec539ec3836898283385311e7479c7f4ef9ba7a6dd65893a7","ssdeep":"","tlshash":"0521b717faffd94437722d83839a85aeb07726082e004809345e49c5ec2a8885ceef44","first_seen":"2024-12-03T23:58:43.646323Z","last_seen":"2026-05-19T13:26:54.058005Z","times_seen":114,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/currencyItem-72f35d0e.css","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/currencyItem-72f35d0e.css HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-587\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1415,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1414)","md5":"110b42c747fc4235fd6ebaa21200abd3","sha1":"2c25f04a4449875fd4f44355c9657263580a339c","sha256":"72f35d0e22eea557d0edb4c63564a7dcdf767fec3d8e01115b0dc81e8046e11e","sha512":"3d670a716413df359ee718845587c2dddd01f76739e65f4d6b95429492b2a7ba359b7d47d9550d71ecc33c3cbe06dd6e94c825c722f8dffc417f9d6b886cc7cf","ssdeep":"","tlshash":"2221f939e7191234f43a8485fe8d304cc2386e93f1db9d88e98b0a563c8bb536230d1a","first_seen":"2026-05-11T12:38:42.252163Z","last_seen":"2026-05-11T12:41:38.554317Z","times_seen":2,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-fa932ca7.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-fa932ca7.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\netag: \"6a009c1a-308\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"92ea283848ed7bc3052c5ed927e4fc88","sha1":"b62fad06b73e8f24399f9dcbe8924121e8c439b9","sha256":"0196d5e29a00f7ccdb2c0d46aa32d51cb27cbcae809b8a20ddd93c8ab06f6a69","sha512":"192cabe8b6af570f220d59a64b9928f48bb80e83c5831fbd039475ff4441dfeef1bed73fa638edd6e4a5f0e22b79657b87dc8ba838bd5ff0f5e865f3603b2c03","ssdeep":"","tlshash":"6501fdf8fd0d8ebb0fb20a4001a0260014091fddfa1419e198867d661be5940d7ce32d","first_seen":"2026-05-11T12:38:42.234029Z","last_seen":"2026-05-11T12:41:38.534692Z","times_seen":2,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":357,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"echo-upload.oss-cn-beijing.aliyuncs.com/echo2.0c33904d6f24c401db3d1ebd4c78b575c.jpg?2.0.1778424858016","fqdn":"echo-upload.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.549Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.0c33904d6f24c401db3d1ebd4c78b575c.jpg?2.0.1778424858016 HTTP/1.1\r\nHost: echo-upload.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 6665\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB7F275553138AB5F39\r\nAccept-Ranges: bytes\r\nETag: \"9A5DE5A3B1FA7D399E8022BC40CEC128\"\r\nLast-Modified: Fri, 08 May 2026 17:29:36 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10276926111861122285\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ml3lo7H6fTmegCK8QM7BKA==\r\nx-oss-server-time: 25\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":6665,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"9a5de5a3b1fa7d399e8022bc40cec128","sha1":"f2d731c5581658920fc344da3ccbbc7ca0caf646","sha256":"64f2b7132738c2c18d8296814344ca862483b2e9a80516f4de6d0293cb642ec7","sha512":"f1861a7db68abca398994c058aa5093ebdd60e2b847c9af4d5106388e37cf8c0689c3115c95ad3182af9a767685df443f1ebf62abc5001f0a0049460c6efc38a","ssdeep":"96:6SywOduhgkWIAWkZ0TZWfMgbt4MX2czd5jNdlByy51/VRi4eBrNOItFptaiYKmcm:6SyBchKIfkYClD2cLtBZDnixhLF9Yzcm","tlshash":"5ed18d71d138db488d00327208284b2d3d3fd9979b50b971f98bd25e319702fb89a4dd","first_seen":"2026-05-11T12:38:42.253039Z","last_seen":"2026-05-11T12:41:38.559422Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1680,"timings":{"blocked":-1,"dns":190,"connect":274,"send":0,"wait":294,"receive":1,"ssl":920},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/vendor-b37cf9a8.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:11.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/vendor-b37cf9a8.