{"report_id":"7afa4968-b09a-44bc-a446-2d722140cfdb","version":6,"status":"done","tags":[],"date":"2026-02-25T18:32:23Z","url":{"schema":"http","addr":"biitcooinsds.cc","fqdn":"biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"web.biitcooinsds.cc/#/home/index","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"title":"Cryptons","dom":{"size":53471,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (50737)","md5":"73cb3fab29d7aacfefd6853d9187adef","sha1":"5a98ed8239d247e93e63a4e7da5e7a88b5f17d53","sha256":"10532feb521cd01885e8cf189e63c7966c39fa6f2c3a6fd3b9210400843b3517","sha512":"ec145db0b93cd98296f5f2cc4c7c858d6a529c06908ec23ca8bed7066261e1177645c2105c1dbb79f7fcc1213b30a0544059543104d63bd45f7e52fb157116fe","ssdeep":"768:XKTrUdaCj/FjSU5N5kkwKMTPRYYATd/Lf:X6rjCj/FWu5kkwKMTPRYYud/Lf","tlshash":"5333ce29a148326713a798c4ac747fcd21d2e34bc21694509bfc91940feadf1fb299ed","dom_hash":"domhash860c9b075cde557a6422bae1bf4a13d0","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"biitcooinsds.cc","fqdn":"biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-01T18:32:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":12,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36318,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.353089+0000\",\"flow_id\":2168680387013113,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36318,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:53.813561+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36298,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.361090+0000\",\"flow_id\":102393095743631,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36298,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:53.813199+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36332,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.363102+0000\",\"flow_id\":1276441733458547,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36332,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":900,\"bytes_toclient\":1634,\"start\":\"2026-02-25T18:31:53.813683+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36312,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.368215+0000\",\"flow_id\":26333519898913,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36312,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":900,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:53.813345+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36292,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.405746+0000\",\"flow_id\":1001628251023253,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36292,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":900,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:53.812949+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36316,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.408312+0000\",\"flow_id\":408027263494551,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36316,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":900,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:53.813463+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36348,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.601289+0000\",\"flow_id\":1378279703116047,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36348,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":753,\"bytes_toclient\":4662,\"start\":\"2026-02-25T18:31:54.063759+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36368,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.610467+0000\",\"flow_id\":1397937768430133,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36368,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":900,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:54.064053+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36362,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.632697+0000\",\"flow_id\":1170070426024422,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36362,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":900,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:54.063974+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36350,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.644454+0000\",\"flow_id\":1825276276963739,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36350,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":753,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:54.063899+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36378,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.651284+0000\",\"flow_id\":1908355976854210,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36378,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":900,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:54.064194+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-25T18:31:54Z","timestamp":1772044314,"ip_dst":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":36370,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-02-25T18:31:54.664292+0000\",\"flow_id\":21613350943356,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.28\",\"src_port\":36370,\"dest_ip\":\"47.79.64.230\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"shege.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":900,\"bytes_toclient\":6037,\"start\":\"2026-02-25T18:31:54.064124+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"shege.oss-cn-hongkong.aliyuncs.com","ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2025-08-31T12:50:21.336642Z","last_seen":"2026-02-25T18:17:49.000466Z","alert_count":0,"request_count":22,"received_data":1717356,"sent_data":10624,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"webapi.biitcooinsds.cc","ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2025-09-24","domain_rank":0,"first_seen":"2026-02-25T18:17:48.147325Z","last_seen":"2026-02-25T18:17:48.147325Z","alert_count":15,"request_count":15,"received_data":75755,"sent_data":8857,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"web.biitcooinsds.cc","ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2025-09-24","domain_rank":0,"first_seen":"2026-02-25T18:17:48.153317Z","last_seen":"2026-02-25T18:17:48.153317Z","alert_count":31,"request_count":31,"received_data":33066300,"sent_data":14474,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Axios:1.0.0","description":"Promise based HTTP client for the browser and node.js","website":"https://github.com/axios/axios","common_platform_enumeration":"","icon":"Axios.svg","categories":["JavaScript libraries"]}]},{"fqdn":"biitcooinsds.cc","ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2025-09-24","domain_rank":0,"first_seen":"2026-02-25T18:17:48.150345Z","last_seen":"2026-02-25T18:17:48.150345Z","alert_count":1,"request_count":1,"received_data":1384,"sent_data":484,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/vue/2.6.10/vue.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"17e942ea0854bd9dce2070bae6826937","sha1":"434cdec1669f2c6c7406297a72120936bc56ed52","sha256":"72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26","sha512":"3f0439fa3817c71a6b34673cd32707137b29823e93b8389e1deff24e46c427e5396a897b753ba98bfe156f01c7ce54155bbed56f418b388b22622807802e6f72","ssdeep":"1536:1UXY7qLtpHt2Pqe1mZ8I6H82RaLiMBlo2VV2B/S/g:MYeJpN2yefjMBlPV00/g","tlshash":"529308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","size":93675,"data":"","first_seen":"2023-03-07T01:18:07Z","last_seen":"2026-06-08T04:43:34.845225Z","times_seen":4058,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/vue-router/3.0.1/vue-router.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"a7656f4be720b1580847f9783d6ab4dd","sha1":"d3582fc6fb317199378638d2a12b4186fdee19eb","sha256":"9d5542c396b2102deb7390b39061aa7ae35f9329dfab9a34823cf84396b8cc13","sha512":"e31c23718a86b6a46355b975f29854ad874351005a9c634a56cfe8f4126198be7d6ca67cd95ba24135ce8cceb3b6dd1b4eaa8f9d4aadfe4061210f4c7b8052b4","ssdeep":"384:Oxwp+JvwAmXRZOYQFoB5RKbKBpZn6ySH1DhUxjImhFVP:Fp+JvwAGjOYQFoB5RK+nnTMa/hXP","tlshash":"b0b2c69db582b03247d326a0816f150bf23b7999744e84a8f2a9f4d43cbd85e8427f7d","size":24555,"data":"","first_seen":"2023-08-28T22:21:58Z","last_seen":"2026-06-01T14:35:57.886811Z","times_seen":181,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/vuex/3.1.1/vuex.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"ccce53cbb3813a63f1420eba489574af","sha1":"94ac9c787b2b96236356286c44350260c9f08a33","sha256":"1610512a47faf745fe96ac631be8ea3ea50a222fe7d7cca691f7ff8194b934bc","sha512":"78a2cf9dd160d4a451c1536de4d0037330d8ed11d07f0edaa427de7131a190af3c86d1a3f5bd858cac14f16ca70f78b2dc4bbe0124f7d3a2a4cce8872b95b8bd","ssdeep":"192:ViDaQv4w9nWp4UvouC3Dqs/778IG0zqLVFcu8XCnrdVpVAQflmGcXg3H8VnbZqlp:VeJgqnWp4kYj78p16CrdKMQ0CbMB+a4+","tlshash":"6a32cb9a73e1762aca57b0b0ac5f9c08f275a9dc1686400c6a4dc0f99c754bccb7ed9c","size":11653,"data":"","first_seen":"2023-08-28T22:21:58Z","last_seen":"2026-06-01T14:35:57.895927Z","times_seen":175,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/avue/2.9.5/avue.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"750459dc86246c289cdf5b760013f43b","sha1":"8103e042309fe4007cda921497f28410a75656ba","sha256":"5df0b88dacc1f9ae9edc0adc120da6190632e03cea789186cfc49d532918d6bf","sha512":"f9db639a43a21ca3a54d2546999e885bc0057f1b29eb9c2a1b7e5510dfd284530992a97c9642d4ed87357a472b7274b229279fdd45251ad9bc7c03564747375d","ssdeep":"3072:8mWzlkGK5sT4v9rD/2S4oqJNtvywiDjD7TefeKceKsT1/tF8vUoa:8mXqJNtvywiD37TefeKceKsT1/XBoa","tlshash":"50540959f1cab8750ad76070003f210af2372b896409d0a4b679d9e1adbce4da16ff7d","size":300353,"data":"","first_seen":"2025-03-06T09:16:43.423938Z","last_seen":"2026-06-01T14:35:57.89704Z","times_seen":146,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/#/","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"59b49a2734aad218ae9ea1b65ef318b9","sha1":"6107ad9b322cb331ae6d12053e808b5241d854f5","sha256":"aa4a6f8ec414434771a5c08bdc55bf05bfaff98845d9c5f0579078bbd4e53e91","sha512":"965892f5f7ecec4271d3ce21016db3a42e3f1809f53c8b9ad4d5bc42eab0d8c50beb12817d287945bbc2ec3d888a88ee27453cf99291e96cfa8b365a60376d4f","ssdeep":"","tlshash":"b5e0ab077178c2a114d06f169de9686af2972873085c1d25e69569092f4dda8213818c","size":412,"data":"","first_seen":"2025-03-07T08:59:02.121189Z","last_seen":"2026-06-01T14:35:57.92704Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/js/views.ff62a69f.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"651e9aa1c3ac6a05067d844a374504f7","sha1":"ab3800e11d47c910f77828005e3ea69ede477df4","sha256":"cb5278e79103a64c7ca17e5b792c938c255c319f743736784376ea6204c4f58d","sha512":"628a6d1765647025acb137cc0e7870f73e8a75f7ad557121e0b8f460bf476225d971558b4385f0bb1b1459c53c69223e6d5f6da3a5758a79f7c51ea690eec786","ssdeep":"49152:QL2OsARUIFxfxj4AAE8xdHZhHCKcEw+gON:0adR","tlshash":"7ad5f884b291b066c69e2650042f510de279ba6c780b806df735dcf77de8a84762ef3d","size":2988170,"data":"","first_seen":"2026-02-25T18:17:58.409352Z","last_seen":"2026-02-25T18:32:32.135949Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/charting_library/charting_library.