{"report_id":"781f3062-6cd6-4261-aa0f-d54ccf518659","version":0,"status":"done","tags":[],"date":"2026-07-12T21:14:33Z","url":{"schema":"http","addr":"sablier.cc","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"sablier.cc/","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"title":"Sablier | Onchain Token Distribution","dom":{"size":570728,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"f4190772f5b60381d4e3ef7dce2d98f2","sha1":"a000aaf40cf6d202398def8aa70e769972385ebb","sha256":"464b532a1634ba77e01907d7ea59cc32d63baa7740fa57b99859c7a9e5b2afe2","sha512":"eadd25003afa169d63b0400ae21ac1c5e23da84a6521e3821db9b08e29e2abc26fa0308648d03e8cb4e8269df2d89c62ee3bc8ad6a329b105e41ebdcf8549396","ssdeep":"1536:R/4Sxtl88LTSicCZq9u3i08G5kPg8HCgnpZCH37KoqqTb0aaAJrSB5zWGVnw:t4ULLc6ageCg2TbTes","tlshash":"97c4a45b01f3101a3937b4945fb51b5aab64f013d40ed998baed22d48f87dcadde3288","dom_hash":"domhash827b5e11ca5cf6b5d0d91f9e79827a93","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"sablier.cc","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-16T21:14:33Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"sablier.cc","ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-03-05","domain_rank":843854,"first_seen":"2026-07-10T12:45:58.101051Z","last_seen":"2026-07-10T12:45:58.101051Z","alert_count":32,"request_count":16,"received_data":743152,"sent_data":8046,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ant Design","description":"Ant Design is a UI library that can be used with data flow solutions and application frameworks in any React ecosystem.","website":"https://ant.design","common_platform_enumeration":"","icon":"Ant Design.svg","categories":["UI frameworks"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"sablier.cc/static/js/app.js","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c8ccad33af96a4490edc4d28a3e0b164","sha1":"cbeaaf915a241e6d30c3fc4dbf5d2320a9a1fda9","sha256":"65ffac016fd0eec6d11a770142f4e5f2cc5d72201767fee143f962e83505d9b1","sha512":"4236f4fd6d85221b6e6ce4f14f5157e5f7343774c3ab4e9b8ba0a9e3fe0dfaceb54fcad89697ee9237512a4ff0b029bba8a58c7f2ca88731549e514adf61b977","ssdeep":"","tlshash":"2a01fc5db2e18337c037b69b065f611d670d405b85095d5cb84d5bc09f31c64bec6b08","size":751,"data":"","first_seen":"2026-07-10T12:46:02.048618Z","last_seen":"2026-07-12T21:14:35.036933Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/js/jquery-3.7.1.min.js","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87532,"data":"","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-07-17T14:38:31.473692Z","times_seen":29891,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"sablier.cc/","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-12T21:14:00.523Z","timestamp":1783890840523,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:02 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 23 Jun 2026 05:17:26 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\npriority: u=0,i\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qtb5PVjwF3Gn7Pqg1TfuIi8xq4VSRUEabkFjTWXGxXjRBS076DK3F86ed7p1brd3uGcg2EFYZj8Zw48NGE0SU%2FIGZt1rmlhsJnJR1nz4itDMWWH%2BnkkvMddvLc11\"}]}\r\ncontent-encoding: zstd\r\ncf-ray: a1a30e199c2356b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ant Design","description":"Ant Design is a UI library that can be used with data flow solutions and application frameworks in any React ecosystem.","website":"https://ant.design","common_platform_enumeration":"","icon":"Ant Design.svg","categories":["UI frameworks"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":570837,"size_decoded":53753,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"717611f969a959532298ff3a4a35c2d9","sha1":"0a34c7464b3fdeb9ed82930d6f275462a034c686","sha256":"2abaa6616e91988e0570b0ed5fc2cfa3638fff92b42a73069d4acb0c4845af96","sha512":"c5f7ae0cbd194624168d31aa53657d0c9bb351e247ede42fa33f3d0ba20cb46588a82fdc93d32d85872005c81107ef7f70f6c69c138ddfcdea8c91fabd18e4e8","ssdeep":"1536:+04Sxtl88LTSicCZq9u3i08gkvgcHOgHJZCn3C7YKtTb0aaAJKSBOzWGVnO:J4ULLcZg+OgxTbT0a","tlshash":"e4c4a45b01f3101a3937b4945fb51b5aab64f013d40ed998baed26c48f87dcadde3288","first_seen":"2026-07-10T12:46:02.065221Z","last_seen":"2026-07-12T21:14:35.01561Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1878,"timings":{"blocked":0,"dns":21,"connect":26,"send":0,"wait":1526,"receive":305,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/coin-usdc-blue_128w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.473Z","timestamp":1783890842473,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/coin-usdc-blue_128w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:03 