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-e2d60\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":929120,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"85222bc1d26f2c0c59fae9cc0855a72d","sha1":"3df74bba84deb17ac688fb7fe87e4eb47a15645f","sha256":"611b1c1b48b9ecf7b9367ff3535178fc23defd6ea88c4a7c101507b90946d61a","sha512":"b05eb3eb57593bb86fa2e663120b21044fbaf2b15a356db1e7a3d3b2200c2388c8b2c3ee3fa23ca06ddd35bcfe34f46ff5437397f279caef13d05f49f1a7316c","ssdeep":"12288:WBIesgWlYRnKHAsm96ieFw7Ho7FVNIeJWDssQXWprmUM/hY8x4GO8:WBIeCgKgsAeFw7I7F3VLsQXWprmUMjP","tlshash":"c8153ac97292f06147ab20e140bb0006f33d6e59740e84a4f56d99eb7d69d89e2b7f3c","first_seen":"2026-05-11T12:38:42.248733Z","last_seen":"2026-05-11T12:41:38.54761Z","times_seen":2,"resource_available":true,"data":null}},"time_used":355,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-d66b1511.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-d66b1511.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-1380\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4992,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (4985)","md5":"202c691f4f1e3b9fd1fa713e8a6b03a7","sha1":"7b3301b3d010e651a97a6549f33dcdb89afe9d42","sha256":"2698fb75e151578b300cefdcceca11e1282c7097e8e659f44741a061971df816","sha512":"5538ca0a9adf2eef322eaf13cb9c45bcf5a3a762c05f3f695e7de78f888da5ca87c4facec0a157b85055f6819d4981ff8d1d57c9c73f49737e8578f5f41cd0cc","ssdeep":"96:o+9JiR9YiqD+wSqrOByR2b8hiDi+L2mMVW3hvW7O43fO25i80of5Uj06:o+9JiTYiqiwSER2bDT0ehvWZm26of5ib","tlshash":"19a1a798f502c1badbbb085088490420329c7ffaf10448f6f6fdad4967b4d78e794724","first_seen":"2026-05-11T12:38:42.224149Z","last_seen":"2026-05-11T12:41:38.534005Z","times_seen":2,"resource_available":true,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getAllSetting","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12208,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (11868), with no line terminators","md5":"d23d7e74e24005b2261984f2bb8b0520","sha1":"648b1ff7c95426f11b273575a29a6bdd033f9e9d","sha256":"61a103d1f4b6f5bed5b2855a375e174c29a073e962fc01029b71b22653a479cc","sha512":"43d985e88e0b207cb3c376cee7cdab836355c7350a598f8a8c8e59e2917f0ab5eb5d906bead137927330bed9c7eaee72eee0df7e57d20d153cb9bb6b63a91c54","ssdeep":"192:NMZLT5OSpQ+oQD+IqGucLO4YxpPfWb+cet5bOGk2seiMNV553nOS/St4XlaCjlOR:euQ+K2OMfwNeY9f","tlshash":"5a42554b32d8ccbd85d61dcdc47b364b78dc38abe6509c45e4e7ae5c949ad72480b08e","first_seen":"2026-05-11T12:38:42.241442Z","last_seen":"2026-05-11T12:41:38.540582Z","times_seen":2,"resource_available":false,"data":null}},"time_used":304,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/zh-3294a3d5.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/zh-3294a3d5.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-931d\"\r\nexpires: Tue, 12 May 2026 00:38:13 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37661,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (27820)","md5":"492d146f4511c4eadae73543dad6b314","sha1":"9e8e9b07637b99fdf9f4df50e68961f78ba82a56","sha256":"4e39721fae5386894f559b9ac6c037a9b03d40c1d7da72aaf947cb550d3f823b","sha512":"05ab2f1a80780af1af726395e5003a12cd101aafbd588aa7adff8a7bb5d1761d32f3d4bd3b30b4d5127e437b4938ffe6d0d7b2d3cd31ea8841e98107e2da53ec","ssdeep":"768:D9sgcXP80NU/fLS5LW0/so/mgrUYxP7sP+:DzcXRmetW0/E+","tlshash":"9df2e6d47daedd9a40e3a627b04f990120f75ec68626c4191fe99ef562d8f039783b30","first_seen":"2026-05-11T12:38:42.253896Z","last_seen":"2026-05-11T12:41:38.565551Z","times_seen":2,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/grid/defi_host_lockup.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/grid/defi_host_lockup.