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"8573e89d9ec535663d75f21b1f08109c","sha1":"a8d9eea0b157ceeffc38d4254e6f6abc9d697d10","sha256":"cb0c6c9f1771d252eee7caa043bdd7cfffbd52c2cc4b18b7be7c4554ed069151","sha512":"55d728fa1e0682725f94b17387c6790792d3d34b43652a00097876118575bd6cefa20916d80674519005d72f20ecbb745e9645516c056e6f9bb6691d5efbcb33","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffam:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvu","tlshash":"6e224f58ed2478720acb54f0427f180f8239e278d84944ed3cc4e6ec59fd44a6a6fbb8","size":10858,"data":"","first_seen":"2023-08-16T00:37:19Z","last_seen":"2026-06-07T23:37:29.554045Z","times_seen":519,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/axios/1.0.0/axios.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"76235a7ee6b454034b80a390ccc92f37","sha1":"8a84e29a036660955f3ebc42d43bb522730b5707","sha256":"3c92bac09bac9bfd77f2ced65b63e009c9b67c109a9d37de637b3573d7ec7adb","sha512":"35c36d820651548001703c6458cfb922c55c12bd8c0ed73a8d095f0656e45c345e0f4fb2fe0e037d14009020dc38bed1e349d110b3f9f2f50dcfa0f05f8cbd08","ssdeep":"384:3ao8KGKMMT6nbNp0nkJFP5F0YS6DagzzNYT9eei:VGNp0EPb46DaT9e1","tlshash":"f242a7ce78a1b0d747f320f0905f5a0fb2b6992a644d84a0e560e8f66db546e8737f4c","size":12969,"data":"","first_seen":"2023-06-26T22:56:34Z","last_seen":"2026-06-01T14:35:57.896482Z","times_seen":227,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"dafc2193600ac67ea00516940decae87","sha1":"b65e458cf9ba97ee2ef7276d1db4b67141c8f539","sha256":"906fd6bac3709ae757447e6989646576cd8b1299a6404b3316840f841d933868","sha512":"a75458107c24cc371b7dabe824ffaf11d83306ecf3c556ee70b438ed16809d1e8d06ae92bdc252d4689be6e123dbbf54b67e8c1915c49328709e90ef1844811a","ssdeep":"","tlshash":"4d11bd2ac5474d2b546624596b9eb00434b601474e09f816b75ecb8c0f1ce2f41f6eed","size":875,"data":"","first_seen":"2025-10-19T02:14:21.586226Z","last_seen":"2026-06-01T14:32:25.124065Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/element-ui/2.15.6/index.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"693f98461ce3fa58cbe5ac24d9a21b1e","sha1":"93661cc05514da433809e79f229815ae1ddbee77","sha256":"24ebdea828e938d3a45128b41979b320b4cbd40c8c0d4bad6a9cd9bc3bfa4e0c","sha512":"2dab95b96bfccc9f78069504b006adc198531831c53c81b23b8d05163428f0a66beefe7d466452e7142cbe98419e36d327b20ab24dd3c25a05de9f9363e05d3e","ssdeep":"6144:B4lry61ETrc+kymEidUVM+u0kXzVXsnDBH7SuLH8isMZgS7Lu5:2U61Wrc+kymEiuVM+k9uVHOuD7Lu5","tlshash":"d3c41b8d72c1b5314ba36070503f250bb33b299c680980dcb679d8ea6dbd949526ffbd","size":586253,"data":"","first_seen":"2023-03-07T13:53:00Z","last_seen":"2026-06-01T22:30:57.604322Z","times_seen":450,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/js/chunk-vendors.7f7a74e8.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"43550a407348d25b9df7e383681d1a9c","sha1":"d9518cce029884f801461f4667bbd26178e4b997","sha256":"99c65df1694b087faca438d885eaeb7c75c42bc93250168cf73e9bcecf9699b6","sha512":"1a7877f7ca383e63d6256bf5da6eae5e5cbd9f87ed1e6e2431e1b7c4b71c63ed45aec6fb9f35423eceec308346054fcf857acf917c1179347d40b4aff89a5f5f","ssdeep":"12288:u1etGsLA6A+Qmij2tpKRrrv3uwYAJrph8ic5UeBZmmAwlLias:GetGCcfrrv3uwYAJrph8ic5nZoU8","tlshash":"c2f4e7ccf2d6b0a513e770a5003f610bf23a6958784e8595f265e8d5bc78a8e513bf38","size":778287,"data":"","first_seen":"2026-02-25T18:17:58.353959Z","last_seen":"2026-02-25T18:32:32.084231Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/js/app.9db9f9ba.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"d755ea33818a0eb978acfdbf1f2f8030","sha1":"a497d9bda91e3c069208bbbfbabe9ab8fbc9d82d","sha256":"670f928bf9692e38ff73b2f1a4d39ae71cd7dbf5b15f33ddc0af55f3db5d85ae","sha512":"2cdca2b1c42cc04909a0c32e014e24aa47acebe65260a1453ec5922ef2c27331c14a7066872830c6ffc7973b42591d4ae920fa2144ef2e39d9f118e111322bb0","ssdeep":"12288:JFeELMhOTJowkdg1Eo3DyMCDf6MRG7WRS/ZfiWE6YcM8/6i9z1qpx5StK:JFeELe4KO6lpx5Sw","tlshash":"c2942b76298ae8e825d12390744bf635b1ac9cd6bb0de4c016bcc2d762ec9d4d017b6f","size":439899,"data":"","first_seen":"2026-02-25T18:17:58.406181Z","last_seen":"2026-02-25T18:32:32.138181Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biitcooinsds.cc/","fqdn":"biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"be03e621c44d656fab8b410c996b61a5","sha1":"910d09722d2e4a06eac48ab1b50de84c6334ea6e","sha256":"426d5e7975b1fe3571ad2299dd12e1a5771868771df9465e62a6c3fe192f8bb7","sha512":"2d96ae99c7dd5bf6eb05354576d5b9d4a75b6e7b1416c809b3f9fecafa1e003b6d44e9f5ec026b3d8a652a43fc399ac15d900f89b68a65f500962b6b86a5357b","ssdeep":"","tlshash":"5101cb9e9272139427a35092670776002537a0ef3451d449b70e87801f8b61e823bddf","size":722,"data":"","first_seen":"2026-02-25T18:17:58.410538Z","last_seen":"2026-02-25T18:32:32.13905Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cryptons1292f3466ae746b69ffb652497594e25.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cryptons1292f3466ae746b69ffb652497594e25.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 535\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401C93A7E93935EDA4B2\r\nAccept-Ranges: bytes\r\nETag: \"C44C51823ADD7993B2AF1683E7EACC97-1\"\r\nLast-Modified: Fri, 13 Jun 2025 14:30:59 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 4531529071870500964\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":535,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"c6a724efa72514037b5f799962002521","sha1":"f8723f8aa675688ec4ca57abe00cead489df3116","sha256":"6e225ba14dc4300fa00a6d768bb112a0b1d12bc4868bab94136443aad24ee7d6","sha512":"0c16209e046e7bf96e31e7b2067b3f5e8d1574dd3bb4ac7cac2bf2be9b7174a890745fbe4ac815e9de7aec38d4803a759fee8e1daac9d0ed8da00940337a8435","ssdeep":"","tlshash":"75f020d096706824fac6232aa3aa024dfa6d6618463e728d063d093a451024c0dd710a","first_seen":"2026-02-25T18:17:58.356234Z","last_seen":"2026-04-22T17:57:27.80744Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2466,"timings":{"blocked":2189,"dns":0,"connect":0,"send":0,"wait":277,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getAllSetting","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:48.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:48 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12455,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (10901), with NEL line terminators","md5":"729c0c5ed8cd27c4e9f88db9fe9cb201","sha1":"9bc9cb433efee46a0ae2589c9292351cbef1cf01","sha256":"f9737d4d1d9e01954717da09a87cbc867c64eccdaa64cacfffb6abb9fdada924","sha512":"75e7ba4383dd26e850d1bb796adb0bc3c5eab837e63ac29b67709368f03fd30d6a813289a03768ccb5982d6169ed99b2bc666b97969c0db982efcf16d79cf22c","ssdeep":"192:xLBpEW2S5ky0z08N2K2IGbPLulFYAfY73DfZbTFlhc+h3YpvIxSVoyGc+rB1el4f:chGZ9laQhXt86n","tlshash":"a9426446358cd8bccbe548d690bb7e8664dc349fa1c4d449b7b9ed8c69dcdb2440b306","first_seen":"2026-02-25T18:17:58.366211Z","last_seen":"2026-03-02T14:22:51.03397Z","times_seen":3,"resource_available":false,"data":null}},"time_used":355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/EURUSD.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/EURUSD.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 321656\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BACF6C53232A880AE\r\nAccept-Ranges: bytes\r\nETag: \"F3AF6A12323C4781C42ACD3E8CACFCE2-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:05:15 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 7515642192213503634\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":321656,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"57789a1b5aed78803bde116c127aae81","sha1":"4f66587351be6efdcdf4f5729e88f65b2a36c348","sha256":"b48fa669ad747ceec24a2ff0c01a15161c628f2630b3142606c18deb65806ff2","sha512":"ffbcc092f49b34a8bb4d21ef39b93f48447d0d1ed2e88fdfd7e031916e35e047f1c68d2495cf3de84524e40614f9ffd4c0e87942d1df7693bac76673d984ac83","ssdeep":"6144:JcytVW51pWh/D1sHEYhltmve7SVs+wGgtdszdItUDR6GErO:J01U1sH9vGsYs+wrIzdaUgC","tlshash":"5d64237b485e1d21e2e6060ca340284e4c326c9e7951f42dda4f9ee535aa9dc26fdc3f","first_seen":"2026-02-25T18:17:58.378917Z","last_seen":"2026-02-25T18:32:32.064397Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2091,"timings":{"blocked":1130,"dns":0,"connect":0,"send":0,"wait":282,"receive":679,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/css/views.c0d2ec11.css","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:47.640Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /css/views.c0d2ec11.css HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:47 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-792d7\"\r\nexpires: Thu, 26 Feb 2026 06:31:47 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":496343,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"f9f2748ea1f8d903ae6584ee62a12268","sha1":"2f33e5706cc2395a1b1c75a91e90b16d07327007","sha256":"c2f0b041543258c07928129280c9aba5b950fc61e0c8c15330596fa3a6aaf9c9","sha512":"0dc6856303402e2bf20cbbe1163c7f65ee7f9248b84b6e6c694596e4c0379b4311b5a5de8bf79014a7cd5c992aa19de5bddd38e645abe1d471ccb6b9f482dcdf","ssdeep":"6144:URzOH13WJxBhsM+fquZiQ6v7f65WCXk2XCy+LRdVV3J6Q0RirvDcSuS3TkwPy:/WJxBhsM+fquZiQuOCXLRddDuS3TkwPy","tlshash":"ecb4a823736a2529b17bcd2861c0769b3618f7b3c10352fade91a929cbc7183376674d","first_seen":"2026-02-25T18:17:58.386156Z","last_seen":"2026-02-25T18:32:32.066289Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1780,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1780,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getCoinList","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:47.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nReferer: https://web.biitcooinsds.cc/\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:48 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":1755,"timings":{"blocked":708,"dns":1,"connect":346,"send":0,"wait":330,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/js/app.9db9f9ba.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /js/app.9db9f9ba.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-6b65b\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":439899,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators","md5":"52ab837c4a4c08abe6a94ad6f9d3b425","sha1":"19431789d2393fc44af70f821af9500dd737dd0b","sha256":"2b670f132de531ed246a39894de58cb3f1bf57e28e59c4e37f3b106608fed364","sha512":"f03961e803545e626e88b05da271581f97f185b65e7ee6b300c2a8e64cc4442c0ba9003dbd9df6f5ce616063a21aebdc59863a17906b08d8a0ea216424b7bacb","ssdeep":"12288:JFePLMhOTJowkdgdG7WRS/ZfiWE6YcM8/6i9z1qpxmStK:JFePLevKO6lpxmSw","tlshash":"6da41ab5688ae7e925c47294340af735b3acd9d3764de4cc0abccaca21ec4d49017b5b","first_seen":"2026-02-25T18:32:32.069841Z","last_seen":"2026-02-25T18:32:32.069841Z","times_seen":1,"resource_available":false,"data":null}},"time_used":976,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":976,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/vue-router/3.0.1/vue-router.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/vue-router/3.0.1/vue-router.min.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-5feb\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24555,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24485)","md5":"a7656f4be720b1580847f9783d6ab4dd","sha1":"d3582fc6fb317199378638d2a12b4186fdee19eb","sha256":"9d5542c396b2102deb7390b39061aa7ae35f9329dfab9a34823cf84396b8cc13","sha512":"e31c23718a86b6a46355b975f29854ad874351005a9c634a56cfe8f4126198be7d6ca67cd95ba24135ce8cceb3b6dd1b4eaa8f9d4aadfe4061210f4c7b8052b4","ssdeep":"384:Oxwp+JvwAmXRZOYQFoB5RKbKBpZn6ySH1DhUxjImhFVP:Fp+JvwAGjOYQFoB5RK+nnTMa/hXP","tlshash":"b0b2c69db582b03247d326a0816f150bf23b7999744e84a8f2a9f4d43cbd85e8427f7d","first_seen":"2023-08-28T22:21:58Z","last_seen":"2026-06-01T14:35:57.886811Z","times_seen":181,"resource_available":true,"data":null}},"time_used":1383,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1383,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getMt5Amount?coin=xauusd","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:49.