{"report_id":"84e9ef21-b265-4b32-ad22-82dcb7448364","version":6,"status":"done","tags":[],"date":"2026-03-05T01:01:51Z","url":{"schema":"http","addr":"somaliaz.com","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":0,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"title":"kuCoin","dom":{"size":26790,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (9739), with CRLF, LF line terminators","md5":"f0b1b81ac2d4ffc1df9144a06649cb99","sha1":"aeb9d9c093a196dfb4ded53533122d69e5fc0973","sha256":"031a5e115a3dce34c7813dcfd28c46b057e5438d52943bff5818f3411c797936","sha512":"32bf9ea48a422f8affeffe002a710a2015d5f46816bdac74e9edf3681ca9a93397ac09c99acdb2f4950d631906001fab01e2c25b0085f5c10ff889357ec7ef41","ssdeep":"768:SbQxp2mQsc/K2rM7pulJPFA+t0L6ZJWKHYuCI:Sb+pQsc/K2rM7pulJPFA+t0L6ZJW8d","tlshash":"93c27634660442e713b7d8c0f6617e2eb2d3e30f950a8542bbbd918a1fd3cb5bb26561","dom_hash":"domhashce942cdb4b2598d43c8c16ff83c23894","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"somaliaz.com","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":0,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-09T01:01:51Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":12,"urlquery":0,"analyzer":4}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50612,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.577667+0000\",\"flow_id\":965237359439392,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50612,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.060960+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50660,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.577974+0000\",\"flow_id\":1070468353159114,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50660,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":901,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.061386+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50632,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.585242+0000\",\"flow_id\":1462495788068566,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50632,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":753,\"bytes_toclient\":1634,\"start\":\"2026-03-05T01:01:34.061142+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50608,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.600234+0000\",\"flow_id\":1385774787259753,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50608,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":901,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.060777+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50648,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.601373+0000\",\"flow_id\":1706505765056348,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50648,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":901,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.061276+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50712,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.803677+0000\",\"flow_id\":1544658512430162,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50712,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.312402+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50714,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.820757+0000\",\"flow_id\":468352592954531,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50714,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":753,\"bytes_toclient\":3148,\"start\":\"2026-03-05T01:01:34.312483+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50684,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.829822+0000\",\"flow_id\":166510881325982,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50684,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":753,\"bytes_toclient\":1634,\"start\":\"2026-03-05T01:01:34.312222+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50728,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.834636+0000\",\"flow_id\":521515698144506,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50728,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":901,\"bytes_toclient\":3148,\"start\":\"2026-03-05T01:01:34.312570+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50696,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.838971+0000\",\"flow_id\":1369891998188532,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50696,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":901,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.312308+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:34Z","timestamp":1772672494,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50672,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:34.866600+0000\",\"flow_id\":1496086727279351,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50672,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":901,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.312055+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T01:01:36Z","timestamp":1772672496,"ip_dst":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"ip_src":{"addr":"Client IP","port":50626,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-05T01:01:36.605385+0000\",\"flow_id\":5350823489152,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.35\",\"src_port\":50626,\"dest_ip\":\"39.103.20.14\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"jiaoyi6.oss-cn-beijing.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":7,\"bytes_toserver\":1398,\"bytes_toclient\":6587,\"start\":\"2026-03-05T01:01:34.061056+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"somaliaz.com","ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"domain_registered":"2025-03-02","domain_rank":0,"first_seen":"2026-03-05T01:01:54.186999Z","last_seen":"2026-03-05T01:01:54.186999Z","alert_count":248,"request_count":62,"received_data":3753316,"sent_data":26065,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2025-03-13T05:08:22.80531Z","last_seen":"2026-02-27T13:59:44.096493Z","alert_count":0,"request_count":15,"received_data":1602146,"sent_data":6663,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"webapi.16djht.com","ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"domain_registered":"2025-10-18","domain_rank":0,"first_seen":"2026-02-27T16:35:03.09947Z","last_seen":"2026-02-27T16:35:03.09947Z","alert_count":0,"request_count":19,"received_data":59192,"sent_data":9746,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9d379fc52463f2b630c6894900da5180","sha1":"b33fecceae6c1ef97518c6ad7159534d78e7b2f7","sha256":"6c3288c6af4396096b1a8a927fbfaf05ac8cc29658fc97d13cf036ba6bb38ab3","sha512":"49b43b0c253e26c135bd5009d73c537cf2e78342ef6b116ce6efbd3627152ac804449ec5cbe637a544b5557b52a50213a19dfcf33158a4f6b0a8ff91d79372d5","ssdeep":"","tlshash":"61c012c5a0da29102951595424bf28e8a024c026b55c6b169de4dda829e64fcc627d98","size":190,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-04T15:28:13.4706Z","times_seen":664,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d5b9095106d420a9e894653253889d42","sha1":"5906b05cd1abf9cf7939e6ebe29333665bee864f","sha256":"cbd2c27fa7ef3be0a40795283f56b2910112741c9a6771adc57d6e56d814af2b","sha512":"ab91769e0450984c12dcc12607d5b75e1cd75001b96fa71cbdb8036e3e606e79eb378bb0ebb9a13241663ca93a583d0cd17bc98d5f35a3ac62bb75e6d6be08cd","ssdeep":"","tlshash":"e9c02bc4b0c73d001602645010bf34e490344027b04c1b53ccd4dc483e230f08233edc","size":137,"data":"","first_seen":"2023-06-06T20:45:10Z","last_seen":"2026-06-06T07:57:08.938175Z","times_seen":909,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5948bc3b90afab1829ab7ee61269f24e","sha1":"517e29a82521418181f702543be8ae74a3bf68b3","sha256":"14fc83a84c91770211dc352186f8e87ddc85e87c2dba0c80a159b45897b9ae2d","sha512":"05c079bbf0389ad341941c3e837aca91dc9aff681cee8da0b4560551ba13e6bbb76b01213af6514e6991e3369062870866a41e67e6d67a37038ddba3ddee7d5f","ssdeep":"","tlshash":"a5c08cc4a0c26d002606691010af24e49028802670485b028c94e8592e264b08233ea8","size":139,"data":"","first_seen":"2023-07-01T13:40:07Z","last_seen":"2026-06-05T10:33:32.178459Z","times_seen":1008,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5b50f3cc3719053ff9acd216e1968bb3","sha1":"6833b0e6db325c16473e46a01f803a92f1f1c295","sha256":"ad4bbe3bb3563055548c84b9be6461298c11365d61c44585479a853cc79a5ec7","sha512":"f1b965b435852c56b638d4e670d6fed23858abc0598b1f6e34af2b323a0efb055a8fbee3196131dd0d4456ca62bfe9f624ac940586304ea7ffcfe602d1d09343","ssdeep":"","tlshash":"0fc08cc9b0c66d502a42a56110bf26e4a035802b74481b128dd4d8482e220b48233e98","size":145,"data":"","first_seen":"2023-06-03T18:56:31Z","last_seen":"2026-06-03T05:16:03.179468Z","times_seen":115,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f02283