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 02:58:41 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b4e1-d97\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3479,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"48decddd32487cb4255ade73d9851c4a","sha1":"b8b756a4c0939ec61bc43be85f33fa812c931fb5","sha256":"c44f67a7fce9160b64a5e5735c99a71e1c607a6a944d1851086cc82ab3bbbce7","sha512":"c0b2a77390356925e8a17e1aa7d632e17c73ea8cc2174674f44a728f2c69eaa87711085b500f2ea9183b89f27a8c7f6a8be2049be6fe4aeeda37ae4494e50158","ssdeep":"","tlshash":"8e717e4bbcef5a82d1cc93b606dafe22333fd3e5a609de2447d024147d854a598ecb11","first_seen":"2024-12-03T23:58:43.609936Z","last_seen":"2026-05-19T13:26:54.05268Z","times_seen":50,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/assetsA.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/assetsA.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 19 Aug 2024 02:46:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2b222-7e7\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2023,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced","md5":"5c2fe5c67e4dd5963b878288aa239620","sha1":"526bd2776ebb020292871004d84d10f7e8924eee","sha256":"906fc53eeed6dd63c892afe4b1a38bc39e34b8d91a90b56d30a47dc9cad2b9ba","sha512":"ff0aecbaeb8707743ab56c63313ba679b55095c2068e7abfafaa7333b6e5543581e717b011607dc0c362339fa1fe93562cc328a4516a46707012a3d510f1940a","ssdeep":"","tlshash":"97410ce6f23458faf83fd477205e25ce9f65cc16237d55128e828d716005438f8806c5","first_seen":"2024-12-03T23:58:43.655461Z","last_seen":"2026-05-19T13:26:54.028742Z","times_seen":23,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.654Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T14:56:09.172064Z","times_seen":15491553,"resource_available":true,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/type/defi_activity_type","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"OPTIONS /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T14:56:09.172064Z","times_seen":15491553,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/binance-coin.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/binance-coin.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 12869\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB61698CC353113AF36\r\nAccept-Ranges: bytes\r\nETag: \"A533EECDEE5A789E7D94F8F79F95D588\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:05 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18158548296662870332\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: pTPuze5aeJ59lPj3n5XViA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":12869,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"a533eecdee5a789e7d94f8f79f95d588","sha1":"f1ae6df3a9baf6dbec969c6d1ab622850a282895","sha256":"ea257fac91d01858b7dfd0361f8b480caeb3d57b080570ef4b4f41d5d7e68c90","sha512":"e46ca5c2239c89c783805b1f4e17664118e57e95dff6513b8ff917aaaa763b922c6286b48d0e6daca644ae30c3e821674dade74a056837865353b451c50d074b","ssdeep":"192:3GSu8nGgOCcrSaheqQThcTrOcOAasSqXzcxfuZWfWOKJ6mVgCd7mOOwRB0IG:5/POzrSTThcTaPAaFqXzcqG6ekvP0IG","tlshash":"1442bfd83898c3e455233e69d56e4c138122251a66588517f22a2b7dbf03af27fcf1e6","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-05-20T05:30:29.223996Z","times_seen":668,"resource_available":false,"data":null}},"time_used":1980,"timings":{"blocked":845,"dns":46,"connect":250,"send":0,"wait":287,"receive":0,"ssl":549},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/images/dark/tab/trade.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.576Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/images/dark/tab/trade.