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xauusd HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nReferer: https://web.biitcooinsds.cc/\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:49 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":275,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cryptons8a1d521fba7640119b4750978098856e.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cryptons8a1d521fba7640119b4750978098856e.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 501\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401CCE63A83439FC6759\r\nAccept-Ranges: bytes\r\nETag: \"6043BBCD27C97575CE7D26CA0098C87F-1\"\r\nLast-Modified: Fri, 13 Jun 2025 14:30:06 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 3630002687376424824\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":501,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"3281eaa753a44c219a67493085286d00","sha1":"f2c14d2e104938470ec4bff56774b3e532f2a616","sha256":"7a522da680a785c8bebbe8f9d67d875966d748bb5b26b7206a1734619bfc600d","sha512":"612f7c62224a2044d81d0a1e50c9764b1f34279ae83e975de2d9bf12d6dae0fa0a5ce42077f77b64127d309c9cc344da7c33373cf4e0b72c5fb04b23a8beb74c","ssdeep":"","tlshash":"a0f050d14aa2655ec744da60cf654442ed5815b4b187651d150a0f212513fa8f1ab861","first_seen":"2026-02-25T18:17:58.391164Z","last_seen":"2026-04-22T17:57:27.797417Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2442,"timings":{"blocked":2144,"dns":0,"connect":0,"send":0,"wait":298,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/css/app.e4cb1320.css","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /css/app.e4cb1320.css HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-16505\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91397,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (60529)","md5":"68ac6fff4093991debcb80a701fe2c6b","sha1":"69243b4033277dc8b0d65c51a6468fcf39bd7faf","sha256":"1c68d895ab3c742b8433a9441662fb5c518535980e2fdbb79bd7da02dcadfb53","sha512":"e97ad96188afa96137a1dc8000e1ef8ccdda86c7d2a5f910c53a11a8e2076b79b76697dec0d10ccadbab10842bd1e00b43276795702f41dfbe3670ad7b3c510c","ssdeep":"1536:dUN15uu8IktP2dPUWlmABQNNP0vf6yrtayUz6J1jJvX:dKuu8IkYhuoAye6JtVX","tlshash":"0b9331a1d64a21e77367d55fab40b3692776f33dd0412eb9f02f641d8ac228112d2f2e","first_seen":"2026-02-25T18:17:58.384801Z","last_seen":"2026-02-25T18:32:32.075737Z","times_seen":2,"resource_available":false,"data":null}},"time_used":905,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":905,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/solana.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/solana.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:54 GMT\r\nContent-Type: image/png\r\nContent-Length: 25649\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401ABC6A5B353499B1CA\r\nAccept-Ranges: bytes\r\nETag: \"66097E4D53F2C9A9E6190485EE9F205E-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:39 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 10769821075161595358\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":25649,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 250 x 201, 8-bit/color RGBA, non-interlaced","md5":"670c723abc22056bc5368ca2a97dd6a2","sha1":"5ba69b915180c31e4d35a524a9de7b3409ef80a8","sha256":"11192935f626fdb37ddfd8418d754feee326fc6f0a3ce7aa6e61283a820d8b09","sha512":"546901ff0dd66b4768e7560c2ccdceedc3bdac577eea114e600613d98319bde07a84d4fd8a303f4c34c05b3a26c73f03602ba38aaa5436dfcdac6712e0868652","ssdeep":"768:9SDR4lelsfdJTM1JiB+mP9LsYKPlAgezlYWXu23fgiqs:9Alsfd9MqBZ1L5MGgQuW+2vLqs","tlshash":"feb2d076137254ea4442115b97364e812c39f4e3adea6e2c7507a40c7d4a33b30db6bf","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-06-06T04:02:55.294395Z","times_seen":678,"resource_available":false,"data":null}},"time_used":2135,"timings":{"blocked":902,"dns":27,"connect":297,"send":0,"wait":304,"receive":11,"ssl":591},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/fonts/PINGFANG-SC-HEAVY.1965ab7c.ttf","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /fonts/PINGFANG-SC-HEAVY.1965ab7c.ttf HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/css/app.e4cb1320.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 11114788\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\netag: \"68a4606c-a99924\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11114788,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"BASE\", name offset 0xa256ec","md5":"c11d4835ea9813d0e654d4c375257421","sha1":"44bdbe2b862dd5f236417788db8b286ebb2265af","sha256":"61a3b6d3ef3960a85ea310f8667b8615da678e9edea8b5036c8d9a09aea7169c","sha512":"1fe75b597c55aa2319b1d0efb5b02e4fd4b4e8a4772cf321100658f80957481254e68756b2e90f2cc7bdc0f585043659a10af097d18995037bd4e59917c18938","ssdeep":"24576:BkgBFPX1+oxFnjOPwVgsVDQezA7FEWXS5ltkCbudYqrj2wn0:BkkZC1q","tlshash":"07256dd3c7c87d299a21fd3c2510f66bf48e50088a25d2f9cf672f3618569744ea8eb1","first_seen":"2025-07-29T21:26:30.325138Z","last_seen":"2026-06-01T14:35:57.918608Z","times_seen":45,"resource_available":false,"data":null}},"time_used":6985,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1605,"receive":5380,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cryptons7a3909fbf77b4f17bc84a97b35c3595d.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cryptons7a3909fbf77b4f17bc84a97b35c3595d.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 835\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401CACF6C532324E81AE\r\nAccept-Ranges: bytes\r\nETag: \"22E7288305875E85012FFCBA783BD573-1\"\r\nLast-Modified: Fri, 13 Jun 2025 14:30:01 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 6948787476134889285\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":835,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"0c18f51e1439f37e6622b7c96f5a45b4","sha1":"739f56a701c4ec9ea68a6e02bba60839e752c633","sha256":"1e3c6d2c6454125815cee2d47c8189f30c8cf962a5b9e86802941ee42c747cbd","sha512":"f2d9effafe38bcd775f21dce8c558dcaef764dd01d99ed2b1aa3f8085011ff25929558f983455bff3f81ba991b55a1bb492c18c8af441950347dc0df98996f2a","ssdeep":"","tlshash":"dd011288f4e652649128f32aa619542272f8f6999e9544b90c1bc0b0170bdefc587b27","first_seen":"2026-02-25T18:17:58.405214Z","last_seen":"2026-04-22T17:57:27.80588Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2292,"timings":{"blocked":2020,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getCoinList","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nReferer: https://web.biitcooinsds.cc/\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":275,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/USDJPY.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/USDJPY.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 248776\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BBC6A5B3534D1B1CA\r\nAccept-Ranges: bytes\r\nETag: \"42D71ABAC35E12A29C31BE1557B76491-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:05:16 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 17701289995714474659\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":248776,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"ef0b38a04a8ba599e2e837cbdde50a05","sha1":"3225ed4c090c37b95b20658df1ecc81a0fcc8e21","sha256":"f781672ba2ffd6f4a823c2678846c7c46793b003dbf464b6a9231d25a4f71acb","sha512":"23907c53936e5ee1fa4ad2a13aa9c315bf1c2b6b34af2722846c68d8e152e3fc4a4b36a59ef5f9e96ee4319495d67ea23bc4abc0750316852f9aa4be09f2a4d6","ssdeep":"6144:0Fn24PZxCVR3V1ONyc2syvNl9YH6MB5KlCBW9U9V:0JZhxaI6s29MBYCx9V","tlshash":"253412e40638f1a4dd332126623e3b658253fb0d43a1316789832d5facb7d2746f6b92","first_seen":"2026-02-25T18:17:58.359694Z","last_seen":"2026-02-25T18:32:32.08104Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2132,"timings":{"blocked":1201,"dns":0,"connect":0,"send":0,"wait":314,"receive":617,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/banner2.54b0c60d.png","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/banner2.54b0c60d.png HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/css/views.c0d2ec11.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:53 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-8c1e\"\r\nexpires: Fri, 27 Mar 2026 18:31:53 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35870,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x429, components 3","md5":"54b0c60da58ef572bef1ab715bd8ff7f","sha1":"b57661d6cabeda9705ae56aff386178b4517ded6","sha256":"142a349e5b177ebb80f1efd9432ee8c205b7da34d8d5a7e27405de6ae9b59e41","sha512":"83152fe72dadc1ce5b868db9e9a1868353a2d00662909f174130b8c99daa6836d46432301f2839670586bd069c733634f0f2ae822918265cafa774e2762c235e","ssdeep":"768:ylb6phX3BaROf2m8/MDqT1kkROlMnAmjDSBiQXlOsO6oGhOZ8sh3:ibGhh1ydBGiElOsO6oGAJl","tlshash":"8ff2e0460b62bf52d4de203220e74b15ffe4bb3243d5c115db155a250aa4bfcdda90fa","first_seen":"2026-02-25T18:17:58.362392Z","last_seen":"2026-02-25T18:32:32.082718Z","times_seen":2,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/js/chunk-vendors.7f7a74e8.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /js/chunk-vendors.7f7a74e8.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-be02f\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":778287,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65454)","md5":"43550a407348d25b9df7e383681d1a9c","sha1":"d9518cce029884f801461f4667bbd26178e4b997","sha256":"99c65df1694b087faca438d885eaeb7c75c42bc93250168cf73e9bcecf9699b6","sha512":"1a7877f7ca383e63d6256bf5da6eae5e5cbd9f87ed1e6e2431e1b7c4b71c63ed45aec6fb9f35423eceec308346054fcf857acf917c1179347d40b4aff89a5f5f","ssdeep":"12288:u1etGsLA6A+Qmij2tpKRrrv3uwYAJrph8ic5UeBZmmAwlLias:GetGCcfrrv3uwYAJrph8ic5nZoU8","tlshash":"c2f4e7ccf2d6b0a513e770a5003f610bf23a6958784e8595f265e8d5bc78a8e513bf38","first_seen":"2026-02-25T18:17:58.353959Z","last_seen":"2026-02-25T18:32:32.084231Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1140,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1140,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/avue/2.9.5/index.css","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/avue/2.9.5/index.css HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-153f9\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":87033,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"f85e11dcb08e7df97a595b462fc1e5fd","sha1":"4a21a20075980f155f0880ff27c3681413bf91a4","sha256":"0d6f8a0ccc1a2588ea5b922811dc52facc493898321a9ab48f9d4f469db5ccab","sha512":"5a944b594ffb9ac17ab736c56f04c12db40e3371b5fb01da19ab6bb421eeb12788161552a5281c4e1e3e5e523de204a9d4bd8c0ca9b3295bdae4a4875f4a5a7f","ssdeep":"1536:3ZpTJrrdtEOddi1H0jsamI897x9RUEAhgFRJgQwwCvpyR0ol1vk27rnIRf:JpTJrPEOdddAamr97x9RUEAhgFRJgQwN","tlshash":"918340625e7b0c09e80add542bd8177d37282053880ad9fb7ef931484f8679d47a2f8d","first_seen":"2025-07-19T06:38:51.487767Z","last_seen":"2026-06-01T14:35:57.902494Z","times_seen":34,"resource_available":false,"data":null}},"time_used":806,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":806,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getMt5Amount?coin=xauusd","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:49.439Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xauusd HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:49 GMT\r\ncontent-type: application/json\r\ncontent-length: 47\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5a3eb5701fb230989fb29f7f3fe56246","sha1":"2be2b4c3ff196348727b551c663a5f28025fb5ed","sha256":"029a24b2aab6a082022afb28688f3e67d6f8e815281d03a5c9e9f968b4ced641","sha512":"7d0ee19319c7d508bef39be1ad31e945596508364137ef82f138f8e0dcab86f52d08ac60d24e4709be5f2840036e789cef3421e3e292eae460d08f6184fdfb35","ssdeep":"","tlshash":"3e9002555c1c8242b88701a5950e564410243160272592485c595525d0881a2604485c","first_seen":"2026-02-25T18:32:32.086823Z","last_seen":"2026-02-25T18:32:32.086823Z","times_seen":1,"resource_available":false,"data":null}},"time_used":283,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":283,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/bitcoin.