598f4f3fc7ab0e90b7b81ed99a","sha1":"b8a8992c2c4ef5df3e205092e9bc1f160318511c","sha256":"252570fb068365fd4d03987cb00c299259d9ceee0c661de7f67d81e0c904f590","sha512":"118aa411aa58cb43afb16daf553d3ce1878f576367619049e2594b3524154b8eae8073278d1ca7275773cb36949c2236edd3d77d64a1a8feb4e161c658b3df1d","ssdeep":"","tlshash":"7bc012c5f4e62d10152a599410af35e49428802a64889b52dd94d8682a734b0923be9c","size":174,"data":"","first_seen":"2025-10-28T12:27:40.432292Z","last_seen":"2026-04-20T23:47:18.146796Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a75ab93c4db9073c13fb419ef7c2c46a","sha1":"856072c405dfaa708e23622cad35d78372e23f07","sha256":"da656c2f3889dfb9eaeecb26f30c2b5ff695b991d6c5fbdd8f8978fc0ed2907e","sha512":"0dd74743f8822d86d634c325d0f3f6148960d7c9ba0cc668fde3cfe6475b7a0ffa5ab23cc7f229fd0313dcf0d1d427c60df140423c158354408f96f86faba2bb","ssdeep":"","tlshash":"cec08cc4a0e62e601a02692418af28e8a0248026b45cab02add4d8482ee34f48233e98","size":149,"data":"","first_seen":"2023-05-08T20:49:32Z","last_seen":"2026-06-06T07:29:03.570263Z","times_seen":975,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"64b96e9d7c04d3598ab532838c31de71","sha1":"50bf331694a9b804ce6fb6e5a7c50a5d10cda588","sha256":"20c2add6faaa982c624763d066d770a8640fa28a9ffe5bc6fa9128a1793f56aa","sha512":"f152250e0b9799dc010c8f86eea655f3c6afd8b6b899b69ee82b26769c71b7522c318f1a8c5d7d0e2c09e15487b410fbefabffdae3d71ec14da2b4776ef5a9c0","ssdeep":"","tlshash":"a2c08cc4a4c27e10260a651018ff26e89034402770485b428dd4d8492e230f09233e98","size":145,"data":"","first_seen":"2023-07-14T08:52:05Z","last_seen":"2026-05-30T20:41:26.303328Z","times_seen":84,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-c878e931.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"2dabd06273c5a7551389c7ab267bb359","sha1":"defb2ec87fa38036477289a84e0f5d26a5300c02","sha256":"49e053e4442400e454789d47cc9ef1945fc4ff7097caeb6f120ce34165df97bc","sha512":"1b2320fda9e7d433462f99d8574c3f4772788ec738b987d48219d8b4ea414c5c224e63f2706ba980c7231a5436a08ddc5020e31a8ff975bd2501ffff300f991a","ssdeep":"192:Q3itwf15YsrNCwypGiMwRFtDO5JqFahgT9wbEzZ+:Q3hf10pPRFtDmJqcCT9wbEU","tlshash":"8ed1b789f8028d799e7798808498001261583ff7a11848f7f6fead1b77b5df99741339","size":6285,"data":"","first_seen":"2026-02-27T16:35:10.094161Z","last_seen":"2026-03-05T01:18:35.550881Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-84ed8764.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"093c208df1f4ef71752719fea4706b68","sha1":"8c11e847960c509d8aa24406b81638cdafa464dc","sha256":"25249d798503f52a0d9e9232e5fcbc94faeb133e33b3ac6d604c5859ea85a2cd","sha512":"8d57bf6065fb25d53c77080e19490ae72db2560e5368ead29ee81a70f72c83407549987b485b8ac62cee6fa8c15caf7fda29181ec2c7c4e05b3c6c0313a86e55","ssdeep":"384:c6jCgoWU5g3eDBFc4xGiflLQiqbBPbzGB1ZcHjCmQUK:c6jzoWdYzc4xGElwxQ1ZcHjC2K","tlshash":"5e62c681f9068a3cf577a06150d80810726d7fde540e8ae1b5bdac8b6766efc7349b38","size":15662,"data":"","first_seen":"2026-02-27T16:35:10.055303Z","last_seen":"2026-03-05T01:18:35.549944Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7746993e8adb9277ba5afa2584910974","sha1":"8e7e6d562fd56f594b40b6657156d483d7426e40","sha256":"833dc15f120cad89d5c0680edae217dbad02010e42af351959607df4170074ee","sha512":"10ee66e22fa45386057f1385e179955ad4fd4d53363c0aebe68aa9ba0547bf409a286e53ab6e678e5d0c3485d6cabcdd359f359c5258160b50a0a5a5496d6e6d","ssdeep":"","tlshash":"39c08cc5a0c22e101646641010bf28e49024402674481b028c98d8482e220b08233e9c","size":140,"data":"","first_seen":"2023-04-13T07:32:13Z","last_seen":"2026-06-06T07:57:09.090773Z","times_seen":3506,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"442e563bffc022a7e215e0dc3d1b7db7","sha1":"5e09092480598b297f6911114c3ec43b865dfec9","sha256":"9d9986257ac4d017cc380a7590baa2f07e159337a32ebd7a0d51c7dcb6e67d81","sha512":"24f7cd1cf8c3ec2183aba2c6f060d3ea7478b99505c63921287f9d49a21e8f1f7b5e88b1298d41a2b011c1bbfbe92467ff110385c04c80556eda6f828f99865e","ssdeep":"","tlshash":"96c08cd4a0cb6d005642651012bf36e4903440277058ab038da4d8882e230b4a233e98","size":149,"data":"","first_seen":"2025-06-19T19:53:11.38372Z","last_seen":"2026-04-20T23:47:18.155449Z","times_seen":39,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"36f26a090abdcc337bfc430f7eba2abf","sha1":"bde4b3d8e5ebea671a9a85174cfb4058a4bf0adb","sha256":"217e71e9b0dbcd6bf49e06ed0c8570fc448a800192167db81cba4cbaefddce78","sha512":"a191f331612f086b236bcab8dc8340639cec8859afceb86edcaa7913e42165ff3d184a5a5f4bac7ea93f59aeea3c76e505c456f9f5da206347076658fc271a87","ssdeep":"","tlshash":"12c08cc8a0c72e101a12655015bf24e4a024402a70489b038c94d8482e230b09233ea8","size":141,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-06T01:45:51.963471Z","times_seen":1563,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7c73b3e70a89b16b24889d2b77711692","sha1":"c08c0db4d510a678b7ddff79bded6b7438391e83","sha256":"296a8d4b16cd700d45fefbf3c101b1522e79fce25822ccc34bfb5b7083776ebb","sha512":"16eabb6120e5070e072e676359a144974d58aa725940e45e4b4d342431dd1f696a46c813ad627275e7dcf713f779ddddeccc43de9befd21a98fa9c075fb7f77a","ssdeep":"","tlshash":"b5c08cc4b0c36e102682645010bf38e490244026744c1b038da4e8492e630f08233e9c","size":141,"data":"","first_seen":"2023-06-05T11:50:58Z","last_seen":"2026-06-01T17:57:24.53203Z","times_seen":214,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"958caa99aaf4edee2ec871b542fffb71","sha1":"69f2409fb7590b0635b6a8ce1e8ac7f2a7bd1c28","sha256":"08809525b7e3d7e99f4cb0a3c34d1cc2191548156a29344d1f5b1f2baf158180","sha512":"5896799c0c6921fb254d671985f0d8ffb112ab6cab936f4ab537ea3d3cbb9ad93c135d1c85db2be440c866c251eaeb38789c5a4379f5c15c8afacad43e3f10cd","ssdeep":"","tlshash":"d8c08cc5a0c33d10661a641118af35e4a0244036b0481b179ce4d8483e620b4a233ea8","size":147,"data":"","first_seen":"2025-03-13T05:08:31.314651Z","last_seen":"2026-04-20T23:47:18.150587Z","times_seen":34,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c0e1e6624bfaa63b9a9c9c4770c5c502","sha1":"74450e2e5ee2f34638d8032de5ded87462b01b24","sha256":"a5f570a7eef85bde480b1bb760fb552572994b01fac173a42772a4bb52f21619","sha512":"a402b866ecd74982ddb8f468eb4fefaf11368994f06cf26003e98e0ecb15f59b866a7ca9fcb38a56c1d8b25f7d34fbdda9701a94cb6d0922ceb91d64f53cad95","ssdeep":"","tlshash":"c2c08cc4a0c26d401a0265a025af35e4a0244026b0481b13bc98d84c2e220b08233eac","size":145,"data":"","first_seen":"2025-10-28T12:27:40.423233Z","last_seen":"2026-04-20T23:47:18.153324Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c464eee61a30b35747e8e9848e60be3e","sha1":"3b58c9c7de2dd7f0322fd7bb9947ad3a01ac8cce","sha256":"955a99d585122831f4cabbe60b7755379393349c40795ff761e7ce78b3e491d7","sha512":"d548dacba908d5bd228c19df9e45083444741e1151dc914e356f01fd7fcb666a7077df8a57af5bc72e249160aa32ce3e40c77f22dc01fb2af95a6c3d19be3e4f","ssdeep":"","tlshash":"d3e0abeb3139c16456f09f2b6cec4c1bf69b27334d8c050bf8b4a9051ebad64227c894","size":420,"data":"","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-06-01T14:24:52.351275Z","times_seen":375,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/info-76929dcc.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"1cd46f1788bebe8f3de8a5d515b67f77","sha1":"c18cbf881e10a5bdf8d48b7be58017b9e7cacade","sha256":"39b02000e49a1ee3cdd536be5685e1c9a4b877e2b31bd0f5558e6a042600d15b","sha512":"ffd38bc0473dad2cfea6541eb862dded5fdaf7b24bf3c74b6f3f8c964113d69500505b311a581a166ce4f9a9d71e3560727c936bac0a159377eb29ab83e9139b","ssdeep":"","tlshash":"5dc080470a1383f35374249971e05d1212d2597caf934dec00158e414ef4cc1552dd24","size":179,"data":"","first_seen":"2026-02-27T16:35:10.096282Z","last_seen":"2026-03-05T01:18:35.55797Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d89a34b10799ffb6da8b9efd64a18cec","sha1":"99d88e282f150a46db6d1b4cad22dece68ea0e62","sha256":"1b0ffb23d4ff8c468a4342a808678cb46569b538c84791483464b5b00f13442f","sha512":"07e1c4bf425b3cd18efe35929a479eb856318168d3e0b94f1ab7ff623006e1ffff4249cc864d984cfea9ead2ccfa2876af069368fc2ab420af122f86a573157e","ssdeep":"","tlshash":"0ec08cc8b0c22d001616641010af34e4903440a6b04c2b138ea4e8492e624b48237e98","size":145,"data":"","first_seen":"2025-07-27T10:32:18.381447Z","last_seen":"2026-04-20T23:47:18.148601Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0f40806f855fc503ec7fe0e2cdc6da5f","sha1":"ad59d99993690064ee6565eea713ee4c5260f572","sha256":"954bc1931a5584c910a5391a0e2c05ba7190f3c672433a85c162ac948a74a44f","sha512":"7ea9c1cffaf640bc7083f2306a134368aa54ae775230a1f1990c43817594d950ecbf94412ea7ab6262bb8add4715ab6fffe7579f85b0a1c07f6acc4f8207cd9e","ssdeep":"","tlshash":"1fc08cc4a0c2ad001a12649010af24e49034402770481b029c94e8492e220b08237e98","size":137,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-06T09:23:00.418161Z","times_seen":5562,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7e98f35f23795ecb1a944bbefa9e40a7","sha1":"9f6826623e1d677abe50f4755523c8986d229bc3","sha256":"2f34fa8f7eea8ee00070214da3db09639f6d9b89111c8ca090fcf04954be6ed3","sha512":"7cf3f08fbd52f6a4f645721a24b3d1cabfe28d13473087fb0a98eb47438edcfe9fec95d4b4ee73b2f4199e8f896e8f161d1a10175c400ee88e1d2d030dfd17da","ssdeep":"","tlshash":"8ec08cc4b0c26e002602691415af28e4a024402671481b038ce4d8582e220b08233e9c","size":138,"data":"","first_seen":"2023-05-05T08:00:34Z","last_seen":"2026-06-02T07:26:04.062319Z","times_seen":467,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/en-c2a3f14d.