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 15 Mar 2025 02:21:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67d4e422-b4e\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2894,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"4993b63bc7148331be75e6ac61491ff9","sha1":"f622b2f1f80970be75c0b064abc63948e08dd19e","sha256":"bd5042359cc96823864fb25ff6b6f9f0382edd6a3f0e8dd8205ef7388a074663","sha512":"d6b74837ad62cfe70007e6d728f37732f809b5031f557e2c8c6331d006fe575944648ed03834f4aa6dc918977392d04aee814a9d49287515b647be3f0156a8b6","ssdeep":"","tlshash":"6d514be6b8d8bd96471422428e738ae1e4361819cd0c81553928b7f36569c01edf695e","first_seen":"2025-07-27T10:32:31.442262Z","last_seen":"2026-05-11T12:41:38.544722Z","times_seen":10,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/coinInfo.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/coinInfo.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 55728\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB636350F3138E726BF\r\nAccept-Ranges: bytes\r\nETag: \"48384A67185DBDFEEF3AA43C99D3319C\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:04 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3192987439189544564\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: SDhKZxhdvf7vOqQ8mdMxnA==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":55728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"48384a67185dbdfeef3aa43c99d3319c","sha1":"23e15189bebafbbec8b23e8ed0f3392a9b7979ee","sha256":"1ceba4efa6a645fbe532e520385f37001922e14b6aa7b4ebeb19e755014feb39","sha512":"2f7a13f56ff64b874a76994d00f198c5fc2b7424181935e641eb81bcf171db54fa50b711502c0c4a7e8f5c934ed5747233d87ae0602916244947d3724eb3ce10","ssdeep":"1536:5ko5w6RHlzxqElMwBI6M3iD+oLKTn6EPwhk6g9p6uP5I:x5fR9xjlMGnMSDYLPJ6bOq","tlshash":"0d430247c0529ed2c68853aa0e3de48a84779d12358f80577ce6525a82e2df29bd770f","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-05-20T05:30:29.289112Z","times_seen":630,"resource_available":false,"data":null}},"time_used":1244,"timings":{"blocked":1026,"dns":0,"connect":0,"send":0,"wait":194,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo-upload.oss-cn-beijing.aliyuncs.com/echo2.0078060906dce485bb31fc9b394c26ca8.png?2.0.1778424858016","fqdn":"echo-upload.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.141.181.162","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /echo2.0078060906dce485bb31fc9b394c26ca8.png?2.0.1778424858016 HTTP/1.1\r\nHost: echo-upload.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 4563\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB7EEF2D03934AD6C0A\r\nAccept-Ranges: bytes\r\nETag: \"BFC6CEAA738678BBC1CA2B4249B0585C\"\r\nLast-Modified: Fri, 08 May 2026 17:41:00 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 609567900074349062\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: v8bOqnOGeLvByitCSbBYXA==\r\nx-oss-server-time: 18\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":4563,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"bfc6ceaa738678bbc1ca2b4249b0585c","sha1":"4c9fb73dbbd9add0db3339e17874cc7fefb49f98","sha256":"fa63570e2771fe1cc991c9be425bb620729949d07593d6bce4eb0975de51e344","sha512":"c80d567d89bf44555d66b27b6a8637319af03ae0ad8737b048eb200fb7321ecce0c92a000b8874b4119865ba281ab43398d7206faa3aef4da8421bd454b7ada2","ssdeep":"96:6ST3YGmne7kXwxnconiyNfu5xSGAl4NFbtTo9Yf+6MxqzEfoXIZHu:6STIy7kbqiymjbf+WzEPu","tlshash":"13917dd6a42a93e5cfc4ad70c2cb4a6398ed3618b404b40beb6699340b1b41b9dc6755","first_seen":"2026-05-11T12:38:42.257605Z","last_seen":"2026-05-11T12:41:38.551976Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1853,"timings":{"blocked":-1,"dns":188,"connect":233,"send":0,"wait":252,"receive":1,"ssl":1178},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"webapi.sgaibingx.com/ws/02cdd012-01ad-44c5-8827-028f9d127f61","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"GET /ws/02cdd012-01ad-44c5-8827-028f9d127f61 HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://sgaibingx.