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/bitcoin.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:54 GMT\r\nContent-Type: image/png\r\nContent-Length: 2691\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401AACF6C532326A80AE\r\nAccept-Ranges: bytes\r\nETag: \"4BBB774073C62BF09C1C868309DD41D9-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:38 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 1939274224005843766\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2edf1ef8b333c40979976d1a49bc234c","sha1":"d75ac12795b4a9575c874e1b190712cd62a87afc","sha256":"50a1901684f223bf26594dd3415b1e50f184820a16daa810cc5452911e9117a9","sha512":"f697a1fa0786316fc01003f72621920932e2657e4acf5a471e35d02717c42c9db5a12df311895a776a563dcae9b8fc0b6721833529a054b9dbfff4c52fc564d3","ssdeep":"","tlshash":"2b515ee60252267980d32438616db1e178beabb2c3021ded6c1444954acc4b62555cfa","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-06-08T12:06:52.102307Z","times_seen":21671,"resource_available":false,"data":null}},"time_used":1956,"timings":{"blocked":847,"dns":26,"connect":268,"send":0,"wait":271,"receive":0,"ssl":541},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/GBPJPY.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/GBPJPY.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 4168\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BB1E8233731608459\r\nAccept-Ranges: bytes\r\nETag: \"9CB2B115204A9AA6B1DFE0C643DC2E05-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:39:45 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 2886656161075583809\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":4168,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 56, 8-bit/color RGBA, non-interlaced","md5":"947e21d7ed1d030d695f753f9f6cb41a","sha1":"dd406c68f23f9270d144b73e2a8b9ce66d7d61a0","sha256":"2cdf02bdc5c256914e4437f5bb8fb403f3ace7c9044e880c57914a10183d0baf","sha512":"a08decb6e2a65368478e336a637cc5c2ab5d3ace852fc9c1ac977e7c9a3738ab79283b6983a09c9b911f6db863e761f13f86e4d47f6cd94bb090bdb3a84cddfc","ssdeep":"96:kBeiO04aGXgUsV6zcNxjAxX4xuC4EwAX6B8n/QryYDC1W:kJGXNsVGcNRA6xuC4Fv8n/Gy9W","tlshash":"02814b63b7aeca3dbf060b7b8bef8475889561d007a9f641c5b1c9b2dc28f221146985","first_seen":"2026-02-25T18:17:58.388435Z","last_seen":"2026-02-25T18:32:32.089875Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2008,"timings":{"blocked":1727,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/invest.369770fd.png","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/invest.369770fd.png HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-3999\"\r\nexpires: Fri, 27 Mar 2026 18:31:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14745,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"369770fd998825fe249bf196d63b01ff","sha1":"c67c1216f80688f0ec760fee4ad9bcfa4bd736c8","sha256":"8c7e97c30ca5277d666e690246b6ed8e72269501c49802a6e33caf2b8074dbad","sha512":"9bb55b0025e544d29dd3a03e38f56d0af2f8379dddd545b3e3979782ca1c5c4636873e34ede9ca7363565e752a707ae2e10c1c4a5333bc49d7e5f1c1e724de64","ssdeep":"384:dGJvXvgQHEEXyJUZOWhK+lQAOUaYrLPbK8jN7MlXp:dUX3kKZOW9Qh2NgZ","tlshash":"e262cf42b9506095b01accaa541ab6ed6ebb8b2cc67f62ffdd51060c2560873d34be6c","first_seen":"2025-03-18T04:06:10.351045Z","last_seen":"2026-06-01T14:32:25.053296Z","times_seen":25,"resource_available":false,"data":null}},"time_used":2013,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2013,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getAllSetting","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:47.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nReferer: https://web.biitcooinsds.cc/\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:48 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":1675,"timings":{"blocked":667,"dns":0,"connect":326,"send":0,"wait":339,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/favicon.ico","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:48.343Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:48 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1892\r\nlast-modified: Tue, 19 Aug 2025 11:30:54 GMT\r\netag: \"68a4606e-764\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1892,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"38c2cac8edc7e50fd0dd846888e95687","sha1":"d920e0055e6799e2b677f7134a091912483ff080","sha256":"dfaee28e14b3109d86c78dc724f4c082f8d85f434c273cac4d53b67db43049b8","sha512":"6e31c3b9fa9d7a3f84ebfc26da631b63f0d7d277b5f506d4c929164c7a629d4eb25ade9c45f121aba6cf4573f33ad6e23465aac372b85f08e0bab4b2bce00a8e","ssdeep":"","tlshash":"c5411913faddc005d0e78abce42e33f520b26b60a7414c8d658870261263cc2db950df","first_seen":"2026-02-25T18:17:58.36324Z","last_seen":"2026-03-02T14:22:50.992758Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1459,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1458,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/litecoin.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/litecoin.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:54 GMT\r\nContent-Type: image/png\r\nContent-Length: 34858\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401AB1E8233731DD8359\r\nAccept-Ranges: bytes\r\nETag: \"B0A5758F8205EC343A0C4E2D59E2E796-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:38 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 2593469271640333430\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":34858,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"bb27c369a3aa54d9c1f8e59e1706da48","sha1":"7e1b9677305cad40b686a5a1077da57c4f6cf07f","sha256":"e691621963c6de60c05c0e91cf7c65cba4191df054a3b1bd5becbef3a426f9ee","sha512":"4ff3058897ecbcee5464eb954955cc40bad7f411ee86f21dcbebe3d02ee45410b42f68c8e3a22537ef530c65c9bc9960fb36134aeced2dd36688a21c0cb02415","ssdeep":"768:FAbT/SSUokJQD9Wvnwoo2hzabJIqRw/VH3+WFxL1nHLy:G/RU4yni2kKl53+WbBLy","tlshash":"3df2f155ed69527406b90571846e302ca4669a7ebdceb11bffbd67302b3246f008e06e","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-06-08T12:43:51.945483Z","times_seen":631,"resource_available":false,"data":null}},"time_used":2004,"timings":{"blocked":850,"dns":28,"connect":277,"send":0,"wait":280,"receive":13,"ssl":553},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/GBPUSD.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/GBPUSD.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 300507\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BCE63A83439466759\r\nAccept-Ranges: bytes\r\nETag: \"EC76C1614892E0B09871032EA53EE829-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:05:15 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 18016328400631018099\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":300507,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"7dd401856ee6e2b88b2f6279ca1aff98","sha1":"be41875b3e32d9ec1585838e7d6a1b03f848ff48","sha256":"0dd7b0b44b30f077aaec0ace19f98cf4ea85a8f464982a0dd6f2970f4332731e","sha512":"a21a23c15bd18f43d5d7c49cfa3d024bdd88fa2065fc48f65d85cee96d2c839aabbe2f3d588e5d0e0ffe4e026c39e2c231db5da8781989503f620b599b21f69a","ssdeep":"6144:JrmlJQTMVRlQ+UDrRJglhxwfwBNIxebTX6kyutBzFQpo2Yl:ZTmRaHRJYxdB6xevXhbWo2Yl","tlshash":"f85423d6a47ed163ac768d2680e7cb7af62b113e14807e14b53bd112dac8bf18161c6f","first_seen":"2026-02-25T18:17:58.380049Z","last_seen":"2026-02-25T18:32:32.095192Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2213,"timings":{"blocked":1187,"dns":0,"connect":0,"send":0,"wait":307,"receive":719,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nReferer: https://web.biitcooinsds.cc/\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/AUDUSD.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.819Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/AUDUSD.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 273132\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BEE24003134B4C54E\r\nAccept-Ranges: bytes\r\nETag: \"EFF2AD55C3F2DF70A32C80605D4FFB57-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:05:15 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 14682379877332626062\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":273132,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"e751ef24964f9ceb0f9773d24bc47b28","sha1":"cd9996bc3087cf63fb5fc5f8aa4eca356657987a","sha256":"4b0bd5e132cc0b47ea23b7253ad80211a83ca7cb8b711f3e05862ed018b0eb57","sha512":"598c7ee852865cd2d92ba9a44ff86ffb5ab880d487a1e538f5bac42901df7844f391dfddf1c3dd0a3dc1f1b62c18f0b6362093f5de9d15b09dd83d2515755975","ssdeep":"6144:iJvrjD8Yq4qs2pqLr700RGr8MDElpsIlObjuabqBU3vjn6yBVZ:iJDjD/q4q5KFRDMVcAui6AVZ","tlshash":"bf4423cc1f36556c73f94e3d23719a006e815f8e7222c09acd4bdb2e3513c958ead65a","first_seen":"2026-02-25T18:17:58.352931Z","last_seen":"2026-02-25T18:32:32.096522Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2301,"timings":{"blocked":1420,"dns":0,"connect":0,"send":0,"wait":290,"receive":591,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/element-ui/2.15.6/index.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/element-ui/2.15.6/index.