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a99cb1027398e5a4240e7f3a98782d9c","sha1":"4d5cbc2658cd669240dbc9eb6580e3ee9c9d6000","sha256":"0830ada0cc552fa9680a7c3c1add5362ae31572515b05ce6963d47f191102054","sha512":"cf6bb74e45141d181ca2d5e3d2353a8496b63bccab61aece13140e38da2e3b59ca9ad571e5f6349203c48de1373360186d0575dcdbc9643d743caee28d2c63bd","ssdeep":"768:3htZcEw/oyrLOtpBKl1hOfqxz5MJRdQjkrxfcDD6fb98LKbl5tZp9:mpo6LOtfc1hHIHDbeUp9","tlshash":"dd23f989bd1b949904f32366b8ce6e1164f10ac18269c41f4fedc8fd13dab5aa367734","size":48967,"data":"","first_seen":"2026-02-27T16:35:10.085051Z","last_seen":"2026-04-20T23:47:18.139529Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/charting_library/charting_library.min.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-06T02:42:02.406279Z","times_seen":996,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9975f7fc25dc7e3a72e1be778b5afcee","sha1":"2b9ddaf8614552c4702598e965bca5eeabbfd538","sha256":"52bb4262d38ac685c96b4dc15828d1008153411a340cf0dabc107c7f5f1b7fcc","sha512":"f6913b677f68083ad81dcb49d96da1c7147fb9c6ef4c2195b79f050cbb5aac13d9f1ad51ccaa8c363c5823acd8bdacaf246440792216389f834c0b1e050637bd","ssdeep":"","tlshash":"cfc08cc4f0c22e006603691114af38e4a024806b78482b028c94dc882f268b09237e98","size":150,"data":"","first_seen":"2025-10-28T12:27:40.43307Z","last_seen":"2026-04-20T23:47:18.14593Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e29cc4b739166fb0de3dd3960891cf94","sha1":"32bf92595a210346b3fa579ce87df4987f109d95","sha256":"d3b8857aaf83eedf7762ae5079cebc09d4924e13766d06fd68dbb746634f95e3","sha512":"854eba232753dfc9183d3029c72a8ec545156e6a966cbf69fbad7acd252632ee09b17f9666f3edfb4541f58d3d3bbfc9841f999c37cac48586997700b245e0af","ssdeep":"","tlshash":"7bc08cc4a0c26d102602651021bf38e490248027b0481b038c94d8482e630b08237ea8","size":140,"data":"","first_seen":"2023-06-05T11:50:58Z","last_seen":"2026-06-05T00:06:19.906709Z","times_seen":3202,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3b4f2d31c18a2ae443ea6226b4b6e40c","sha1":"363e21f5f66761e00145f0a36c1fa817530e242b","sha256":"f8ca79e2b654865ac35e7f604cdb614ce0049402d98a2b0293b176914615c564","sha512":"dc226cf10ea73ee2702540eeb3acc6f08fa1173ad5f1348f8ff7e1d694a757d65de1fb57d895eab6b5afe4f2c216ea380198343273fc536b4443aa7c0d3fd5e0","ssdeep":"","tlshash":"e3c08cc5a0c22d001a02656064af25e8a0244026b0481b12fc98e84c2e220b48233eac","size":147,"data":"","first_seen":"2025-10-28T12:27:40.43004Z","last_seen":"2026-04-20T23:47:18.164916Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a77ef8223be7b0b80b2563df18e8edbf","sha1":"fe554eb2680831c93f2046ebf28ba888f8e4e7f8","sha256":"be67139d5c557c5652745af1ecb14ec1160f519a4b04c7665d46b60f8690a7b7","sha512":"7d64bedc8b83de471abe4814e1aab1bd87ae290d2e12164cdbbea98e4609910fbf90dbd19179566ca02a610fa788054b49f841d3ce3ae0cd7a85d1d47a1b7ec6","ssdeep":"","tlshash":"92c08cc9a0c36e101602b82060af24e490344027714c1b028ce4dc4a3e630b08233ed8","size":148,"data":"","first_seen":"2024-08-29T17:49:52.025441Z","last_seen":"2026-04-20T23:47:18.156494Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ad53bdca95253da3ed0339a52f219d8e","sha1":"1acba9622b6c70c03ce56310becd1d72226538e4","sha256":"3fecdc9cf7339d52588891d5d7b0c4b4ebfd82fe813b141fd5b81fdc70694f81","sha512":"d2bf6f0a88bbc044c6aab45f1f8795b3aafcf709a0a2b294f27062c0c34e1f34ec3964286f776c55a40a412cdf01c2ace59fdf7981fd69c6d8a63a6791ff8d3e","ssdeep":"","tlshash":"61c08cc4a0c22d001a02645014bf24e4a024802770481b02dcd8d8483e220b08233e98","size":137,"data":"","first_seen":"2023-05-08T20:49:31Z","last_seen":"2026-06-05T10:33:32.174094Z","times_seen":960,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d80cab5976d7e5d474ae14097439ae4c","sha1":"10a125b09912e3bc7fae5e0a60378bfcd0e271c8","sha256":"800a47fb9ca1c2799ecd941172547ab55ae7c37754cfe304abe39609ac50fe9d","sha512":"91a929d92b0c5a210f08d8f64b5f8be0ffa48330c13dd9748add7e2dab8fe9eed4e1f6085e59bd42b378871e5d204294dd6912530c070fe1c4c41fa312b5ac4e","ssdeep":"","tlshash":"8bc08cc4a0c22d001602681014bf29e490248026718c2b46cc94e8883e220f09233e98","size":144,"data":"","first_seen":"2025-10-28T12:27:40.421867Z","last_seen":"2026-04-20T23:47:18.161034Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7018cdb488927d35e37a56c8d21456e1","sha1":"cd16b8860c80a68067985e8e08370db49b325556","sha256":"cb7bf681b57642079f5c97e6efdba49f565999b8524d8729e3e1a8a2044a2bb2","sha512":"9566644ab8e407f17b5d2eac4fa0c8aa88a7610f25b02bfe59b1891fdaf0274727c9194191927467f25924514a24a03776bcf142364bc411588389a4ebb7b567","ssdeep":"","tlshash":"55c08cc4a0c22e201606641110bf24e490288427704c1b028ce4ec482e230b88233e98","size":142,"data":"","first_seen":"2025-10-28T12:27:40.428331Z","last_seen":"2026-04-20T23:47:18.152548Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-d4ddd3e8.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f83526bd860bc803ebdfde35ef11a4ce","sha1":"08be2dd4fe2c7801c3f866861fd400eb317a2cc5","sha256":"663f843b1e440bae2a398d11e436c99be08b54d2705254cb3367df7b74273926","sha512":"d99936e62be842f1a54e6e2242bcc29563451bff8ca0277ab8c34f2f4c406e701fb88426e5e25f4c3a9fa5cf8cd5d0caf5b533f8787e28be37c7791888f3cefe","ssdeep":"1536:IkmmfncRluPwI50hqT77rQLyuS+hBYDzfh0L/99SI:bBncRluPOc77rQLyuS+hBYfE1","tlshash":"6ab32b8d750a0fff69fe0888b9ca145021791f8369cc8ce3b7aa6d5927facc45247b15","size":108168,"data":"","first_seen":"2026-02-27T16:35:10.104246Z","last_seen":"2026-03-05T01:18:35.598175Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-54d16624.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"e6428165529380fc041fa3cbefbcfade","sha1":"81bd1cb0293487a9feea5dc38ef1a82e0bb50d93","sha256":"f9278283e8a20292bba29c1a43e79f6f3436f753d0d28c35ce032af9024cf5df","sha512":"804de08513ceaf347166562250fd6149626b1035268510b617dd6378d6e449c7f40f25a536a15bec74c7a7903d664bfb623c5f5ebf2d2bb49dc27024936fdc58","ssdeep":"","tlshash":"0c011096bc58c53b3bb748b8465a0815350eaf49a3346ee64d9c252017aacd1870d70e","size":741,"data":"","first_seen":"2026-02-27T16:35:10.058652Z","last_seen":"2026-03-05T01:18:35.545277Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/currencyItem-d3c067a1.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"7d0ee38a66a4971b1cc933fc1bf7f33f","sha1":"30ba4f4666324224b1eec17aad3bb9861baa7d39","sha256":"446662278d0ddbd4c64de805fc45cb40e2c9441f18d9122af5bf833fef14642f","sha512":"be0198e380bb3a6baf1c8b62fa8fc1e46f1d427687c8382dfcba80e600b28c4da2107175ead4423b836c756239e5c7a0cff6e64c27d408e0d7f55a802ac8e9cc","ssdeep":"","tlshash":"e521dc9aa902c7b1dbbe8066c17d0414035d7bda701181c1ffed044a3b8aafcd728a31","size":1211,"data":"","first_seen":"2026-02-27T16:35:10.091567Z","last_seen":"2026-03-05T01:18:35.57454Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"03e674a487cc1b8383bf39c23f7d9fe1","sha1":"261e41d5a08709d00f7c403328b63c5f7956bd91","sha256":"5231c0272860655d0a1168f4fbaa6ca274bc131a813fce67b4afe1f57ce04e67","sha512":"73f000dcd2a6c9e4a0fe53cce347c638b1d217570f87557087671aecc8018a78f3ea9994b9c171c0bd4e407f8796905da5c12b3f502e6cc05b7cf420eeea74ed","ssdeep":"","tlshash":"92c08cc4a0d23d101602641020af34e4d024402a70482b42cdd8d8992e220f08233f98","size":141,"data":"","first_seen":"2023-05-25T23:05:04Z","last_seen":"2026-06-06T09:23:00.393877Z","times_seen":288,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"af74fcc9f114210481c7049f27caf054","sha1":"6c50f5189396cd0a08ba3ae1e364d34213b560f3","sha256":"0bd5f3cbb8b7eaa23853db88da93133041ebd5eae27acc13ec70c2b6b109898c","sha512":"76044b4c06b2203c28ac631f6fb3df83def81ed1d841ab6348f488e3c7c8e50c5ef75024b1434734e23acae2c55e94d197b70c65a0e3041905975b3daf41ab0c","ssdeep":"","tlshash":"2ac08cc5a0c26f205616641065ff24e4a0354027749c6b62dee4dc592ea34b88233edc","size":159,"data":"","first_seen":"2025-10-28T12:27:40.420894Z","last_seen":"2026-04-20T23:47:18.163542Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7c73b3e70a89b16b24889d2b77711692","sha1":"c08c0db4d510a678b7ddff79bded6b7438391e83","sha256":"296a8d4b16cd700d45fefbf3c101b1522e79fce25822ccc34bfb5b7083776ebb","sha512":"16eabb6120e5070e072e676359a144974d58aa725940e45e4b4d342431dd