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: ksdf8SNTdf0suIauBtkqcw==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx\r\nDate: Mon, 11 May 2026 12:38:13 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://sgaibingx.com\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: Wq1HJqS3cjTGfiI+pEcBebRQwSc=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T14:56:09.172064Z","times_seen":15491553,"resource_available":true,"data":null}},"time_used":2300,"timings":{"blocked":-1,"dns":755,"connect":1015,"send":0,"wait":263,"receive":0,"ssl":1033},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-11T12:38:09.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:10 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-14b2\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5298,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1094), with CRLF, LF line terminators","md5":"0d52710c7a575f33924855380e1b813b","sha1":"23bc86206d222db5cc326cc15f60da5718c4d4bc","sha256":"07c4b725c1f8309f5a5dd8625dbf9e7c8201d91a8cb72dd64f39bda4334d3055","sha512":"f66616d6aedee51c5fe236dc4c739b654ac68e719336ebace83d5d1ae9b5519db6752c733182802418726669d90e8426503b20ffad0fe3afbe033390af863bff","ssdeep":"96:+r824of53uSPtDvJ4mt/ujr6TCZydHRH/gV2mUsGKAiowGwuB1niH7iHYH/2:+FJ9PtD/aZCxf02nfD3bwuB1nibi4f2","tlshash":"deb150b75da0881a23711a2beee7f018df615197c6595850b0cd40ee8fe1fe584cbb36","first_seen":"2026-05-11T12:38:42.258459Z","last_seen":"2026-05-11T12:41:38.541184Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1334,"timings":{"blocked":542,"dns":31,"connect":250,"send":0,"wait":250,"receive":0,"ssl":258},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.sgaibingx.com/api/common/getAllSetting","fqdn":"webapi.sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.000Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:36:49 GMT","end":"Thu, 06 Aug 2026 12:36:48 GMT"},"fingerprint":{"sha1":"6A:74:8E:A6:F9:5C:0E:8E:E2:0C:29:94:2D:E8:43:D1:65:95:2E:E5","sha256":"1F:1C:2C:89:7C:BE:CB:DA:99:74:BE:5A:6A:77:9F:9D:D3:76:76:E3:F2:D8:4A:27:2C:F0:D2:94:06:11:A1:11"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://sgaibingx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://sgaibingx.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T14:56:09.172064Z","times_seen":15491553,"resource_available":true,"data":null}},"time_used":1340,"timings":{"blocked":531,"dns":50,"connect":249,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"webapi.sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-f68dd8b7.js","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-f68dd8b7.js HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a009c1a-135e7\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79335,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators","md5":"ce83d1a9a0a4dd833b4fde29773c5f16","sha1":"67d6b2c8523253dc773c25e749b50acc76210620","sha256":"33f98d4e75fe481a7091e4ff97d83abbd70578d16d8f03de7c01bde35277ed28","sha512":"21c5ed6d78535ab3754d82b24e014af0e65a496bf03b745a2978f744e6f4300728698a8ebd5d4edcb364e22b5b50d78be3146935ff0458853774dbb32c612786","ssdeep":"1536:KOoSdfbd5d8hYlWTe1Rp2GJyqXJvbOVL5NbRGgJv6CyCQno7VQ3pXR2A1zVK:hd8/TejLO1bvJvgno7VeB2r","tlshash":"8473e7ddb282f436429661a0403f060bf337ae99741e4598f228d4cd7e7c989a17bf79","first_seen":"2026-05-11T12:38:42.226896Z","last_seen":"2026-05-11T12:41:38.54233Z","times_seen":2,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/svg/dark/user.svg?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.428Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/svg/dark/user.svg?