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606e-8f20d\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":586253,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65105), with no line terminators","md5":"693f98461ce3fa58cbe5ac24d9a21b1e","sha1":"93661cc05514da433809e79f229815ae1ddbee77","sha256":"24ebdea828e938d3a45128b41979b320b4cbd40c8c0d4bad6a9cd9bc3bfa4e0c","sha512":"2dab95b96bfccc9f78069504b006adc198531831c53c81b23b8d05163428f0a66beefe7d466452e7142cbe98419e36d327b20ab24dd3c25a05de9f9363e05d3e","ssdeep":"6144:B4lry61ETrc+kymEidUVM+u0kXzVXsnDBH7SuLH8isMZgS7Lu5:2U61Wrc+kymEiuVM+k9uVHOuD7Lu5","tlshash":"d3c41b8d72c1b5314ba36070503f250bb33b299c680980dcb679d8ea6dbd949526ffbd","first_seen":"2023-03-07T13:53:00Z","last_seen":"2026-06-01T22:30:57.604322Z","times_seen":450,"resource_available":true,"data":null}},"time_used":1380,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1380,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/platform/dev/config.js?1772044307604","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:47.709Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /platform/dev/config.js?1772044307604 HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:47 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 386\r\nlast-modified: Tue, 19 Aug 2025 11:30:54 GMT\r\netag: \"68a4606e-182\"\r\nexpires: Thu, 26 Feb 2026 06:31:47 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":386,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"898c8d533508efbe5d513bcad58b7b24","sha1":"72c57d97abb607701dcbe00abc72bf769c291825","sha256":"a1a651922953492c231a75fd9e872a66128e3f14551ada52988d0f79eb3cee52","sha512":"1f01227c9127e54c243f4dccd615a541a15f9085a6cb3ccacbc5c1d8c01eceb6b4fbda29c5c518c7f661947ff4b78cbf9ad3497d2b1f99dd53b8de88a807780d","ssdeep":"","tlshash":"cbe068077278c6a224d0af16ade8686bf3872973485c1d26f7956a092f0deac613818c","first_seen":"2025-09-07T13:11:12.163984Z","last_seen":"2026-06-01T14:35:57.921217Z","times_seen":24,"resource_available":false,"data":null}},"time_used":1712,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1711,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"biitcooinsds.cc/","fqdn":"biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-25T18:31:43.427Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:48:30 GMT","end":"Sat, 23 May 2026 00:48:29 GMT"},"fingerprint":{"sha1":"54:01:9D:57:1E:F8:E5:8C:8E:C3:CB:4A:39:00:F8:25:D1:69:EF:8B","sha256":"4A:93:A9:02:F2:A6:F1:4C:2A:48:C3:17:B7:4E:12:B4:71:2A:E8:70:C3:43:22:59:D9:13:81:E4:E0:76:3D:C8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:44 GMT\r\ncontent-type: text/html\r\nlast-modified: Sat, 17 May 2025 03:31:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68280305-3ac\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":940,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"c403a01e1630275c47e1765b6067b07f","sha1":"b8bb7b86cb32ff7aa817db69ead0af8a29df572d","sha256":"01cf20cebb1739db97ee4667741bb8e1f632cc9b9632ebc978b3414c4bd9ea78","sha512":"55b61a303a411552900f44ec374d029d7ab623076d0cc1d7f228eb3723fd277f617d3f0706974b2c879f9aa16ed7064dd6abcc1ebb84b7d8fc6fa51a3a0dbc14","ssdeep":"","tlshash":"251100ded172564423a240522b87b2042167a4df3581d848bb8fc7801f8bb1ec277dde","first_seen":"2026-02-25T18:17:58.369232Z","last_seen":"2026-02-25T18:32:32.099287Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1443,"timings":{"blocked":578,"dns":0,"connect":285,"send":0,"wait":287,"receive":0,"ssl":291},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/axios/1.0.0/axios.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/axios/1.0.0/axios.min.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-32a9\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12969,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9720)","md5":"76235a7ee6b454034b80a390ccc92f37","sha1":"8a84e29a036660955f3ebc42d43bb522730b5707","sha256":"3c92bac09bac9bfd77f2ced65b63e009c9b67c109a9d37de637b3573d7ec7adb","sha512":"35c36d820651548001703c6458cfb922c55c12bd8c0ed73a8d095f0656e45c345e0f4fb2fe0e037d14009020dc38bed1e349d110b3f9f2f50dcfa0f05f8cbd08","ssdeep":"384:3ao8KGKMMT6nbNp0nkJFP5F0YS6DagzzNYT9eei:VGNp0EPb46DaT9e1","tlshash":"f242a7ce78a1b0d747f320f0905f5a0fb2b6992a644d84a0e560e8f66db546e8737f4c","first_seen":"2023-06-26T22:56:34Z","last_seen":"2026-06-01T14:35:57.896482Z","times_seen":227,"resource_available":true,"data":null}},"time_used":1382,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1382,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/ethereum.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/ethereum.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:54 GMT\r\nContent-Type: image/png\r\nContent-Length: 9807\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401AEE2400313442C54E\r\nAccept-Ranges: bytes\r\nETag: \"4449925372601C27C9738AC0B4E5C902-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:38 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 9445008190181339835\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":9807,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"12d9722461759cefff02d9076a3d2718","sha1":"6b763fea0b17257a36b90c465593e1629aee0564","sha256":"af89450e1873196692af0d9d4d0c03218b4be8091171b9d8f7349298d4e82586","sha512":"8eb0f616162be914a3945fb383250796e1134da22e8ae612f403f28804ac04b7fd0f607e132403dc28505d80377c9281601cb23ef1f0814e08584428f3efa05f","ssdeep":"192:4V3ZO9Gxo9H+wp5qh6BKfMPaB2kXTfwoVqO2Rzhj7TfhBcHEhaI9yLKKD:4V4GxoYwp5wQKfMP6LXT7V+RzhzncpLb","tlshash":"7112bf66ab39a301d66d2bbe5cc59302db15ad10dfe14a3fcb840980370c6f9de5a6c4","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-06-08T12:43:51.926272Z","times_seen":601,"resource_available":false,"data":null}},"time_used":1974,"timings":{"blocked":845,"dns":29,"connect":273,"send":0,"wait":277,"receive":0,"ssl":548},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:54.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: application/json\r\ncontent-length: 490\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":490,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"89536beea1cba1f1474e25d9b05c2c79","sha1":"bf27b63f5bce722602949a9980df90010b5c5fe2","sha256":"90f94272dc8a9ccb7f6c9a80edb76e535818f45b33295c65907715138ba676dd","sha512":"e9bf5fa71544d87dbfbde52bc489e4fb6a38e9e428166524c4ed8b4f0d90df8fc70bcefad6a4df327c6bc17f40d668771191b15aed35f7bbd7c8823a501d23a8","ssdeep":"","tlshash":"98f0970e1038ce368c4640cb56ccb9cd00fa0612a69c8a28ca6bcf2c82d9a750b0b544","first_seen":"2026-02-25T18:17:58.357412Z","last_seen":"2026-03-02T14:22:51.091192Z","times_seen":3,"resource_available":false,"data":null}},"time_used":566,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":566,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getCoinList","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:48.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:48 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21654,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (21638), with no line terminators","md5":"fad5c0f924090c276a56e57083f36cea","sha1":"7dc49b12c62e42671b74a0b1b126cf271a7c6d6a","sha256":"30e96c2624c24c377075746c6170bb025364ad0d956bc910d62e99dc64ea80ac","sha512":"17cbb0770855ca7e645a21c74d5416828f93eeba8199a8f358f8e777f0f92fd7a41d31e7f79348a7d82fce07d094849184e2650dbeceda0ea733089351183aa3","ssdeep":"192:gCkJFu+ZByRv8VAVpvi13HgkYdE7DYUphCjCf8XsdDAKMmcDQ26rbAHzZ08Wrs1L:NEcWRd5dIQAHJO/Q","tlshash":"fca222565528d5b9da7ec1d12ebf390650cc327fb8c9890bc6ca4c8c8ed9eb5560bf02","first_seen":"2026-02-25T18:32:32.104134Z","last_seen":"2026-02-25T18:32:32.104134Z","times_seen":1,"resource_available":false,"data":null}},"time_used":366,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":366,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/cryptions_logo.09f12706.png","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/cryptions_logo.09f12706.png HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:53 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-23311\"\r\nexpires: Fri, 27 Mar 2026 18:31:53 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":144145,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"09f127060e5ba35ca6d5eea951eb02db","sha1":"c5d89d1cc87582c16b292865f417d871392e7114","sha256":"02795184caa71348c3c83ba80d5b4a5c3ba06b062335c927865c572000867720","sha512":"537d28ca6d657bfa2c10eb665f9bd21e6040ab0fc1f341585401af9818d8ed45517b3b09b1039db39d02b904c9ae60a6bc2df6ed1e09efbbb4f728ed42e68c3a","ssdeep":"3072:rZcORe1lj5cX8xQPSzbCKpGmONqrwDZDhBCFUFJLAieowK:FrExchEmKpGmONqMJCCrA5K","tlshash":"11e3e15ede3be0ea4dafa035692208d4440b5d52d9825e31f77c608cff683a1bf162d5","first_seen":"2026-02-25T18:17:58.40261Z","last_seen":"2026-03-02T14:22:51.092246Z","times_seen":3,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/notice.33ac06bc.svg","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/notice.33ac06bc.svg HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:53 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-4e1\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1249,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"33ac06bca34d90bf8f54a5e7cf61705c","sha1":"e1e233886cca764953f4a00488feba786b30af2d","sha256":"a66dbdbf26594c37bf069bc460bbfc921ffaef7cbeb037cf9bdb6408bf9084ca","sha512":"7d9de9d7066d7ef131ddcaadbfdb9bed2bf1d0fe6221496fbb4a8ae0cdb9f1748f7c2952a33e29e7588ac1388712f28eed466f4da2a6304ea98c6e609c5cb50a","ssdeep":"","tlshash":"b8216288cf6c87b0b9990368c63049c27b4b20de9312437cc6306be0e156bb149505fd","first_seen":"2025-07-19T06:38:51.515858Z","last_seen":"2026-06-01T14:35:57.900565Z","times_seen":27,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getMt5Amount?coin=xauusd","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:54.853Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xauusd HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nReferer: https://web.biitcooinsds.cc/\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/XAU.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/XAU.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 27439\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BB1E8233731908459\r\nAccept-Ranges: bytes\r\nETag: \"079EF8044EF1FFA2A902C584A99C2E70-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:20:37 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 1277834130201953694\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":27439,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"b196a50788965603dd38e35b02684d07","sha1":"cf75207c63f4d2b725f818e482d7eae0d4f5b6f1","sha256":"3ba9a19596f1f7ea38d196d565f286f6e54844f50d77b4c6bd06b1363b25bf2a","sha512":"b5fc6d01a3c677d78230fcf71876ea04d80fbc7fe1d7509b5ddce128ff3e40762410984f17a3a24f7f30906c30b0d9d2fc767b73e8952648c0234baf0055cddb","ssdeep":"768:uEutCXMcHG4PG7KTnZ49T/3+0JMxcj1PsJ:dbnuGTg3+GsJ","tlshash":"6dc2e085c315cff5329e1c49347e5ddd843decff86ea48862ea88219f81dc6328ca258","first_seen":"2026-02-25T18:17:58.361056Z","last_seen":"2026-02-25T18:32:32.108552Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2306,"timings":{"blocked":2006,"dns":0,"connect":0,"send":0,"wait":290,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/block_4.703a9b9f.png","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.844Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/block_4.703a9b9f.png HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/css/views.c0d2ec11.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-e681b\"\r\nexpires: Fri, 27 Mar 2026 18:31:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":944155,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3840 x 2004, 8-bit colormap, non-interlaced","md5":"703a9b9ffb680e9f92c3a4da62532eb8","sha1":"76044a1630cf4b5ae96d99f09c4760ff5997d298","sha256":"ae10383874d01133f9750daa8badd894694c2680a09402f334f86541412c0f94","sha512":"8d3ac3b84239477db33eb51d342cfbf90c9c6704462a774e197dfb978c862942fd6a9ac97256c0c0f3df1a50f288e0863f487d828914522e532bb80443ce2b6d","ssdeep":"24576:UMXAWDiAwHfEvTekOsAo8+0mufQbWFtwxkO9GW+kJW9Q0:UMCHfEvahOmtuG/HQ0","tlshash":"4215334191ce8c2bdbdfb96e8211652f76f1f7d27635c28057b8e6124728f1b0288b6d","first_seen":"2025-03-18T22:09:12.592205Z","last_seen":"2026-02-25T18:32:32.109971Z","times_seen":9,"resource_available":false,"data":null}},"time_used":1343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1343,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cryptons2b9bbfc12fd340c3818d2de890053cdc.