1f696a46c813ad627275e7dcf713f779ddddeccc43de9befd21a98fa9c075fb7f77a","ssdeep":"","tlshash":"b5c08cc4b0c36e102682645010bf38e490244026744c1b038da4e8492e630f08233e9c","size":141,"data":"","first_seen":"2023-06-05T11:50:58Z","last_seen":"2026-06-01T17:57:24.53203Z","times_seen":214,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a15c447f08875de3100ed8997d5994ea","sha1":"b77d1c8bbbbcc5d0ac532e1362d796508029192f","sha256":"edd33609ab9f781e02fcf2c8e5ecd9f1e9b7bfdcbb576f01e9b2e78747b47e47","sha512":"55050de7b026795f86b16a8f6a67428555e9d05c394d87abf47b1bde43968be03e16569d97d1f38f6d37a1cc8b9bb5349cabe354e3def7dcbd5187640e3ac7ce","ssdeep":"","tlshash":"b8c02bc8b0c33d002602645010bf39e490344027718c1b43ccd4ec883e230f09233edc","size":139,"data":"","first_seen":"2023-05-08T20:49:32Z","last_seen":"2026-06-02T07:26:04.066838Z","times_seen":792,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d8a0b36a3bb5359d82373fd74ab0a55b","sha1":"109fcd2e9501021577ad657d5701aa40e771b723","sha256":"26b23c11a596c1301030aaa5e72296226d0b2c601ff7b24694d413a401ac9826","sha512":"ebb5fb5d0b9ad70253bc33b31f5fab9fa0efb74a89eefd5b900d6b956970a52ef306b8e62a73b47775339624aef7daf7f4779743b84394f80591c0ea8182f9fe","ssdeep":"","tlshash":"d8c08cc4a0d22d001a02641060af34e49028442670481b028ca4d8482e620b48233e98","size":138,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-06-05T10:33:32.181892Z","times_seen":1321,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/vendor-41cad6c7.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"2e82feeb4086c6af6a22a0dcd606e681","sha1":"cac678f3c9517340895a67efb5faa40e2ec20632","sha256":"4142575970109144fc3f9092d6332369257588f6073adc78ef114b7f0d25209c","sha512":"39811da1fa8180674a86964c8fc3bac261856930e55022f65cb434be70a0d6bf5ad75304756953a00c2d4c6fcdf5b5e58a1c9a5d0ce931eade22954630e26d25","ssdeep":"24576:WBIeNg6mi8fTCPzh5wAmVjOYM9HdWQq3agx/:WBIeNg6milmVjJM9HdWQqKgx/","tlshash":"34153ac97692f06157ab20e240bb0006f3396e59740e8494f16dd8eb7d69d89e2b7f3c","size":929027,"data":"","first_seen":"2025-10-28T12:27:40.36684Z","last_seen":"2026-04-20T23:47:18.073402Z","times_seen":23,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2fb95d1628092b3b374b4141c55b99ff","sha1":"1b7529bb4bfe53f5588fae629c0a760203948494","sha256":"6e08c7f0321787a77ab4c7fd7397f867a81579624425b95715f7f3c3a6a2ca9d","sha512":"9c6c72ef9c0ab8dc54ee3ea6b0ce7a2f79eb998ef03ef5e836845decc99a008aa1873541fc888dcd3a302b1e227f8c01bf770099b3fe11b3d56a28fcfe3ab40a","ssdeep":"","tlshash":"1c11abfe191a74296303804e976b7801643250a9000a184277cc9a9dbb9ab7dd0cfb8d","size":1048,"data":"","first_seen":"2026-02-27T16:35:10.116507Z","last_seen":"2026-03-05T01:18:35.618462Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-0f899e09.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"2cb4e92b9887efe1c55e824ede5c19cf","sha1":"3de028c3870138ffaca8ee7ba73fa28255bb9c43","sha256":"182be9180798a240300672f0db4142e218046a50a2f83e6f61e9057813aad279","sha512":"8d66c6837bd89aceec9414756d4afbf160f3e44930538e3cdfe3abe384a886ba8f5bb08ffeb31d41baa845dc04ab220c5d3e5e1ca65a588fe805e2c8e16a87f1","ssdeep":"","tlshash":"f901dcf9fd0dcfbb5fa2460141d02600140a1feefa1819e698877d661be8890da9f72d","size":771,"data":"","first_seen":"2025-10-28T12:27:40.415775Z","last_seen":"2026-04-20T23:47:18.076554Z","times_seen":23,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b6bf19ef255471ad3aa80695dfbaf940","sha1":"14f0b41f72adbb97415404636b263396b8f76f04","sha256":"fcea84d2feeee753481d6d4064a812b0000c76d3886db46d63d41145c598008a","sha512":"63c56080cc934411107c1720c0d37089ce719175e495da009e7298f6e6abebadf7fc59208cd43f17eb8cbfb59800c907a666a42ccea37e16a15fc6f8caca288e","ssdeep":"","tlshash":"8ec08cd4b0c62d006603691011af35e49024406770482b029ca4dc882e234b0923be98","size":147,"data":"","first_seen":"2023-10-16T14:25:23Z","last_seen":"2026-04-20T23:47:18.15869Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-06-06T10:18:03.512924Z","times_seen":36242,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-06-06T10:06:52.395661Z","times_seen":38585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-c21ed74d.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"6af85dcd3fe5831eece2f524891ed558","sha1":"e17a83374f246c3795ad120fe1a897c9738435c1","sha256":"abc615309c8f2e74396a9750a01da59159f3743f9ae2b4170d503a380f2c2644","sha512":"1b2dc924ab6aa7b2a6592ac2ebae9398f22d3691f195c686b0d7a7cf91eef7c6f0f1612b4c5997f2ba917527e4a1e2e04a1bf6410691cda2c87920b014ea9e75","ssdeep":"","tlshash":"00f0c92f792750b26ba388fce127181263680f4a33a0c5b9e54a0b0087388ebd15e628","size":515,"data":"","first_seen":"2026-02-27T16:35:10.057092Z","last_seen":"2026-03-05T01:18:35.557071Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/#/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7746993e8adb9277ba5afa2584910974","sha1":"8e7e6d562fd56f594b40b6657156d483d7426e40","sha256":"833dc15f120cad89d5c0680edae217dbad02010e42af351959607df4170074ee","sha512":"10ee66e22fa45386057f1385e179955ad4fd4d53363c0aebe68aa9ba0547bf409a286e53ab6e678e5d0c3485d6cabcdd359f359c5258160b50a0a5a5496d6e6d","ssdeep":"","tlshash":"39c08cc5a0c22e101646641010bf28e49024402674481b028c98d8482e220b08233e9c","size":140,"data":"","first_seen":"2023-04-13T07:32:13Z","last_seen":"2026-06-06T07:57:09.090773Z","times_seen":3506,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/filters-659ad1a4.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"108e8a33acc9e8f6df2af0924b2958d4","sha1":"ae1441bc16610136b492302ffd5718ceb244da31","sha256":"6e09893fff5c8c16c6d90f7e5d7579ee52235e8468e4d6b1daca2c95ad2909f5","sha512":"b54a08ffea09e2b0b5c3989b20d493f1b948a030a1b3156129db091212e9fd2617db64bdf33b31e55ecbef7b0b2b960b0d4c280b6398bbb517c37d859143cb95","ssdeep":"","tlshash":"d05112edf8c7613397e95af94018827572cebe10686e4a4df54be0415a63888e0bfb74","size":3098,"data":"","first_seen":"2026-02-27T16:35:10.049284Z","last_seen":"2026-03-05T01:18:35.558873Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"somaliaz.com/assets/index-d4ddd3e8.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:30.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-d4ddd3e8.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-1a688\"\r\nexpires: Thu, 05 Mar 2026 13:01:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":108168,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65506), with no line terminators","md5":"f83526bd860bc803ebdfde35ef11a4ce","sha1":"08be2dd4fe2c7801c3f866861fd400eb317a2cc5","sha256":"663f843b1e440bae2a398d11e436c99be08b54d2705254cb3367df7b74273926","sha512":"d99936e62be842f1a54e6e2242bcc29563451bff8ca0277ab8c34f2f4c406e701fb88426e5e25f4c3a9fa5cf8cd5d0caf5b533f8787e28be37c7791888f3cefe","ssdeep":"1536:IkmmfncRluPwI50hqT77rQLyuS+hBYDzfh0L/99SI:bBncRluPOc77rQLyuS+hBYfE1","tlshash":"6ab32b8d750a0fff69fe0888b9ca145021791f8369cc8ce3b7aa6d5927facc45247b15","first_seen":"2026-02-27T16:35:10.104246Z","last_seen":"2026-03-05T01:18:35.598175Z","times_seen":5,"resource_available":true,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/currencyItem-d3c067a1.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/currencyItem-d3c067a1.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-4bb\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1211,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1210)","md5":"7d0ee38a66a4971b1cc933fc1bf7f33f","sha1":"30ba4f4666324224b1eec17aad3bb9861baa7d39","sha256":"446662278d0ddbd4c64de805fc45cb40e2c9441f18d9122af5bf833fef14642f","sha512":"be0198e380bb3a6baf1c8b62fa8fc1e46f1d427687c8382dfcba80e600b28c4da2107175ead4423b836c756239e5c7a0cff6e64c27d408e0d7f55a802ac8e9cc","ssdeep":"","tlshash":"e521dc9aa902c7b1dbbe8066c17d0414035d7bda701181c1ffed044a3b8aafcd728a31","first_seen":"2026-02-27T16:35:10.091567Z","last_seen":"2026-03-05T01:18:35.57454Z","times_seen":5,"resource_available":true,"data":null}},"time_used":481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":481,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/platform/dev/favicon.ico?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /platform/dev/favicon.ico?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 16958\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\netag: \"69a17141-423e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16958,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel","md5":"0d7feda020772da8686a371ad1f3a930","sha1":"d6785fb8f89870c73e0ab3dc43c2a056cc5897f0","sha256":"4c68f3c98f9da1e9a39d71ce9de69a49f005dcf7de136847a8989b3cb88795a9","sha512":"42e3d1d2261c4912d552055f2807662ab44edfee12455f7de77cc0874f0b6ce0a54991410557819744eb2b392f6fd076fc31794fe9e5ef23acf08259bbaf67a5","ssdeep":"192:rB1xrHL5wvhIX+wpqAKUuOP/cL+VgldTTTplPZfgxQEDzB1D0RG:TxrrQSXVKUuC6Ag7TJBZfgxQozB1DL","tlshash":"f0723676b5bfcfaec5ad12b080395eb44bc9de604fc513bfe201a16c86747688c61276","first_seen":"2025-10-28T12:27:40.367549Z","last_seen":"2026-05-26T07:58:52.930531Z","times_seen":26,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/BLZ.