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 551\r\nlast-modified: Mon, 19 Aug 2024 11:30:30 GMT\r\netag: \"66c32cd6-227\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":551,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fe825252aab11dd240726d05c35fa36d","sha1":"31e423d96b832f0ccb5dcc7c5b5935459fc9c095","sha256":"d91946a14ed139f4b43f6412922a1ed1245e7447302fcb30d62bd60e6bf2de09","sha512":"9f44729fb7631530f9518603dec847239e5c7f6642aafc79a01e49a7bdc86d7234517265d8026d97d8be565d0b1c982041acd0dab8e3e63ae2c8a320cf015bed","ssdeep":"","tlshash":"caf04cf7501c95d950014150c9de3a85573df233a3468d5eb7a114f78a1454b217c595","first_seen":"2026-03-27T06:35:36.186978Z","last_seen":"2026-05-11T12:41:38.531931Z","times_seen":6,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/svg/dark/mengbanzu12.svg?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/svg/dark/mengbanzu12.svg?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 19 Aug 2024 05:33:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66c2d939-76a\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1898,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f262267496bf86de09b562db82a676d9","sha1":"a9163b950a68f56705da45159ba44533507505c5","sha256":"8c02636fda22906716b1b028e7dfde4a436cb95da0029bdeac8e201030f344a0","sha512":"c9bda0880dbea6da7260578858be5402c6a62d85cb8f8639f2313e02f7fda87ae24d05de9b87efb86dd1341dab2165b9d90524dd44d2d1938b25b63a2e1a6c6e","ssdeep":"","tlshash":"364175c659f952e4f2cdc320d6a731051e6a747730e1026cfeeea5656b308f90f8e049","first_seen":"2025-07-27T10:32:31.414438Z","last_seen":"2026-05-19T13:26:54.067163Z","times_seen":103,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com/waihui/solana.png?2.0.1778424858016","fqdn":"api-admi-malai.oss-ap-southeast-3.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.254.218.26","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-3.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:22 GMT","end":"Sat, 02 Jan 2027 02:51:13 GMT"},"fingerprint":{"sha1":"74:31:9C:D2:75:E8:FA:D7:F7:C4:5D:D8:1D:E4:C6:1E:70:F1:BE:2A","sha256":"24:2E:4D:47:FF:1C:EB:84:A6:C9:AD:91:6D:BE:A1:25:7F:F0:23:AA:B1:8D:90:AF:A3:79:C2:C8:62:FC:E2:3E"}}},"request":{"raw":"GET /waihui/solana.png?2.0.1778424858016 HTTP/1.1\r\nHost: api-admi-malai.oss-ap-southeast-3.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Mon, 11 May 2026 12:38:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 25649\r\nConnection: keep-alive\r\nx-oss-request-id: 6A01CDB636350F39387426BF\r\nAccept-Ranges: bytes\r\nETag: \"670C723ABC22056BC5368CA2A97DD6A2\"\r\nLast-Modified: Wed, 08 Jan 2025 05:16:04 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10769821075161595358\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ZwxyOrwiBWvFNoyiqX3Wog==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":25649,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 201, 8-bit/color RGBA, non-interlaced","md5":"670c723abc22056bc5368ca2a97dd6a2","sha1":"5ba69b915180c31e4d35a524a9de7b3409ef80a8","sha256":"11192935f626fdb37ddfd8418d754feee326fc6f0a3ce7aa6e61283a820d8b09","sha512":"546901ff0dd66b4768e7560c2ccdceedc3bdac577eea114e600613d98319bde07a84d4fd8a303f4c34c05b3a26c73f03602ba38aaa5436dfcdac6712e0868652","ssdeep":"768:9SDR4lelsfdJTM1JiB+mP9LsYKPlAgezlYWXu23fgiqs:9Alsfd9MqBZ1L5MGgQuW+2vLqs","tlshash":"feb2d076137254ea4442115b97364e812c39f4e3adea6e2c7507a40c7d4a33b30db6bf","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-05-20T05:30:29.215241Z","times_seen":669,"resource_available":false,"data":null}},"time_used":1931,"timings":{"blocked":847,"dns":0,"connect":260,"send":0,"wait":268,"receive":7,"ssl":546},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/resource/fonts/Arial.ttf","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:11.572Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /resource/fonts/Arial.ttf HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://sgaibingx.com/assets/index-770e31d6.