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:18:12 GMT\r\netag: \"6a3587e4-1008\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PEOW2xxKR9ZIZTrzELRw%2Fywdnq1JQBG0xFM0u8n3nOkke%2BtVlYnWCpXNG6%2Bg0wvjgTZZvMHZWEPBUSXX1dp8AxSwUyjfFmCCHt0ZJp89K1utfGJ8smLvECnGHaze\"}]}\r\ncf-ray: a1a30e257ca356b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 4104\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4104,"size_decoded":4828,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e440e46884b309dd69c926cfd26fa54f","sha1":"ce6ecaca28188ec84f0570c09f38b538a7acde99","sha256":"944df0dd069708a346f20d7c55d04645262ed6bd8cd81d265683f9fc0aa0f9eb","sha512":"3f7e4b310b405b91fb7a4133572d7e15ddd8bb0471f525a45187f351586988db9ebab07d7b5e4ab53b6f21ef9eb79b161497d2593b62aded1c0911e9f07f0076","ssdeep":"96:ZaML/NsLbmBcR7J8YJjU7NDVBEvSgd8APfgawwVI8euzPpE5NwS5:AMLVebx71pWqqgq8fgOeui/5","tlshash":"c4815be04be6289e18a5b1905bd641d40af3cd68cbd6cc7efb53b12d4525f101436bb2","first_seen":"2026-07-10T12:46:02.056877Z","last_seen":"2026-07-12T21:14:35.018492Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/maple_128w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:04.133Z","timestamp":1783890844133,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/maple_128w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:05 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:21:34 GMT\r\netag: \"6a3588ae-58e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BsLwkhZFgs5RRy7MEl0RKVyFIrLOiaCghhL%2FnS8%2Bkp81zn2dTCu1PuykoxyoK8V8iT9uprXVD8e95eQ32od018kv6F6EyqlU4mcSUSFK%2FWYDKDPPW6qGIvcQQr%2F6\"}]}\r\ncf-ray: a1a30e2fdcf856b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 1422\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1422,"size_decoded":2149,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"1d9fca4935b1aa5576eefc8a22c0d3ca","sha1":"78c9450592aa965e747c9d5795d264b10c0cbc4b","sha256":"f19d63d1eebcd54b23eb9f7e6b300a809ab9a1571116233d512bde2d66d606fa","sha512":"bb0f60574889ed05492096eb7add06c096cb367fc930dbec905b3bc7238e944d41900a18953bbcf6e0f3f4227061bccff1cb50d7e6a26a847d318dcbb298e633","ssdeep":"","tlshash":"b321c61e5c99b6e9e954d6c40f0a83a4d8140b2bb20e9b394ff310c6a31f08b9f2a451","first_seen":"2026-07-10T12:46:02.069923Z","last_seen":"2026-07-12T21:14:35.025829Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/android-icon-192x192.png","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:04.631Z","timestamp":1783890844631,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/android-icon-192x192.png HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 19 Jun 2026 18:14:26 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a358702-156b\"\r\nexpires: Tue, 11 Aug 2026 21:14:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Z51IezLZPcbfTu8SxnRzB%2BzsQA0funO5t%2BjXtCV5PsUmcqcM7kCzyyCsKSloNWwce30ZUt%2BbH8PJj0943j2IMOxxKo2I%2BYdP0S49zDecO43gpARZ1pRs518%2FCuG3\"}]}\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncf-ray: a1a30e32fd1756b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5483,"size_decoded":6288,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"e8c3bb3ab97f24ea41134e51552d966c","sha1":"a8201a55e741337b935265f8bed1b29bd2052e4e","sha256":"745122ca59da432ffe6c3edb42251885e9c2284a99c1ccda1af5e4da5263f387","sha512":"0c96c84a268f2915b0aa3c24d2ff7337a56dc6fe8ed187257f944b23e2ea660d5d3a90cb57740bc8e2d7f19a1795d66c558c05827486f35fdfc6990b58df6d86","ssdeep":"96:Yg9Mb98fE40Zey7zQbDGMpf7hQl4xfyt78JrsVF2S3Io0cNZjkHdhtVBXAY:Yg9W9qLOx7zUqMlh51yt78JAF2+IBcNE","tlshash":"c5b18ed6ce25da2fda609793d6cb8758d8f012585e3a4d1df13c1d5a455f0b483c224a","first_seen":"2025-09-21T06:59:53.568572Z","last_seen":"2026-07-12T21:14:35.029739Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1195,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/js/jquery-3.7.1.min.js","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.456Z","timestamp":1783890842456,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/js/jquery-3.7.1.min.js HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 19 Jun 2026 18:58:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a35915c-155ec\"\r\nexpires: Mon, 13 Jul 2026 09:14:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DyeHlC%2Bf3Vyy8jnxHXeM6Gn%2BtZF80uAs%2B07sOnEcWlod2zEcGCX28y1oOkszBnKDUgtLCdrVIz47TVRHI6WKyZ4ZlVQz73udTOslxkN0zum6tlYvENBWjgvYlzH5\"}]}\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\ncf-ray: a1a30e255c9f56b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":87532,"size_decoded":31409,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-07-17T14:38:31.473692Z","times_seen":29891,"resource_available":true,"data":null}},"time_used":1494,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1494,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/hourglass-d1-blue_640w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.466Z","timestamp":1783890842466,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/hourglass-d1-blue_640w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:03 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:15:04 GMT\r\netag: \"6a358728-8800\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jhiCjOetGfY18lM%2Bio53UFNWQxrt4fT%2FJ3WLad3HN9EjKo7LE4chTH6bU6nzVVfIUsTjJw%2B4zECYN7KCOnk4zJ49w1KhvQwCeUThOkzmz2QVIMy5Dcp5IX29MRYE\"}]}\r\ncf-ray: a1a30e256ca056b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 34816\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34816,"size_decoded":35541,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"647f68031514f7b09ef36f42f616c397","sha1":"e481de2dec2f9266faf96b34d77ab49b30e23948","sha256":"231ac33ad44f7b4c5192fa92a761fe2cd2182a4ed5621e1fd2e3f69502d6ea9b","sha512":"edd3eac1319801b0d6ec0453b0698772126b7b5dcea9cb0400aa9822f8788b3fbe0c027cdf486ac888fb5cf3ccb5f0e28140ba19636fe23a41ff4df3385c42b6","ssdeep":"768:Kg4rv3YvSfhPbpWcqh0iiODcnywpsaiuA1eKADKYkDx0oriH:KgQovSZPbIc66nyesX1eKASx0or","tlshash":"fef2f1ca6b2cc81fd542dd01b724ac5072b7c3626e88e4b937c146d88d9617aa57ef83","first_seen":"2026-07-10T12:46:02.054805Z","last_seen":"2026-07-12T21:14:35.032197Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1492,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1491,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/coin-eth-blue_128w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.471Z","timestamp":1783890842471,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/coin-eth-blue_128w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:03 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:17:32 GMT\r\netag: \"6a3587bc-e1e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XOr0fYW8WmeZ3dGSr4WFaHEXrXWBp6UquyhI0wl88GBOL0HmPKcIrivrcfOSebroaEesHbXAC04E98mtxjOZCJ8hBh2ef2HMg6oPXlYf7PDsVMERPXxTmi0XfRoY\"}]}\r\ncf-ray: a1a30e257ca256b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 3614\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3614,"size_decoded":4331,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"7aeef91aef83f994a419797d64665341","sha1":"d4357a7c358bbd8ad620929e710f14cb50a58a76","sha256":"f28196cec0955fc09707ba9e369acf084065e6da895234490c7840c76560c2e5","sha512":"572a0b6c70f684d3d74daac7ccb3c72c7379fbaf2c52da12e29df3934005a9688e0bb3ee427cf0e9a707fef2d7b1837f3864ecfffc3c19919952043a07975265","ssdeep":"","tlshash":"f0717ea877a1997dd98318cc0e1523d00c6c2cd30e7a868573e3e48357999dcdb3138b","first_seen":"2026-07-10T12:46:02.059569Z","last_seen":"2026-07-12T21:14:35.034306Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1201,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1201,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/js/app.js","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.478Z","timestamp":1783890842478,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/js/app.js HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:03 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8Yn12tNzm3eu0hsLC3sHA%2FOPbfH0gsPue4P%2FqBtdsOvt9rowz2fBfvk01gixEoWwyeNEnTpTK3yIBarTL7uYNY%2BQkEVH5HUuroxuPSbP4BvYFli%2BPdi%2FOpvq%2F60i\"}]}\r\nlast-modified: Fri, 19 Jun 2026 18:58:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Mon, 13 Jul 2026 09:14:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\netag: W/\"6a35915c-2ef\"\r\ncf-ray: a1a30e258ca556b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":751,"size_decoded":1055,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"c8ccad33af96a4490edc4d28a3e0b164","sha1":"cbeaaf915a241e6d30c3fc4dbf5d2320a9a1fda9","sha256":"65ffac016fd0eec6d11a770142f4e5f2cc5d72201767fee143f962e83505d9b1","sha512":"4236f4fd6d85221b6e6ce4f14f5157e5f7343774c3ab4e9b8ba0a9e3fe0dfaceb54fcad89697ee9237512a4ff0b029bba8a58c7f2ca88731549e514adf61b977","ssdeep":"","tlshash":"2a01fc5db2e18337c037b69b065f611d670d405b85095d5cb84d5bc09f31c64bec6b08","first_seen":"2026-07-10T12:46:02.048618Z","last_seen":"2026-07-12T21:14:35.036933Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1205,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1205,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/favicon-16x16.png","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:04.633Z","timestamp":1783890844633,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/favicon-16x16.png HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:05 GMT\r\ncontent-type: image/png\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:14:48 GMT\r\netag: \"6a358718-28b\"\r\nexpires: Tue, 11 Aug 2026 21:14:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kvak0%2FcBwpTs5jJpXCMPh%2B8ac7c3vdu4RiWi2o6okRuHKkmb3l0jM7DkntgAJ375Sim58JHJfk6Z8nyuA%2FrycETtGAd1sgbENT7lRp4nnkcrk1SvRpuMp7pJ1AL0\"}]}\r\ncf-ray: a1a30e32fd1856b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 651\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":651,"size_decoded":1417,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"ca523ec1be4b40a3c2371039115d727a","sha1":"7addfbe7dbd184eb93f5a2347af63fa2a8300b16","sha256":"771850e95059dccbd9dfda7fa95aee1f7df8c7ac684ca97dcc14a59c67087298","sha512":"89ac9447293a8db0fda176f52139f9d0bc672987a0b221ad95a288f8e388c1948fc6336bf340012cede573d3a487f1696f749d5c758a5d8e1f578764f69f1020","ssdeep":"","tlshash":"def023535b095080d994ba194b61a800ecb79bb207242c5e9d947625997a244a193612","first_seen":"2025-09-21T06:59:53.58406Z","last_seen":"2026-07-12T21:14:35.03935Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/fonts/01af0fc7b4278e65-s.p.woff2","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:04.117Z","timestamp":1783890844117,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/fonts/01af0fc7b4278e65-s.p.woff2 HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/static/css/fb6bbbb5e76784f1.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:05 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WWDC1jes5%2BDps%2BetWLu9oIwWMHr%2FXdnAPZ7Gc9Oyy3H2LBmPCbiapaGE4UAoRkgiUOS9e%2F%2BWpCDYqXPj9ppDaADq9jI0Zk%2BPUBaCjRBpdV7GrtMXIQcteZyvl5uX\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: a1a30e2fccf556b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146,"size_decoded":720,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-07-17T15:39:01.467628Z","times_seen":540848,"resource_available":true,"data":null}},"time_used":1227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/fjord_640w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:04.139Z","timestamp":1783890844139,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/fjord_640w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:05 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:23:06 GMT\r\netag: \"6a35890a-4ca\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M3%2FatqDLWjXS6MpAaFMlI1QDylU9c0hado2OPV0nZC88X91%2FSNlp5GINVARZMb7vZkZdBIJEZlFXzMevIpZC3gEWEuUNVALy3EAWjyrBlmW8oTU0%2FIKJjIneI1cG\"}]}\r\ncf-ray: a1a30e2fecf956b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 1226\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1226,"size_decoded":1949,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f3b82681b9bb041683d2eb2700dd7626","sha1":"a1b8fd2ac678c8a821dd99641e34e84fe4885895","sha256":"0a06afe12e33a79f4151f0f187cd4798ef88b05c3204511b35a4db0213c8448e","sha512":"57699b9f642eb99fec25f0ba9f31d4d8c5976ae12b568abdf151631207d1ebbb7b4c187880029ba544c8c1239bd8979cb865bd64c246c0ed356ad2865b55a6e0","ssdeep":"","tlshash":"7e21b4026bc00315fe1a61e4f2f2a18e6e93070736a1ce2f1da00cc89458171caf3856","first_seen":"2026-07-10T12:46:02.071205Z","last_seen":"2026-07-12T21:14:35.042806Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/css/fb6bbbb5e76784f1.css","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.440Z","timestamp":1783890842440,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/css/fb6bbbb5e76784f1.css HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 19 Jun 2026 18:08:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a358586-1aac\"\r\nexpires: Mon, 13 Jul 2026 09:14:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PY%2FMzMLfKpDWsCnTO3ZPcZarr8lCbkkHLREKCMi7WoAYAQ0MvsOyJQUq5D0shUbJ2fuyLhA95zH5%2BsD3%2B4tymLOaURD9%2B11OlNAThZzALK2%2Bl6ISLXYGYgEt5bS8\"}]}\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\ncf-ray: a1a30e254c9e56b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6828,"size_decoded":1640,"mime_type":"text/css","magic":"ASCII text, with very long lines (6828), with no line terminators","md5":"e9107a488a60603eb1ae2f9a09a13042","sha1":"2f904a115cb73b4c230bc581e2c1dfd72735de48","sha256":"a54b142c5e29c6693ccb534abc522c9eeec998c81279e0bf5b73e5f86e828ec7","sha512":"e3d007e4f31b080f36183a7300a4138fecd973945c8205d262e7e69f6d6c450795e62e1f9d1e34a17c0cf19f29a5f51c8926b5a2e6a0825b753db5b196be4eb7","ssdeep":"192:g6xRuf0JG+YE6x0P+RJH+Yz6xjAdSJY+Y2yvyFYyD/:g0Ruf0snE00P+Rpnz0jAdSKn2yvyGyD/","tlshash":"19e1b0258029415ed572fca236cabf237d6f401956e54523da6c4aad8efbc373360b2c","first_seen":"2026-07-10T12:46:02.066987Z","last_seen":"2026-07-12T21:14:35.045022Z","times_seen":2,"resource_available":false,"data":null}},"time_used":311,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":311,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/wallet-blue_128w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.468Z","timestamp":1783890842468,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/wallet-blue_128w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:03 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:16:10 GMT\r\netag: \"6a35876a-fc0\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=giigegi1UxrWhFS8spuzeg8CAelj%2BBUPGaA9IxaNBcR8RMgSZcrjINxNLxKY5ftpReAMxTq3dMbZy5uSl8itIIONo%2BWQytJyx7vIAR2z1Zm%2BaB1DHbYRoHZA4mfT\"}]}\r\ncf-ray: a1a30e256ca156b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 4032\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4032,"size_decoded":4755,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6a4fef29da414dab9af61567f981ff86","sha1":"c11c99388bbdef1b03eba129b35891d86b71f08f","sha256":"b6e5e6f1f9bae1463b85787b9df65e0b1e91f0727409df1034445b0cb93a32a6","sha512":"cda0e7c4c66850e58f1f90d95f9c18a8a8a1062dc864b1c2242228b76a49b331f460d96b4d2221db0b6ce27bf77f75f7dee601980db9b5f4fb6f0bd6f13bc1fb","ssdeep":"","tlshash":"9c816cfc36b45ef971d92b48745b0e10e36ecf50cd09ed954e861f04e96396058e18b5","first_seen":"2025-09-21T06:59:53.359581Z","last_seen":"2026-07-12T21:14:35.047174Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/clock-blue_128w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:02.475Z","timestamp":1783890842475,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/clock-blue_128w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:03 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:19:56 GMT\r\netag: \"6a35884c-e56\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0aTd4sJ%2F28HcQyeq9uXZOV90n8U4S8gvECc2iCGIk0UENFdmEDmzFs3x4KINJOmtBF%2F4%2B6SSizIETc2vaNjo544pbOZWY7i6h%2FE%2Buf2KYAqd0GzdhiDi%2FpWSs8Mk\"}]}\r\ncf-ray: a1a30e258ca456b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 3670\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3670,"size_decoded":4399,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"5d7d45ca6a6d680e09c74d6b11bc158e","sha1":"8a141f4e604f49fece079c037e17b29004de83fb","sha256":"93f2953cb32f3a006b1487e99dab27975c83d68b935998e92e18ba46f59f92d3","sha512":"262360797c202b94fd018f4a922bd5a91c0a15850c9376618ee4e3e3aad0accdde98ceb654ae476c2bc3d953f8c48021a4759944499b3be3b00bfac9c4facc94","ssdeep":"","tlshash":"5d716c2284ca46a2e2b6f27d5ac72874295244548241263cbe2a393e73f43e5ccecdc1","first_seen":"2025-09-21T06:59:53.463269Z","last_seen":"2026-07-12T21:14:35.048003Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/immutable_640w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:04.142Z","timestamp":1783890844142,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/immutable_640w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:05 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:24:08 GMT\r\netag: \"6a358948-dee\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c9RDL%2BwCMRVMoajp%2FvS%2BxuIVhPE%2FraDJXklfLiRKglryNXTlslIrO87cm3HONaLi7KNyOEUSPJ%2FYlw146tYHpyhUMYV6EUwZRm3DaOreLDyVOokKtQddxdWNd2JT\"}]}\r\ncf-ray: a1a30e2fecfb56b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 3566\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3566,"size_decoded":4293,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a3146ea1828db019a4c926b50a8fb08b","sha1":"1f6551020b45e99699b2d67bfd3490c403a16c02","sha256":"e5e98d712186be08de3dcbe78b1889b11b45a5d03d3ed01d784be637b1940b25","sha512":"24326a13ec948780dfa17d359a4a85c2bff6588072565ac97c9aa9c6e9a6728cd5e5df266b825eb34cef6976dee40e4251eebdf1dff2435fae6c8c04e4f76085","ssdeep":"","tlshash":"c6716cd306465171fe51bd3385cac81255bacb77d1daa20cbac244442f34509f51eae0","first_seen":"2026-07-10T12:46:02.050643Z","last_seen":"2026-07-12T21:14:35.050207Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1225,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sablier.cc/static/images/uniswap_1080w.webp","fqdn":"sablier.cc","domain":"sablier.cc","tld":"cc"},"ip":{"addr":"104.21.78.139","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://sablier.cc/","date":"2026-07-12T21:14:04.144Z","timestamp":1783890844144,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sablier.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Jun 2026 17:20:18 GMT","end":"Thu, 17 Sep 2026 18:18:55 GMT"},"fingerprint":{"sha1":"83:69:6D:32:7C:79:58:2F:8D:7E:BD:23:61:76:08:E4:41:B5:BF:B1","sha256":"72:E0:BB:33:79:12:41:AD:F9:22:9B:60:9B:EC:2C:AB:47:F4:85:F6:6F:7E:E6:04:D9:F5:C7:19:3D:9A:3E:DA"}}},"request":{"raw":"GET /static/images/uniswap_1080w.webp HTTP/1.1\r\nHost: sablier.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sablier.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 21:14:05 GMT\r\ncontent-type: image/webp\r\nserver-timing: cfExtPri\r\nlast-modified: Fri, 19 Jun 2026 18:25:06 GMT\r\netag: \"6a358982-b14\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=51QNrw5AAqddy1tneDcpMoO%2BbiZTUoPAk5AibgGh65vpOCS%2FJsxD9LC%2BIkjJdz0HGULuq0hAoVd2Kp02d2Su7Hs1FqRrlX%2FoUEDskiEsGH2%2FV3ZqJkSfHbRyYwKU\"}]}\r\ncf-ray: a1a30e2fecfc56b4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 2836\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2836,"size_decoded":3563,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"54a49f0cc06f404bb145f07ab1da710d","sha1":"1b8f68bde0bd2cc0e9c8a29aea94da2db739756e","sha256":"82a5b01464d36635cafd741c53260a75b0d11afb988f86694972d7c7aee09c7d","sha512":"498321f186a3574ef1dd001fcfda2067ddd6b6350d27ba08acb7ca3eaad092cec255f1b4e0bf4478c8d8b31d6aab28d6c6cc4169245871bd986a7537ef7b6520","ssdeep":"","tlshash":"95515e51d3fbb9524ea08d0dc04e99e95e1157f5ec3665cac8ce5791cb042e51043441","first_seen":"2026-07-10T12:46:02.072446Z","last_seen":"2026-07-12T21:14:35.051965Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"sablier.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}