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/BLZ.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 2485\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF1977433532624DE2\r\nAccept-Ranges: bytes\r\nETag: \"24306658F770FE804CB1B7AC219C3AAB\"\r\nLast-Modified: Fri, 14 Feb 2025 18:42:16 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 15426557338457003833\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: JDBmWPdw/oBMsbesIZw6qw==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2485,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"24306658f770fe804cb1b7ac219c3aab","sha1":"fd9b3a256b30eeac0af55b49ea13c4e356d287a1","sha256":"d1c5af9b6afacd9c8de3a714cf4928677817228f876b0383108d7b6f304060b4","sha512":"85829aae5780855701734d4ebe60bc325156111b9200167c7b4390c2f4dd62bac3106289651d203d5ec69bbd8508f1d4b0a2cf11ad57e9ece2d2b43f2e34f53d","ssdeep":"","tlshash":"ac515aeffe3e3670c84e96e460fd761c2f196f10d6f6020706e2d526b5527c0124462a","first_seen":"2025-03-13T05:08:31.293261Z","last_seen":"2026-04-20T23:47:18.127267Z","times_seen":24,"resource_available":false,"data":null}},"time_used":2930,"timings":{"blocked":1338,"dns":258,"connect":259,"send":0,"wait":249,"receive":0,"ssl":489},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.891Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/type/defi_activity_type","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/type/defi_activity_type","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/common/type/defi_activity_type HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":635,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7a423e3451e474878191a0a7f1d323b9","sha1":"13312f533f380295131f6a1540f425d0c98a16ba","sha256":"49c938e0bb3a834cab9319575489cf6c1694cace3f1ceb9671570024328e2a35","sha512":"0522e47fc06c4329cee21e354b264c90ae4b0725941d75cf63af54bee4a307fbe91e7078a412bd9750f3856657159ffe5efff139a652ec0443368f7c146bfdbf","ssdeep":"","tlshash":"5af028143d3dcebf098f65e745ec7818399c152794a0fca058ab0f3c5ae4171088921c","first_seen":"2025-04-07T11:28:26.961944Z","last_seen":"2026-06-04T04:33:14.419392Z","times_seen":666,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/fonts/Arial.ttf","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:31.648Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/fonts/Arial.ttf HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://somaliaz.com/assets/index-38676ad4.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:31 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1047012\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\netag: \"69a17141-ff9e4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1047012,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 25 tables, 1st \"DSIG\", 58 names, Unicode, � 2017 The Monotype Corporation. All Rights Reserved. ","md5":"ffe66dbfc4b07f36ef38dd621ad2c7cc","sha1":"e032b102cfc37c3226d17e1b462edea5fbf8fe1c","sha256":"c1216a01b3cc4e94df72577a6f618154058a1d8999ed58fa31ab7e54c7e4be4b","sha512":"3c7952b71c8117938c5284efca0e0b3e8c20d7b84c74a4890f76a72af3b26295786b0f7c33d9b6c980527b4c4c8dad628d1f5e7e5f202d11076367f082349bb3","ssdeep":"24576:NoQIQRjo/Y7wjgTmKJ4WxA7EAD4OBfDamXKE6AMra:NHIQJo/Y7wjgTm0PxAwJHE6hG","tlshash":"f125be0bf3929f0fe3902b38c9a5d761939b76189b2743b73d8c5858ecc85a45e487d2","first_seen":"2023-07-29T15:16:45Z","last_seen":"2026-06-06T02:42:02.429273Z","times_seen":1327,"resource_available":false,"data":null}},"time_used":787,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":479,"receive":308,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-c878e931.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-c878e931.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-188d\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6285,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (6282)","md5":"2dabd06273c5a7551389c7ab267bb359","sha1":"defb2ec87fa38036477289a84e0f5d26a5300c02","sha256":"49e053e4442400e454789d47cc9ef1945fc4ff7097caeb6f120ce34165df97bc","sha512":"1b2320fda9e7d433462f99d8574c3f4772788ec738b987d48219d8b4ea414c5c224e63f2706ba980c7231a5436a08ddc5020e31a8ff975bd2501ffff300f991a","ssdeep":"192:Q3itwf15YsrNCwypGiMwRFtDO5JqFahgT9wbEzZ+:Q3hf10pPRFtDmJqcCT9wbEU","tlshash":"8ed1b789f8028d799e7798808498001261583ff7a11848f7f6fead1b77b5df99741339","first_seen":"2026-02-27T16:35:10.094161Z","last_seen":"2026-03-05T01:18:35.550881Z","times_seen":5,"resource_available":true,"data":null}},"time_used":328,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":328,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/info-76929dcc.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/info-76929dcc.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 179\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-b3\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":179,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"1cd46f1788bebe8f3de8a5d515b67f77","sha1":"c18cbf881e10a5bdf8d48b7be58017b9e7cacade","sha256":"39b02000e49a1ee3cdd536be5685e1c9a4b877e2b31bd0f5558e6a042600d15b","sha512":"ffd38bc0473dad2cfea6541eb862dded5fdaf7b24bf3c74b6f3f8c964113d69500505b311a581a166ce4f9a9d71e3560727c936bac0a159377eb29ab83e9139b","ssdeep":"","tlshash":"5dc080470a1383f35374249971e05d1212d2597caf934dec00158e414ef4cc1552dd24","first_seen":"2026-02-27T16:35:10.096282Z","last_seen":"2026-03-05T01:18:35.55797Z","times_seen":5,"resource_available":true,"data":null}},"time_used":483,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":483,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/filters-659ad1a4.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/filters-659ad1a4.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-c1a\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3098,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3097)","md5":"108e8a33acc9e8f6df2af0924b2958d4","sha1":"ae1441bc16610136b492302ffd5718ceb244da31","sha256":"6e09893fff5c8c16c6d90f7e5d7579ee52235e8468e4d6b1daca2c95ad2909f5","sha512":"b54a08ffea09e2b0b5c3989b20d493f1b948a030a1b3156129db091212e9fd2617db64bdf33b31e55ecbef7b0b2b960b0d4c280b6398bbb517c37d859143cb95","ssdeep":"","tlshash":"d05112edf8c7613397e95af94018827572cebe10686e4a4df54be0415a63888e0bfb74","first_seen":"2026-02-27T16:35:10.049284Z","last_seen":"2026-03-05T01:18:35.558873Z","times_seen":5,"resource_available":true,"data":null}},"time_used":481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":481,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-c878e931.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-c878e931.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-188d\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6285,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (6282)","md5":"2dabd06273c5a7551389c7ab267bb359","sha1":"defb2ec87fa38036477289a84e0f5d26a5300c02","sha256":"49e053e4442400e454789d47cc9ef1945fc4ff7097caeb6f120ce34165df97bc","sha512":"1b2320fda9e7d433462f99d8574c3f4772788ec738b987d48219d8b4ea414c5c224e63f2706ba980c7231a5436a08ddc5020e31a8ff975bd2501ffff300f991a","ssdeep":"192:Q3itwf15YsrNCwypGiMwRFtDO5JqFahgT9wbEzZ+:Q3hf10pPRFtDmJqcCT9wbEU","tlshash":"8ed1b789f8028d799e7798808498001261583ff7a11848f7f6fead1b77b5df99741339","first_seen":"2026-02-27T16:35:10.094161Z","last_seen":"2026-03-05T01:18:35.550881Z","times_seen":5,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-c21ed74d.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.789Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-c21ed74d.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 515\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-203\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":515,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (514)","md5":"6af85dcd3fe5831eece2f524891ed558","sha1":"e17a83374f246c3795ad120fe1a897c9738435c1","sha256":"abc615309c8f2e74396a9750a01da59159f3743f9ae2b4170d503a380f2c2644","sha512":"1b2dc924ab6aa7b2a6592ac2ebae9398f22d3691f195c686b0d7a7cf91eef7c6f0f1612b4c5997f2ba917527e4a1e2e04a1bf6410691cda2c87920b014ea9e75","ssdeep":"","tlshash":"00f0c92f792750b26ba388fce127181263680f4a33a0c5b9e54a0b0087388ebd15e628","first_seen":"2026-02-27T16:35:10.057092Z","last_seen":"2026-03-05T01:18:35.557071Z","times_seen":5,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/menu-3.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.755Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/menu-3.