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:11 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1047012\r\nlast-modified: Wed, 01 Nov 2023 13:05:29 GMT\r\netag: \"65424d19-ff9e4\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1047012,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 25 tables, 1st \"DSIG\", 58 names, Unicode, � 2017 The Monotype Corporation. All Rights Reserved. ","md5":"ffe66dbfc4b07f36ef38dd621ad2c7cc","sha1":"e032b102cfc37c3226d17e1b462edea5fbf8fe1c","sha256":"c1216a01b3cc4e94df72577a6f618154058a1d8999ed58fa31ab7e54c7e4be4b","sha512":"3c7952b71c8117938c5284efca0e0b3e8c20d7b84c74a4890f76a72af3b26295786b0f7c33d9b6c980527b4c4c8dad628d1f5e7e5f202d11076367f082349bb3","ssdeep":"24576:NoQIQRjo/Y7wjgTmKJ4WxA7EAD4OBfDamXKE6AMra:NHIQJo/Y7wjgTm0PxAwJHE6hG","tlshash":"f125be0bf3929f0fe3902b38c9a5d761939b76189b2743b73d8c5858ecc85a45e487d2","first_seen":"2023-07-29T15:16:45Z","last_seen":"2026-05-20T11:21:40.066242Z","times_seen":1284,"resource_available":false,"data":null}},"time_used":698,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":447,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/assets/index-d253bac1.css","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:12.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /assets/index-d253bac1.css HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:12 GMT\r\ncontent-type: text/css\r\ncontent-length: 61\r\nlast-modified: Sun, 10 May 2026 14:54:18 GMT\r\netag: \"6a009c1a-3d\"\r\nexpires: Tue, 12 May 2026 00:38:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":61,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"c88360cef8df86c995e562333879873a","sha1":"8674b487cf92f20149c0ef681b42a599469813bf","sha256":"d253bac175b5b52734c192e96d18c8b26b0c92b881584f63b7de91bff96c6149","sha512":"eeeb5ec01fe8c7d483182fc60a2b54ee1d02994718fd9b23a6182f49ead49d889889f21592b2955bcac8cc859023204782db3210d3a0c706a3e4677564db3636","ssdeep":"","tlshash":"f6a0026d11156404b2225341ff5ff95dce686917da91820453421c9135cbe8f25d821b","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-05-18T14:02:18.904088Z","times_seen":307,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sgaibingx.com/platform/dev/logo_144.png?2.0.1778424858016","fqdn":"sgaibingx.com","domain":"sgaibingx.com","tld":"com"},"ip":{"addr":"156.248.73.39","port":443,"asn":399077,"as":"TERAEXCH","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sgaibingx.com/","date":"2026-05-11T12:38:13.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sgaibingx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 12:37:17 GMT","end":"Thu, 06 Aug 2026 12:37:16 GMT"},"fingerprint":{"sha1":"27:51:63:F6:8C:27:4D:CF:37:D1:7C:04:39:59:E7:FF:DC:25:DE:88","sha256":"A9:2C:A4:C7:80:46:8F:2C:4F:83:A5:58:C4:38:3D:C9:42:1E:77:3E:5A:92:DB:1A:39:28:D8:85:14:7B:CB:EC"}}},"request":{"raw":"GET /platform/dev/logo_144.png?2.0.1778424858016 HTTP/1.1\r\nHost: sgaibingx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 11 May 2026 12:38:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 01 Nov 2023 13:05:29 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65424d19-b5c\"\r\nexpires: Wed, 10 Jun 2026 12:38:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2908,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced","md5":"9a5a67a3b984ab223eef25ac3f419432","sha1":"5b07513414db526d86d32c3b8f42c0dbb62a8e71","sha256":"38055609c5d61aad696e97b746489c7f886b79cc069326312c6a111062019777","sha512":"4f610ac72700d9727ff6d32567b7d71a582a8c87eb067e4f33a8a910c66968514277df68c0794d1db6ce3a94ed0111003a71afd8cab40dcb3bc062dfb9f14bad","ssdeep":"","tlshash":"0c5119e6d89d003a4dd329b7b0f03e45fe7ab5fb5ab6330480972b3065552ab84d8327","first_seen":"2024-10-20T08:32:52.883488Z","last_seen":"2026-05-19T13:26:54.924228Z","times_seen":267,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-11","alert":"Sinkholed","trigger":"sgaibingx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}