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cryptons2b9bbfc12fd340c3818d2de890053cdc.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 646\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401CEE240031346FC64E\r\nAccept-Ranges: bytes\r\nETag: \"BB1C2A9C97436C177C4AE2A1F65613CF-1\"\r\nLast-Modified: Fri, 13 Jun 2025 14:29:30 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 2534521739587583330\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":646,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"d837becfdeb44fba85ff8df185e09231","sha1":"aee17822ed529aba98c70a32e57dfe5ee6dd8c94","sha256":"c9915b6f8f6742ba0638f5c81be30ba63e9443696e70f98498e376f40708bb66","sha512":"6f5d78ed6794464b8fdb15d1e8e38a89fca350589247b5a00c8f78626f7a5764c4907ddc288e6e9c20fe31f682a20e3f73e7f97c40b741bf6a5901d60fa982e0","ssdeep":"","tlshash":"8ef0239216658552c2c6f626866c3428dd9882a71ab3912f592ac1ba1e05b9d004928b","first_seen":"2026-02-25T18:17:58.392078Z","last_seen":"2026-04-22T17:57:27.796022Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2510,"timings":{"blocked":2231,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getCoinList","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:54.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21654,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (21638), with no line terminators","md5":"04a54a5c29dac8c8551e7d032994d288","sha1":"cbf612ed4d1b5bd32d5207cc297074465bb5c986","sha256":"b39a882bcafac804a7061b6faea4a25500718c24407584e8193310aa754cde09","sha512":"8269d6a91f4b7e3a8565b07aed121566d11995fe3ac24362de0aa11b5ef4b513cde84f1a24d5bf4856ac3339de4c685ae3128c0b30bee9aba50ba1c80489ddf1","ssdeep":"192:F3kWjuoZBdRgwVa4pWik3lgsed17qMUphyjCd8XtDAEMmcDNQ22rblHzZ0VWrM1x:svko2TdiMlHcsDQ","tlshash":"ffa210561528d5b9da7ec1d12ebf390650cc327fb8c9890bc6ca4c8c8ed9eb5560bf02","first_seen":"2026-02-25T18:32:32.11212Z","last_seen":"2026-02-25T18:32:32.11212Z","times_seen":1,"resource_available":false,"data":null}},"time_used":576,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":576,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/vue/2.6.10/vue.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/vue/2.6.10/vue.min.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-16deb\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":93675,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65449)","md5":"17e942ea0854bd9dce2070bae6826937","sha1":"434cdec1669f2c6c7406297a72120936bc56ed52","sha256":"72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26","sha512":"3f0439fa3817c71a6b34673cd32707137b29823e93b8389e1deff24e46c427e5396a897b753ba98bfe156f01c7ce54155bbed56f418b388b22622807802e6f72","ssdeep":"1536:1UXY7qLtpHt2Pqe1mZ8I6H82RaLiMBlo2VV2B/S/g:MYeJpN2yefjMBlPV00/g","tlshash":"529308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","first_seen":"2023-03-07T01:18:07Z","last_seen":"2026-06-08T04:43:34.845225Z","times_seen":4058,"resource_available":true,"data":null}},"time_used":1387,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1387,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/element-ui/2.15.6/theme-chalk/index.css","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/element-ui/2.15.6/theme-chalk/index.css HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-3a430\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":238640,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"2e0bf3411d54afa6402c0f114fc5a7cb","sha1":"0fcc1045629f8fa599d74eb33e44e5eb2406fd49","sha256":"c8df4deb1eaf507ea9e4c383d563c8f3bb6d35c0df018d5623a8e93d28df2a57","sha512":"4552f7d4f4119c1421778860f37fe49c27c28a0f77f957a9f176fab0001edb32e7b999a718e527087cf3a9c9c1c08d2e91daa01d357c2738fd48b606c47643a8","ssdeep":"1536:f28Y7SrW3YeWXA1u9w4HCe/l4Ttg5fqMEL0e/78OaiZkW1YO8eQFsGmtf0IcXyrc:k3H0Rkfeyl1hUEDw","tlshash":"0b34a7219b07216b612bde6db6c0ba895f18c323d4725bbbfe95740cc7d34891263a4f","first_seen":"2025-03-06T09:16:43.421068Z","last_seen":"2026-06-01T14:35:57.882796Z","times_seen":42,"resource_available":false,"data":null}},"time_used":396,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":396,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/iconfont/avue/iconfont.css","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/iconfont/avue/iconfont.css HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: text/html\r\ncontent-length: 138\r\netag: \"682e96a7-8a\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-06-08T12:28:22.882399Z","times_seen":279601,"resource_available":true,"data":null}},"time_used":693,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":693,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cryptons572190173ec846e18b20655473ccef44.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cryptons572190173ec846e18b20655473ccef44.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 272\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401CB1E8233731D48459\r\nAccept-Ranges: bytes\r\nETag: \"58247062B828B9815F29A69D0CE0C256-1\"\r\nLast-Modified: Fri, 13 Jun 2025 14:31:29 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 17644315505844144543\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":272,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"710590ede45d5f8207586b7234f50c30","sha1":"6be1f338371c62a0b81d876a7d970d7e00f4c7ef","sha256":"dc91d235a4c6b9b373b12a1846903175ee6f3ab7c6dfd4021bee0a2a34ff7cbc","sha512":"17c16f6694b99e9c2a1b8201936c09f573539774f77c3240e030b23cc1c1c9c658c954993c4c4d07bdf489c6ec75991ba4d142308e53bf61e2a6c6a9ebd4752a","ssdeep":"","tlshash":"d2d02be6dac1441cee41451ffea51044bb56e068171e955c4c985625812f8caf49bdc3","first_seen":"2026-02-25T18:17:58.349441Z","last_seen":"2026-04-22T17:57:27.78055Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2520,"timings":{"blocked":2241,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/element-ui/2.15.6/theme-chalk/fonts/element-icons.woff","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.894Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/element-ui/2.15.6/theme-chalk/fonts/element-icons.woff HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/cdn/element-ui/2.15.6/theme-chalk/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: font/woff\r\ncontent-length: 28200\r\nlast-modified: Tue, 19 Aug 2025 11:30:54 GMT\r\netag: \"68a4606e-6e28\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28200,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 28200, version 1.0","md5":"535877f50039c0cb49a6196a5b7517cd","sha1":"0000c4e27d38f9f8bbe4e58b5ce2477e589507a7","sha256":"ab40a58972be2ceab32e7e35dab3131b959aae63835d7bda1a79ae51f9a73c17","sha512":"da269b20f13fb5b0bb4628b75ec29e69bb2d36999e94b61a846cb58db679287a13d0aa38cdf64b2893558d183c4cc5df8da770e5a5b2a3288622cd4bd0e1c87b","ssdeep":"768:gOvv6ExpCVxUtrT6w8ClFd80EjPVerMKBaGXjAlEm:Hvv6xVWewtlFdGjPlkFjAlEm","tlshash":"b9c2e13197213ae9d9824ef876e498fef1651402290f390e8696adb3a98d5c73e16831","first_seen":"2023-04-05T15:22:49Z","last_seen":"2026-06-08T10:54:21.442069Z","times_seen":26035,"resource_available":false,"data":null}},"time_used":2158,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1978,"receive":180,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getAllSetting","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,lang,language,satoken\r\nReferer: https://web.biitcooinsds.cc/\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: authorization, lang, language, satoken\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":281,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/vuex/3.1.1/vuex.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/vuex/3.1.1/vuex.min.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-2d85\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11653,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (11593)","md5":"ccce53cbb3813a63f1420eba489574af","sha1":"94ac9c787b2b96236356286c44350260c9f08a33","sha256":"1610512a47faf745fe96ac631be8ea3ea50a222fe7d7cca691f7ff8194b934bc","sha512":"78a2cf9dd160d4a451c1536de4d0037330d8ed11d07f0edaa427de7131a190af3c86d1a3f5bd858cac14f16ca70f78b2dc4bbe0124f7d3a2a4cce8872b95b8bd","ssdeep":"192:ViDaQv4w9nWp4UvouC3Dqs/778IG0zqLVFcu8XCnrdVpVAQflmGcXg3H8VnbZqlp:VeJgqnWp4kYj78p16CrdKMQ0CbMB+a4+","tlshash":"6a32cb9a73e1762aca57b0b0ac5f9c08f275a9dc1686400c6a4dc0f99c754bccb7ed9c","first_seen":"2023-08-28T22:21:58Z","last_seen":"2026-06-01T14:35:57.895927Z","times_seen":175,"resource_available":true,"data":null}},"time_used":1385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/fonts/DINOT-Regular.d5ae250f.ttf","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:46.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /fonts/DINOT-Regular.d5ae250f.ttf HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/css/app.e4cb1320.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:46 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 12381068\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\netag: \"68a4606c-bceb8c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12381068,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 16 tables, 1st \"BASE\", name offset 0xa88e6c","md5":"8c1c07fe2997321d54b049da39e880fa","sha1":"e85c69e54574d47b1a3b665a5f7c98ffeafcd371","sha256":"c6b6dd24e24ea6c07767f20fc1b2dfe86f31b1ca166ae620079c67dcdd5add6d","sha512":"192427288363eb352a702f85cbf2d714a78374d4583da9be541fdbcbbaf4e643103ded1b942d601838476029b05eb5b84d8b08998b546046255fa29670bf1127","ssdeep":"24576:H/8MftuDPIz9ZeJ199QETruMGR7JrhCannDH3l8cVZYIVY0:EituDduVjn7Zf","tlshash":"94257bc297c92d1eea22bd3c2440f63e70ce65088a56d6fade431f3718429741de9eb5","first_seen":"2025-07-29T21:26:30.315596Z","last_seen":"2026-06-01T14:35:57.877392Z","times_seen":64,"resource_available":false,"data":null}},"time_used":6818,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":900,"receive":5918,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/tron.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/tron.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 28273\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BEE2400313478C54E\r\nAccept-Ranges: bytes\r\nETag: \"FB0605E690DEC98F2DF25DF64005EC40-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:39 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 651333452456791640\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":28273,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"d5ca5f90c7a46cb88e5f57b2d3046ba8","sha1":"4a46fba9e1f7e0419539519e1936e6002f99b3a8","sha256":"a584af003890eeb5d527e91031218b66fc8d429ce7d8ddc5f5ceb9efaf627a40","sha512":"60e2cb71c7155b2f51159c37f53d85c567698b9baec7ffc34ec898df057fb64e2528909f68df9e901bf5243a4ee451f0ff432e210db1635ca0c448073e7811e2","ssdeep":"768:CXuoEFXvWj4CBn04bX73fOlLiRO2lFIVmfSD:9FXvWj4CueDGlLmOuIcqD","tlshash":"b2c2d005f8f592ca744cc6104925cd97f273a15b30a53eda3ddcca6f7f9c9e916a0282","first_seen":"2023-11-19T03:02:16Z","last_seen":"2026-06-06T04:02:55.285468Z","times_seen":581,"resource_available":false,"data":null}},"time_used":1429,"timings":{"blocked":1131,"dns":0,"connect":0,"send":0,"wait":288,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/block_3.e9fba077.png","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/block_3.e9fba077.png HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/css/views.c0d2ec11.