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-d94\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3476,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"251d58408e75b0a0515e0f979f2ad852","sha1":"ba49cfd8376474214d6dc740f4122a2b488ac8ab","sha256":"ede012148cb6b1335edc1e49b4f940320e9ca33dc6a835e4829749097d49a886","sha512":"28ff1fd89b64d1767080219b0f5280c7bb5eb82c73adf7a7fa97b46a10794363fbe51b48e64b7e6e8b5aed7ade6b0bf79f08757e36c4c530bf5c09d7958b71b2","ssdeep":"","tlshash":"3a717b3ce64eb080be26a17222ee63f1dd02dc63ea01f782ca401e341c430409dbdda9","first_seen":"2026-02-27T16:35:10.062052Z","last_seen":"2026-04-20T23:47:18.144246Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/svg/dark/jiantou.svg?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/svg/dark/jiantou.svg?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 250\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\netag: \"69a17141-fa\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":250,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b5e4e54a5487158893ef8fca262aad6f","sha1":"879f44734b22643e6ba791a178c8d11a0fe76b5a","sha256":"1bd4c74e3b54ca46732ddc67b3e4ffaa129f1c4f3dae7b65136a09eda48e2f8f","sha512":"26f9eb0d272fd8df273886adc832d11f5c13e3a168aed3aedacfb97accaf4753dd9e09ef78d2de438e1d6333dd2212aca5330eed91787e26af52667d24b6a4d6","ssdeep":"","tlshash":"48d095ed915d304cf4569660dfe4154555adf107c2a408f4fff0493b927449158545a4","first_seen":"2024-12-02T08:41:53.544239Z","last_seen":"2026-05-11T12:44:38.634726Z","times_seen":32,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-e2df3fc8.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-e2df3fc8.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-2866\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10342,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10341)","md5":"fa3a94d7bf9c1c13a990ba7d8fca2b16","sha1":"c26726e308cf8c73fa1a653249db7b424eb8fab6","sha256":"e2df3fc8833ed6ab97a02807589d0ef701de489c98774b1348d2ac52520b0ccd","sha512":"7b9c3db63cc895a4019e80394df20653551c1c2921f9e0071fddc0dd7e40d5afab28115122e50c5db680dd900a8ec95f9e062ddd01a1d8b7136c207520f3cb19","ssdeep":"96:5A2GOG7myu2OezOETjHa5OYBO08eMvqkigNU9u62rW0/oYgl2s8xPS5D8tTW84ue:5ALyTePfHgelTs7f+Ls5nyG","tlshash":"d222672db3592638ac37d08bbf5c4a8ce115be11ea83dde1e65786630ccb6d71a2014d","first_seen":"2025-10-28T12:27:40.347878Z","last_seen":"2026-04-20T23:47:18.12276Z","times_seen":21,"resource_available":false,"data":null}},"time_used":328,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":328,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/ETH.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.784Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/ETH.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 1100\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EE18A10832365CDDD8\r\nAccept-Ranges: bytes\r\nETag: \"8658D5935AB59EE39D15C39226279D46\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:20 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 533354087542411518\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: hljVk1q1nuOdFcOSJiedRg==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1100,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"8658d5935ab59ee39d15c39226279d46","sha1":"27463866eb9fa6fe4b6d2bd2cd3d6fd88392cb43","sha256":"595a7c97f329934d40fa297958ccbb31d3cd101c2965b02a32a7c96fd49c9e11","sha512":"0179fd67c6baa7d46fba32986a8f6fe1586f2d9d3c57161bc33ecae609d6e608e8d9bfcdad0459bf41ba087843955a45ce5daca8ea223cb33138de6b4c8b13db","ssdeep":"","tlshash":"f211b6b64261eec7905c8a22da820b38ed2d9718f01c3f06ef73efb39225b045105d0a","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-06-05T15:12:51.685209Z","times_seen":1643,"resource_available":false,"data":null}},"time_used":2366,"timings":{"blocked":1054,"dns":278,"connect":259,"send":0,"wait":257,"receive":0,"ssl":508},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/XRP.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.787Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/XRP.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 953\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EE11EA963036020732\r\nAccept-Ranges: bytes\r\nETag: \"92F9D15BE55070C0F267E7B9609211DA\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:19 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12504633752802818255\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: kvnRW+VQcMDyZ+e5YJIR2g==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"92f9d15be55070c0f267e7b9609211da","sha1":"d25e8395244487e169b16cb9508e434ea1ea61dd","sha256":"0e7d0965ce52308846834de79ad8305ea31542444a1ba54888843fc0214418f4","sha512":"d39d1087b689cf8f8d543a282dfc802e0e996ddbdb0553b7376958b0be63dd8f6230451cc3cd3df7d63748ab2165e8e82433c35d4131a7a2c137445ecfeee95b","ssdeep":"","tlshash":"e91188a14b659e01632bcd7fcb2a0142b20b22efb465d716a88f533d0795d871059f85","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-05T15:12:51.676417Z","times_seen":1508,"resource_available":false,"data":null}},"time_used":2423,"timings":{"blocked":1079,"dns":277,"connect":269,"send":0,"wait":263,"receive":0,"ssl":531},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/USDC.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.812Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/USDC.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 1390\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF95E04A3130F12D8D\r\nAccept-Ranges: bytes\r\nETag: \"4A0E5E239B274E9EC4A17AC738AB46BB\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:19 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3832428648710468520\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Sg5eI5snTp7EoXrHOKtGuw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1390,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"4a0e5e239b274e9ec4a17ac738ab46bb","sha1":"ba18ca71aeb54d5d2b3f197fdf2bb9b7ecbacab7","sha256":"1cb080bee7d509d8ec9e8eebbd89fd838c36fab0438dedf3d178158fff34eabe","sha512":"0b88ef9224480bde1211e74ee3c32dcb9f36b7dd185c1b22871aa8dee3581c04944964c867bc7c83fcc81337a2a78f0d86d40b2501fcb7e85e17a2b07cd2b826","ssdeep":"","tlshash":"f4210be3c3569f41f71e9ee6c1d809e61c24b441b02127529f05ba15dd2cbc4a6e2fc7","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-05-27T00:49:19.322541Z","times_seen":290,"resource_available":false,"data":null}},"time_used":1803,"timings":{"blocked":1548,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-2-checked.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-2-checked.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-bf1\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3057,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"803deea5dfc7d91906e25f6b8442419f","sha1":"7a07fe3fcf84cd106787874daf3f167cc1235dce","sha256":"36ef578b88c731e1f8b07f77297cda188b44438ea3b6dcbd52d592c1af614e38","sha512":"8d03d24fd9574dedefd6d0302ecf57a1e33bfb85996b03d3f6c584d76bc2f1bd3bbaaaef114d615038f17e6f865b41d5fdf331243ce10aa588bdb1b74948d4ee","ssdeep":"","tlshash":"a8512b6eb5812d101a9da5893efe87875e1e2869d9c4d456bec9cd2332304fdce0c387","first_seen":"2025-10-28T12:27:40.32733Z","last_seen":"2026-04-20T23:47:18.128443Z","times_seen":22,"resource_available":false,"data":null}},"time_used":606,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":606,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-5.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.830Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-5.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-45b\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1115,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"67d3e42a7064c0e76efad8979e9ea2ab","sha1":"68cda10305f68938a2f1507a5187013045d16fad","sha256":"8a079a0b08dfb77b3946da95d66f1b50f0fedce340034890a7a9cb64562706a1","sha512":"72bdb51151b7773279115c28ffd6bdab9796d100500c2b744c277f9200b037a3331c4af417fa2bb8cf4eac3bcbc2275fde677afd4d41bae9321c225f4fed5920","ssdeep":"","tlshash":"d021b6df0fb919bc988a198a07b820ed83e64f7501d5b2f80996f4732232706095ec93","first_seen":"2025-10-28T12:27:40.414909Z","last_seen":"2026-04-20T23:47:18.114497Z","times_seen":22,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/notice/list?key=POP_UPS_NOTICE\u0026modelKey=","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/notice/list?key=POP_UPS_NOTICE\u0026modelKey= HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/notice/list?key=POP_UPS_NOTICE\u0026modelKey=","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.160Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/notice/list?key=POP_UPS_NOTICE\u0026modelKey= HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1b9a855123642275de337222b9462a9c","sha1":"794ad693eff3361a9c3bdccdd9911f04dbc96571","sha256":"5271e09c2aaba2805fc2f178cddc490385076f5e0eba9f6f30b80fa4395bb747","sha512":"d828b8070062280681bd994823de7c2e0fdda2b079d5da88a0fe8a9466da3555503873f52292e7d830ad47b762067f3faa146c14eb6d79544c70c1d653013056","ssdeep":"","tlshash":"459002551c189642a88300a9d506524400243160263492584c59512581881622440858","first_seen":"2023-05-12T20:49:51Z","last_seen":"2026-06-06T04:00:03.346435Z","times_seen":257,"resource_available":false,"data":null}},"time_used":282,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/TRX.