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-131715\"\r\nexpires: Fri, 27 Mar 2026 18:31:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1251093,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3840 x 1624, 8-bit colormap, non-interlaced","md5":"d67c42bc08853b96a3735c5d70a983c9","sha1":"1a6697ed5074d059e92e6ee2dd5329cb2e684d61","sha256":"550ae069b5537c385320f0b556b125951ba923675277643ca1d8363e6b250583","sha512":"a24682c467ec5f3c29250e06b325b452d64ffc01ab26295c43038e8d66fff7c5a3c0038f6a6a23040dc5e2692b1215de94d2d8f39fbb12718eff52c48e9cff4b","ssdeep":"24576:tYQjmih0Jz6M8TpcL9Fi/jo6KHk30+6hnqe8GUZ+pzJeCnPv82mOj7:eQ3heYp2vi7lKHkChnh8p+GC82mOv","tlshash":"c42533e0c5c993e1eaef797254a3b4ccfbebe6057b63614c0056d5a052f73884e163a8","first_seen":"2026-02-24T20:34:26.07261Z","last_seen":"2026-02-25T18:32:32.119909Z","times_seen":8,"resource_available":false,"data":null}},"time_used":696,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":696,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getAllSetting","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:54.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:54 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12455,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (10901), with NEL line terminators","md5":"729c0c5ed8cd27c4e9f88db9fe9cb201","sha1":"9bc9cb433efee46a0ae2589c9292351cbef1cf01","sha256":"f9737d4d1d9e01954717da09a87cbc867c64eccdaa64cacfffb6abb9fdada924","sha512":"75e7ba4383dd26e850d1bb796adb0bc3c5eab837e63ac29b67709368f03fd30d6a813289a03768ccb5982d6169ed99b2bc666b97969c0db982efcf16d79cf22c","ssdeep":"192:xLBpEW2S5ky0z08N2K2IGbPLulFYAfY73DfZbTFlhc+h3YpvIxSVoyGc+rB1el4f:chGZ9laQhXt86n","tlshash":"a9426446358cd8bccbe548d690bb7e8664dc349fa1c4d449b7b9ed8c69dcdb2440b306","first_seen":"2026-02-25T18:17:58.366211Z","last_seen":"2026-03-02T14:22:51.03397Z","times_seen":3,"resource_available":false,"data":null}},"time_used":563,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":563,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/svg/loading-spin.svg","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /svg/loading-spin.svg HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 422\r\nlast-modified: Tue, 19 Aug 2025 11:30:54 GMT\r\netag: \"68a4606e-1a6\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":422,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"037f0a4f642ab8e77b624c3397411ebb","sha1":"32472bcb995af56caeecb9dd747bd56545fa0b8a","sha256":"8af421d321398026263f9eeb85acf0130787e4d66ee173dd2023d291b021d59f","sha512":"fc66e5c04f76fd183f2e64aa86ea80c93d24805219d3ac5b59968a535b27a4631905f389d02d93979bd1e941b81ca683040926d6257ef584ed341ce216ccdc6e","ssdeep":"","tlshash":"00e02bb9ec1e660f402e479b6aacd800239dd2f127050096e72c1c39680f419eae7149","first_seen":"2023-08-28T22:21:58Z","last_seen":"2026-06-01T14:35:57.917998Z","times_seen":213,"resource_available":false,"data":null}},"time_used":1341,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1139,"receive":202,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/css/chunk-vendors.b57e4bfb.css","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /css/chunk-vendors.b57e4bfb.css HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-49e\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1182,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1182), with no line terminators","md5":"bfb572ddf961ce1e5d366017ddcf75dc","sha1":"5581fb5a4ba4645e0c7a08788b80c8f9adea0321","sha256":"10092d48c11ed6efd7474aa904ac1d89d6ad919b01efcc718fbb93715a92d87a","sha512":"f088f406fd3511782ff0fc2dbfba3d2adab4e676fafbba20235ffcb845b6bc275cbc08fa588251b3a317ec35a7d7c6d663b05531d89748bdcf6cb75af298795b","ssdeep":"","tlshash":"c221ab32cc900566a2276e07b6ce0a9a03aac602913bc1dd7f557519c386b6c1cdaf8b","first_seen":"2023-06-15T19:02:17Z","last_seen":"2026-06-01T14:35:57.873126Z","times_seen":207,"resource_available":false,"data":null}},"time_used":915,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":915,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/js/views.ff62a69f.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:47.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /js/views.ff62a69f.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:47 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-2d988a\"\r\nexpires: Thu, 26 Feb 2026 06:31:47 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2988170,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65464)","md5":"ba7d7ce386c1b2730e162cc703b74afe","sha1":"f716f5f2e146933a03cbf00bb1e79f2d080a047e","sha256":"d53a4b398e4f085454d8ea29ac6b7f149df2d2b2b97625afef45098af7856205","sha512":"438b3b16b0c123455806eeb9db139bac5ad17f90b905ae6463eb3c34db720de6e341b134a7a7ba0ca3c9c72c3344042bb1c7c1a71db9c143b0368dc716693d71","ssdeep":"6144:Qi5TjBmBmuqOszUicvflfNP6IHt8OsCWrw8Ui3dAtThW3KV/OqJTyc6tIEelc7s9:QOpm2OsARUIOOsZ2f7ams1st","tlshash":"5c251904b2a2b066c79e3564052f5009e279ba6c6407806df678d8f6bdf8d84772ef7c","first_seen":"2026-02-25T18:17:58.399863Z","last_seen":"2026-02-25T18:32:32.12199Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1780,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1780,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/binance-coin.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/binance-coin.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:54 GMT\r\nContent-Type: image/png\r\nContent-Length: 12869\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401ACE63A83439136759\r\nAccept-Ranges: bytes\r\nETag: \"AA1655FBE9EFA39602CA4FD010EE6EE4-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:38 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 18158548296662870332\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":12869,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"a533eecdee5a789e7d94f8f79f95d588","sha1":"f1ae6df3a9baf6dbec969c6d1ab622850a282895","sha256":"ea257fac91d01858b7dfd0361f8b480caeb3d57b080570ef4b4f41d5d7e68c90","sha512":"e46ca5c2239c89c783805b1f4e17664118e57e95dff6513b8ff917aaaa763b922c6286b48d0e6daca644ae30c3e821674dade74a056837865353b451c50d074b","ssdeep":"192:3GSu8nGgOCcrSaheqQThcTrOcOAasSqXzcxfuZWfWOKJ6mVgCd7mOOwRB0IG:5/POzrSTThcTaPAaFqXzcqG6ekvP0IG","tlshash":"1442bfd83898c3e455233e69d56e4c138122251a66588517f22a2b7dbf03af27fcf1e6","first_seen":"2023-11-19T03:02:17Z","last_seen":"2026-06-06T04:02:55.266893Z","times_seen":677,"resource_available":false,"data":null}},"time_used":2092,"timings":{"blocked":901,"dns":0,"connect":295,"send":0,"wait":302,"receive":0,"ssl":591},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/coinInfo.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/coinInfo.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 55728\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BB1E82337310B8459\r\nAccept-Ranges: bytes\r\nETag: \"F7B4D2C5D192D4483F6B70056D8D8689-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:38 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 3192987439189544564\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":55728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"48384a67185dbdfeef3aa43c99d3319c","sha1":"23e15189bebafbbec8b23e8ed0f3392a9b7979ee","sha256":"1ceba4efa6a645fbe532e520385f37001922e14b6aa7b4ebeb19e755014feb39","sha512":"2f7a13f56ff64b874a76994d00f198c5fc2b7424181935e641eb81bcf171db54fa50b711502c0c4a7e8f5c934ed5747233d87ae0602916244947d3724eb3ce10","ssdeep":"1536:5ko5w6RHlzxqElMwBI6M3iD+oLKTn6EPwhk6g9p6uP5I:x5fR9xjlMGnMSDYLPJ6bOq","tlshash":"0d430247c0529ed2c68853aa0e3de48a84779d12358f80577ce6525a82e2df29bd770f","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-06-06T23:47:44.168837Z","times_seen":643,"resource_available":false,"data":null}},"time_used":1459,"timings":{"blocked":1134,"dns":0,"connect":0,"send":0,"wait":290,"receive":35,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.biitcooinsds.cc/api/common/getMt5Amount?coin=xauusd","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:55.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xauusd HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nauthorization: undefined\r\nsatoken: undefined\r\nlang: en\r\nlanguage: en\r\nOrigin: https://web.biitcooinsds.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:55 GMT\r\ncontent-type: application/json\r\ncontent-length: 47\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://web.biitcooinsds.cc\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a6af0887a141b2fdb5378ea0f1da9043","sha1":"d1512afc60b7b9ca0b6e979a48dc49f8cdded57d","sha256":"ea857b9ca335033d1fab1e9e9309a7809d67a42e1f912e747588b7047b2e4109","sha512":"abddb8a75c26cbd505396bdadd1b1c0d0e6b2d2fe59c4ef3cd818d8640e967bcb40c5a934a0a27243ae48fc0da99daae7a533186633652417d7b8c2a3bf37f49","ssdeep":"","tlshash":"d79002555c1c8342b8c701a5950e5a4410243160262596485c595525d0881a26044858","first_seen":"2026-02-25T18:32:32.124558Z","last_seen":"2026-02-25T18:32:32.124558Z","times_seen":1,"resource_available":false,"data":null}},"time_used":338,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":338,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/AUDJPY.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/AUDJPY.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 4480\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401BB1E8233731378459\r\nAccept-Ranges: bytes\r\nETag: \"0FF3434C2B121DE94B97CDB8F16E0A2E-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:39:45 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 8982308168046611513\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":4480,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 56, 8-bit/color RGBA, non-interlaced","md5":"9525a27846864b31b3a58f90a69fdd7e","sha1":"3f6d82fe96ebe1cf6459a084ef3d131a503beed3","sha256":"58479b019010c51e4e61ca39c158442fa29c718f5c98b1999ff0a8f57a5f34ea","sha512":"46f57a7d8235eaf383d86b976a8a33dfe221baaa778fbed2d31624964c35d90c4857a09145937483ef735983229935a909d9faf45bcbb0fcf122b19d7d950d7a","ssdeep":"96:mrBs3cA5YcL7yOl0iGc7np79yxoWAm77ipZOLEjhkHVrvN2kM1bleM:sssAzl57n3qoJ67SZOLQhwzqFoM","tlshash":"05919dbfff119668fcbfa37062c6419e47290075f1b034ddb936905a03846b222d9441","first_seen":"2026-02-25T18:17:58.404394Z","last_seen":"2026-02-25T18:32:32.126093Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1728,"timings":{"blocked":1445,"dns":0,"connect":0,"send":0,"wait":283,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/charting_library/charting_library.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.465Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-2a6a\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10858,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857)","md5":"8573e89d9ec535663d75f21b1f08109c","sha1":"a8d9eea0b157ceeffc38d4254e6f6abc9d697d10","sha256":"cb0c6c9f1771d252eee7caa043bdd7cfffbd52c2cc4b18b7be7c4554ed069151","sha512":"55d728fa1e0682725f94b17387c6790792d3d34b43652a00097876118575bd6cefa20916d80674519005d72f20ecbb745e9645516c056e6f9bb6691d5efbcb33","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffam:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvu","tlshash":"6e224f58ed2478720acb54f0427f180f8239e278d84944ed3cc4e6ec59fd44a6a6fbb8","first_seen":"2023-08-16T00:37:19Z","last_seen":"2026-06-07T23:37:29.554045Z","times_seen":519,"resource_available":true,"data":null}},"time_used":823,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":823,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/cdn/avue/2.9.5/avue.min.js","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:45.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /cdn/avue/2.9.5/avue.min.js HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-49541\"\r\nexpires: Thu, 26 Feb 2026 06:31:45 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":300353,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (55624)","md5":"750459dc86246c289cdf5b760013f43b","sha1":"8103e042309fe4007cda921497f28410a75656ba","sha256":"5df0b88dacc1f9ae9edc0adc120da6190632e03cea789186cfc49d532918d6bf","sha512":"f9db639a43a21ca3a54d2546999e885bc0057f1b29eb9c2a1b7e5510dfd284530992a97c9642d4ed87357a472b7274b229279fdd45251ad9bc7c03564747375d","ssdeep":"3072:8mWzlkGK5sT4v9rD/2S4oqJNtvywiDjD7TefeKceKsT1/tF8vUoa:8mXqJNtvywiD37TefeKceKsT1/XBoa","tlshash":"50540959f1cab8750ad76070003f210af2372b896409d0a4b679d9e1adbce4da16ff7d","first_seen":"2025-03-06T09:16:43.423938Z","last_seen":"2026-06-01T14:35:57.89704Z","times_seen":146,"resource_available":true,"data":null}},"time_used":1379,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"webapi.biitcooinsds.cc/ws/c538e1d2-7c10-4b90-bbfa-93080c46c82c","fqdn":"webapi.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:47.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:46:11 GMT","end":"Sat, 23 May 2026 00:46:10 GMT"},"fingerprint":{"sha1":"01:CE:FA:4F:0C:98:84:6E:DB:C1:7E:A2:EE:20:D5:1A:8A:4F:4C:3D","sha256":"39:A9:69:AA:5C:3E:F7:15:F3:FE:23:CD:67:70:6D:10:98:C1:69:F6:6B:62:D7:6C:AE:28:05:99:72:BC:7F:AE"}}},"request":{"raw":"GET /ws/c538e1d2-7c10-4b90-bbfa-93080c46c82c HTTP/1.1\r\nHost: webapi.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://web.biitcooinsds.cc\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: EsoplAHcp/pZjUqmTxgDeg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx\r\nDate: Wed, 25 Feb 2026 18:31:49 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://web.biitcooinsds.cc\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: PdvPD/pYH+jLMlToCQkgSL+/Lfc=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":3028,"timings":{"blocked":0,"dns":1052,"connect":1399,"send":0,"wait":287,"receive":0,"ssl":1348},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"webapi.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cryptonse12267ba18b04353b606b74a0b134f22.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cryptonse12267ba18b04353b606b74a0b134f22.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 441\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401CBC6A5B35347CB2CA\r\nAccept-Ranges: bytes\r\nETag: \"6431969B37F7290BAA21C8EDD252572D-1\"\r\nLast-Modified: Fri, 13 Jun 2025 14:32:25 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 5605330165625646032\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":441,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"566d5b33441d24f8421854d384c53474","sha1":"07b196f395b5ee3504171e7e7ffbdd024712b269","sha256":"12c3d231be5b0785ea8a9863a525150d5954eb734c9f7ed159660d0d77b98148","sha512":"618b777f852b2e4ba130c2306a328f288614ffe8710e3ce38661a6c9884672541a94663df7cd963d75965ae318f810094a5f1f7acf44d487697964cf9cc5c11a","ssdeep":"","tlshash":"9df023ebdf088562c337536cd80fe542c2a3355513a5e41c4804c40ac084fcc24c7593","first_seen":"2026-02-25T18:17:58.390228Z","last_seen":"2026-04-22T17:57:27.795417Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2365,"timings":{"blocked":2065,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/cbx/admin_resource/NZDUSD.png?2.0.1734355247678","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /cbx/admin_resource/NZDUSD.png?2.0.1734355247678 HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:55 GMT\r\nContent-Type: image/png\r\nContent-Length: 350495\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401B93A7E9393512A4B2\r\nAccept-Ranges: bytes\r\nETag: \"001DF54ADE526554CB5FFA0AA084F69A-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:05:15 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 14025173146087709155\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":350495,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"ae0a5fe64613fea7f55022bcbcebf9f0","sha1":"f81c3885edd3bf3acaa62f586a7fccb9e96fff57","sha256":"423a3cbcbd01b1590c6b16dd65e1da0c8fb539557d1c6a9095ef8251afd0d22d","sha512":"226208a9f97a604ae0c8c38808c5c4f57dd2bccda4f20bce11296f0dff61f32e90a60d8eb2f2b66a2b9c404e55fdb090bb931c0fbfe55faf94c92da506b126a7","ssdeep":"6144:MJvrjD8Yq4qs2pqLr700RGr8MDEl7jD5HDCKdfbvekswYcilXZvg+wX+q:MJDjD/q4q5KFRDMu1DCMDriciDvgjL","tlshash":"4d7423c84f19ed9828f15b791712c9702ee187dff2916294d4ece62d6a158cc8c3a4be","first_seen":"2026-02-25T18:17:58.381063Z","last_seen":"2026-02-25T18:32:32.130605Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2261,"timings":{"blocked":1149,"dns":0,"connect":0,"send":0,"wait":284,"receive":828,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/block_2.98b52bb7.png","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/block_2.98b52bb7.png HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/css/views.c0d2ec11.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:53 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-eaff1\"\r\nexpires: Fri, 27 Mar 2026 18:31:53 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":962545,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3840 x 1956, 8-bit colormap, non-interlaced","md5":"98b52bb7d68890ab8ac372fa8f1e22bd","sha1":"993d41c864437d0d2432fac973b79b3c868cd2d7","sha256":"212db1ac2b7ab23089288b5188149d6728e5f1291b1b5027563f06530252aed5","sha512":"f66ed2c2d9b6fe145d89b8c4bc526d735defdb6b3b56963e465a3673a1799636bd3b3234385acfc03609ea78eec8a6f9bdbba5e431b1edaf84e5554adecf908a","ssdeep":"24576:sh3rldonNWRf5Sw3N0X+mmqLf/x1VpIyaaXiPIFNH:s1rwNWRf5f94+mmmPVpIaXoIF5","tlshash":"2e25239a807fc9b00ebd9c4e65563a38339557467b6a3e16944bdc6823bbb0f8370713","first_seen":"2025-03-18T22:09:12.632471Z","last_seen":"2026-02-25T18:32:32.131712Z","times_seen":9,"resource_available":false,"data":null}},"time_used":298,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":298,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-25T18:31:44.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biitcooinsds.cc/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:45 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-1064\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Axios:1.0.0","description":"Promise based HTTP client for the browser and node.js","website":"https://github.com/axios/axios","common_platform_enumeration":"","icon":"Axios.svg","categories":["JavaScript libraries"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4196,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1454)","md5":"79e496da517cc29ea6b78b63967a60eb","sha1":"52bddafc06d9037bc961c993085dac688cc36d94","sha256":"4a341b6d70939fa7cafe66bfeff686f07fd70f839516ffb5e8d1f8fae0e9034a","sha512":"8fe1c5383f30260de7a2ab121825121fa424d422e62c2e86ff982ffcfdb20e740e379fc5033e7e768d2cc7afde4718a3a26a76e49214565f4bb28f4fd0457cdb","ssdeep":"96:AEVshqIadBEHVM9C7tVftA4X50DGW8idLQu:AzhqII6VM9qDYYidLQu","tlshash":"bd819546dd02845e241219a9e7abb50c05a5a40bde64cc25bcfc675c4f6cfcc49f2e8f","first_seen":"2026-02-25T18:17:58.392912Z","last_seen":"2026-02-25T18:32:32.132425Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1433,"timings":{"blocked":570,"dns":1,"connect":283,"send":0,"wait":287,"receive":0,"ssl":288},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web.biitcooinsds.cc/img/lang2.f69407ac.png","fqdn":"web.biitcooinsds.cc","domain":"biitcooinsds.cc","tld":"cc"},"ip":{"addr":"143.92.60.42","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web.biitcooinsds.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 00:47:55 GMT","end":"Sat, 23 May 2026 00:47:54 GMT"},"fingerprint":{"sha1":"8E:DE:6D:87:70:48:BC:20:DC:08:F7:E6:74:03:20:E2:EC:D0:24:ED","sha256":"14:05:E8:9F:6A:C2:F2:25:6D:52:D3:BD:51:FA:F3:5D:6D:E2:62:29:70:7F:8A:5A:9F:C9:C9:0A:8A:2A:ED:D8"}}},"request":{"raw":"GET /img/lang2.f69407ac.png HTTP/1.1\r\nHost: web.biitcooinsds.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 25 Feb 2026 18:31:53 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Aug 2025 11:30:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68a4606c-12e1\"\r\nexpires: Fri, 27 Mar 2026 18:31:53 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4833,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"f69407acb77dc988f06b654960567d06","sha1":"45eaa1e1f007e406a5127cf658468d39687f9c33","sha256":"7218e11cb133c3d3c0c35373879db8870a9474414378e1fdf7eca63dfd04d456","sha512":"9f66b144ee7caa0fb4366e94e3d705f3c4c7578c7127b3948d0b79cdd0c07138e9de1d27a1863b61e157d8dabb3923f9040de3bd1db7a9e33371d51f992061a6","ssdeep":"96:iVG3eY3bHlesU+ZJKuabS04kWKEqjlE2awthDP+SJrc3Quc:e2eY3bFLU+Zz04kWKNy2hthyQrc3pc","tlshash":"86a16cc1afa2633ce4c923c3174074a1992e353b2067ec1c5e5ed52a3fe60ce18781e5","first_seen":"2026-02-25T18:17:58.394664Z","last_seen":"2026-02-25T18:32:32.133367Z","times_seen":2,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":326,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"web.biitcooinsds.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shege.oss-cn-hongkong.aliyuncs.com/coin/ripple.png","fqdn":"shege.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.230","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://web.biitcooinsds.cc/","date":"2026-02-25T18:31:53.794Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /coin/ripple.png HTTP/1.1\r\nHost: shege.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://web.biitcooinsds.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 25 Feb 2026 18:31:54 GMT\r\nContent-Type: image/png\r\nContent-Length: 2274\r\nConnection: keep-alive\r\nx-oss-request-id: 699F401A93A7E93935C4A3B2\r\nAccept-Ranges: bytes\r\nETag: \"F14A046BDF7107AB2C4D02341AF18A4F-1\"\r\nLast-Modified: Fri, 13 Jun 2025 16:14:38 GMT\r\nx-oss-object-type: Multipart\r\nx-oss-hash-crc64ecma: 2919851811578833622\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2274,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"674b0999f6083084a2a4b1d8b20f3bc1","sha1":"8d14a526e83604e323723b4d25f8f8066f1ede70","sha256":"632f9cacb6b3fbedece774a8d27c436f37dc359de3bb0872ea19603b70347708","sha512":"4c04d137c2448c0d52a4298c858f95c58116c1d77e75899f5acdf6bb61ed839dbdc99fd5556eb63793b81258de40e515540acaeab007da76664476c9be2e514f","ssdeep":"","tlshash":"cd414bd7c53300ed9128e735b8c3ee819c00628d183bb46b89f5ec60b2346d31a53a98","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-06T04:02:55.304252Z","times_seen":638,"resource_available":false,"data":null}},"time_used":1973,"timings":{"blocked":846,"dns":24,"connect":275,"send":0,"wait":277,"receive":0,"ssl":549},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}