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/TRX.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 1315\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF6C12213531B015E1\r\nAccept-Ranges: bytes\r\nETag: \"79CBCBDFCC32E9ED14054FB9F306D76B\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:19 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 11892337470558382493\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ecvL38wy6e0UBU+58wbXaw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1315,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"79cbcbdfcc32e9ed14054fb9f306d76b","sha1":"d0fe46ecc0664340d7027500d23cb6ee7b8de4f6","sha256":"ac3824adc2a37e25d5e63fe30c4de623c0985730450f3e12b58bcc58677d107d","sha512":"98eb00b634f4214e5d546aff3c51c6e889a337ed9e9a59d96b2dc189bb822352d01d2d53e02db22255c2c3f44836ce30c52c8e22199eca10c8e431d17560cedd","ssdeep":"","tlshash":"1f21f8b87b5d652cc209c890e8364aa77098f9ae0512041e3830ec3dfee098be2567c3","first_seen":"2023-05-04T03:36:11Z","last_seen":"2026-06-05T15:12:51.527899Z","times_seen":1031,"resource_available":false,"data":null}},"time_used":1589,"timings":{"blocked":1327,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/LEVER.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/LEVER.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 690\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF4F5FBB38305CC926\r\nAccept-Ranges: bytes\r\nETag: \"4DCAE47B7D96F2FBB2D801DFD47B5C1E\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:20 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13809590032253971790\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Tcrke32W8vuy2AHf1HtcHg==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":690,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"4dcae47b7d96f2fbb2d801dfd47b5c1e","sha1":"29a20b523a063b8043f3b6e760496c8328c26e93","sha256":"695bf855827cc465acc27a004c5066ef17468d51d3afac72e8b6fd0a80b594cb","sha512":"79aa8c8acbaf7aa42b5cfb8e7ce99b7d21903e9c90fadcdd847ec80e16f9531a5c44446f5febc937053d13ba4a0dc6ada737ec0b229d8ece9346f6009c28c5cf","ssdeep":"","tlshash":"960144adc154a8b4f10e55216c9045c15931fee82888451e4564e5183396a10f6cf2df","first_seen":"2024-11-06T16:41:01.114719Z","last_seen":"2026-05-26T07:58:52.852398Z","times_seen":83,"resource_available":false,"data":null}},"time_used":1800,"timings":{"blocked":1545,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/fonts/DINOT-Medium.otf","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/fonts/DINOT-Medium.otf HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://somaliaz.com/assets/index-38676ad4.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 73096\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\netag: \"69a17141-11d88\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":73096,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"ab876400560626fbe045633dc44f0748","sha1":"85bbfb1729e86f40ddc9af7197b5f54ed6136226","sha256":"5888b24f6b65ff7c989b4a258dbeb5d997320d61417371210da0258be21d854d","sha512":"82e96ade51b0570c1f691ba45d1a3c0802015dad7598954675c4abe2fa8a9fc705adbe6eb5e677aa5cc03b6704e594cfe99279c678855ebbbcbade6d5028dbd6","ssdeep":"1536:TlK/cP2D2oV7otQjBG1+acfZZHHDEdom1hvd5JItkB7k3Z:TKQQtG1yZSdomrvpIqcZ","tlshash":"0b636f031d4fb9548de4513a52de4ea34bb39ecc1ca493c30ae12d938fece6657152ae","first_seen":"2023-08-16T00:37:20Z","last_seen":"2026-06-06T02:42:02.392812Z","times_seen":959,"resource_available":false,"data":null}},"time_used":591,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":588,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T01:01:29.492Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:30 GMT\r\ncontent-type: text/html\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-15f9\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5625,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1289), with CRLF, LF line terminators","md5":"c6f28eac575b1a650bd0c4a1d02fc080","sha1":"31aac9483694caf075f94dcf29e63d683375ff38","sha256":"2f374918ff64c24d8e9e69c8fae8b2f3c029b17645c21d1ffa178bd0ce6a54ee","sha512":"05642ed6935f50b61b64b5034a1c2376725f860d3f763dc415f7710cc6f70ed4149ba60ac0f2ac09fde10dc9202b6d00a13aa9bd5df709294c6fcc429a80d023","ssdeep":"96:+r8w5rf53uSPEts9O4t/4lr6TCZydHRH/gn2mUsGKAiowGwuB1niHtiHiH/2:+19PEkiZCxfO2nfD3bwuB1niNiCf2","tlshash":"66c140bb98a09c1a3371452aeed7b01ccf61519394194850b0cd40ee8fe6fe5c8d773a","first_seen":"2026-02-27T16:35:10.077315Z","last_seen":"2026-03-05T01:18:35.561344Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1488,"timings":{"blocked":611,"dns":70,"connect":267,"send":0,"wait":266,"receive":0,"ssl":271},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/charting_library/charting_library.min.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:30.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17140-2a6b\"\r\nexpires: Thu, 05 Mar 2026 13:01:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-06T02:42:02.406279Z","times_seen":996,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getAllSetting","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":1615,"timings":{"blocked":667,"dns":71,"connect":302,"send":0,"wait":280,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-bc011be9.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-bc011be9.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: text/css\r\ncontent-length: 397\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-18d\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":397,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (396)","md5":"5353ff252ee4a5e7a3d0176de6a6c712","sha1":"c83942b5dfdb4aa8be53f26b39e53b0b257595e0","sha256":"bc011be90fd6cd33a399912151a5f69ba0d8e394563c71c4c1bea7a4ec032516","sha512":"9a17506817918ef0c9a5d0caebaed8f603641dc1015a726bdf247645a7e0a988b543756d7254abafa18dd4cd9d27c9a198300632156faf59f05c1e27f0a5e30a","ssdeep":"","tlshash":"5ae092c890d6927fb62b607d267c931ad425ac88d8007bb8e67fabb146c7ac53172215","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-06-06T02:42:02.411177Z","times_seen":706,"resource_available":false,"data":null}},"time_used":349,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":341,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/svg/dark/mengbanzu13.svg?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.739Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/svg/dark/mengbanzu13.svg?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-985\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2437,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"faa5167d316697add6992de86529dfe5","sha1":"fba4dc732fa014614b469fae036a00d3f6a588e3","sha256":"6587533bd5309ec1f3526c1f021a38f1352d7fd81beab0a71bd46fb6b8a2332e","sha512":"2b5141b0ef70a2aa24d36b5af56dc982189a49080bbf476a24e658a6f7f05b940f7ff3db60f64b0afc59b3c468cb659c641e8219cedb34db4d6943cc245238be","ssdeep":"","tlshash":"04415dbcc7dc5d8c14c6972a66fcc95bad0fb0d3d00287cc95401c798e459816e85a3c","first_seen":"2025-10-28T12:27:40.349667Z","last_seen":"2026-05-27T00:49:19.329532Z","times_seen":32,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/message.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.762Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/message.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-93f\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2367,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 54 x 54, 8-bit/color RGBA, non-interlaced","md5":"0802cd91bdf5e5a87af9f36d00f0b507","sha1":"60b25554f93026b83f317e375484c0711abf41ec","sha256":"f960ddcda23c3361eed36a35d406bd73527691e3f9783193764cd3771e4ee69e","sha512":"3cbd18badb475588de8d3649661b4fc7668922cf56329a5999be51095f35922638ee9c852434c61ac270075dc865335a6ae9721a4295c80800b66a1033d52fa6","ssdeep":"","tlshash":"66413b225ee9bf2baf50cd72c110b240974ed65dd1d88a7a5637f7282bc0d184ab592c","first_seen":"2026-02-27T16:35:10.04165Z","last_seen":"2026-04-20T23:47:18.106622Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/notice/list?key=ROLL_NOTICE","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/notice/list?key=ROLL_NOTICE HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":497,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"d126f40e98a55de24a07589709dbb674","sha1":"cd48722b44ee1f3be518b804074f9e91781f0bb5","sha256":"d847049e16c3ec326fe9dbc318072ef07314b366d958d1102e86b22081f0708b","sha512":"e4c7a32760f56f16f64887a0dd178b7503c965442df0aba97c2ad9c26eeadbc77977418fcd2bbf9ff446e43a8a5af4978d17b73c6ebb8a4a8c3bdb925d566d6d","ssdeep":"","tlshash":"d1f0270e153cde76580645cb25dcbccc916f1683d660cd34865bcf1d42f56b61b1ba09","first_seen":"2025-10-15T01:19:25.111151Z","last_seen":"2026-04-20T23:47:18.124949Z","times_seen":25,"resource_available":false,"data":null}},"time_used":282,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getCustomerService","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.744Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/common/getCustomerService HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":247,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"9ed1771bd783ff0da3df0c6f5cd09bbe","sha1":"2cd3ad01df8785547df88c1ed5a00e97939b13d1","sha256":"06a9ccf34f975c828f451cb45846e387011ea40a651983a8da21875c398ae39c","sha512":"762ad9a4e5e4668f8e9bbe70d278febe5d6ed4f388579958fd453fc8097a70993a591a456f9117c169fd6010a9d1ec8d24a286fcf1e5506beaabf88bfe5870ee","ssdeep":"","tlshash":"afd095d21e5c45625d6111e0c41f774cf2993031b85ed68468b455d4c09f0d519050c0","first_seen":"2025-10-28T12:27:40.342475Z","last_seen":"2026-04-20T23:47:18.085757Z","times_seen":22,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/vendor-4b39a398.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:30.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/vendor-4b39a398.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:30 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-16c35\"\r\nexpires: Thu, 05 Mar 2026 13:01:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":93237,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"2491919d901ad15e82d6c1245fb28968","sha1":"166501022e953ff7bf709e96198c76d4578676de","sha256":"4b39a398237e9aaae03327bd9216047be19b6587a469195ed9160b96c9b5a819","sha512":"c538de42b89cda2c728d4b43d017565e1ac244b948c4dedf116cff1b0d085f16948fbb5d42b798ab020ac7dc3fd8ac2e56ecd365b07edac5e1d25d08edcb73b9","ssdeep":"1536:BtIyNBi3MFYaQj7FCwsBlDOFIxuVox8D/Bb:BnNIClDsIxuVS8tb","tlshash":"bb93d4a5a9c461fc6f2ae2659b8765e8f13cf671cc01daa0f105511d0fcbbf60613a3a","first_seen":"2025-06-03T16:32:00.309427Z","last_seen":"2026-06-04T04:33:14.445183Z","times_seen":199,"resource_available":false,"data":null}},"time_used":798,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":798,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-da543910.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-da543910.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: text/css\r\ncontent-length: 104\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-68\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":104,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"dc92c35dc5fc5101b7a25f7fd8bff985","sha1":"8b1fb0cc83d638c6529146d75301f465b0c374ff","sha256":"da5439103f3c05ed1475a48c5ff54f0c75528d41835804ddc03c15e3797417de","sha512":"30d6e81958c3e89faa1e709227d6b5ec39ef3b4aac601c8f034cfbfb8ce8cddcfe0638b46386419695cbaf537aa75e51970fbfbdf49158f508edcc107c163b7a","ssdeep":"","tlshash":"d1b01260e4f4206d9473c0cdafe14f0c150861013217eccd79d25231897f42224b9307","first_seen":"2025-10-28T12:27:40.360166Z","last_seen":"2026-04-20T23:47:18.074935Z","times_seen":23,"resource_available":false,"data":null}},"time_used":345,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":337,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-54d16624.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.790Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-54d16624.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 741\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-2e5\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":741,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (740)","md5":"e6428165529380fc041fa3cbefbcfade","sha1":"81bd1cb0293487a9feea5dc38ef1a82e0bb50d93","sha256":"f9278283e8a20292bba29c1a43e79f6f3436f753d0d28c35ce032af9024cf5df","sha512":"804de08513ceaf347166562250fd6149626b1035268510b617dd6378d6e449c7f40f25a536a15bec74c7a7903d664bfb623c5f5ebf2d2bb49dc27024936fdc58","ssdeep":"","tlshash":"0c011096bc58c53b3bb748b8465a0815350eaf49a3346ee64d9c252017aacd1870d70e","first_seen":"2026-02-27T16:35:10.058652Z","last_seen":"2026-03-05T01:18:35.545277Z","times_seen":5,"resource_available":true,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/info-76929dcc.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/info-76929dcc.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 179\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-b3\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":179,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"1cd46f1788bebe8f3de8a5d515b67f77","sha1":"c18cbf881e10a5bdf8d48b7be58017b9e7cacade","sha256":"39b02000e49a1ee3cdd536be5685e1c9a4b877e2b31bd0f5558e6a042600d15b","sha512":"ffd38bc0473dad2cfea6541eb862dded5fdaf7b24bf3c74b6f3f8c964113d69500505b311a581a166ce4f9a9d71e3560727c936bac0a159377eb29ab83e9139b","ssdeep":"","tlshash":"5dc080470a1383f35374249971e05d1212d2597caf934dec00158e414ef4cc1552dd24","first_seen":"2026-02-27T16:35:10.096282Z","last_seen":"2026-03-05T01:18:35.55797Z","times_seen":5,"resource_available":true,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getCoinList","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20039,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"0463d32f2d182c0d8c6e6dfecad29d09","sha1":"4e0f770e0b4e0476194b3cbc36fd5b939b2cb452","sha256":"dabc70ba5e9c97bbf72c81ce152dfb537bbce75246a3cbe0e74e2ed49b4e4919","sha512":"4512d0dd80511f889f958bd470f1fe93204cbe28e9acfceee12b3946f384757cd4c67157c5fa7835409eb42241e9b8c695e9699335f88498d9304ea9eaed1da2","ssdeep":"192:VXMxNX+rXTLXZqWXVVXqCSXEv0XtdXOLX1QSaAguAwXWwYzK7VzvUYfFCK+njPS6:mFUsao","tlshash":"8092fe51162c99adc97ed1d12ebf7a06108c327fecc5cd1ac6c94d8c8eddab51a0af02","first_seen":"2026-03-05T01:02:00.115161Z","last_seen":"2026-03-05T01:02:00.115161Z","times_seen":1,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-4.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.828Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-4.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-437\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1079,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"991c6b7640bce8ef777bf8899a138bc6","sha1":"a757af8b9f68b1d24a491c5c61d8bbf0a8adbde4","sha256":"76902f4977cd2839f0d286bf3e8a528733974af622b0ea91886914e060ef4113","sha512":"a2f08d469dbb324637930d733f79dcdbb76e5143b134fbb81f58524515ef783f3816cdf30cdcdf081a3398c6a4966388c48f22ab816d1dbb37a2fffae92449b7","ssdeep":"","tlshash":"0d11b6260141fba18f31eb83a17f40b5eb884a5921a16de16d1d9cbac19251c2791217","first_seen":"2025-10-28T12:27:40.3633Z","last_seen":"2026-04-20T23:47:18.109709Z","times_seen":22,"resource_available":false,"data":null}},"time_used":602,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":602,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1062,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"bb3bd541f349fc2082f8af0cbf5596ba","sha1":"10928176eaecefb8c9ed1696942956451261d3ae","sha256":"70082f713e4e40d76e60d367c1c9214bc40617847f6cdeea9ffd62edde74526e","sha512":"2637b640c9fb9bd0c8b070351b66c1dc6763885cd1c1901e92e29a7d40fefeb4dab2e090e540f7d571468fff7c27ff28fb4dc75b00b47e2f7bca6ee5c0014baf","ssdeep":"","tlshash":"fd117b4e11bc8ea9090948c754cdbdcd929e2687d660cd749a6bcf2c85f65ff0f1b604","first_seen":"2026-03-05T01:02:00.11882Z","last_seen":"2026-04-20T23:47:18.084775Z","times_seen":4,"resource_available":false,"data":null}},"time_used":284,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":284,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getCustomerService","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/common/getCustomerService HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/vendor-41cad6c7.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/vendor-41cad6c7.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-e2d03\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":929027,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"2e82feeb4086c6af6a22a0dcd606e681","sha1":"cac678f3c9517340895a67efb5faa40e2ec20632","sha256":"4142575970109144fc3f9092d6332369257588f6073adc78ef114b7f0d25209c","sha512":"39811da1fa8180674a86964c8fc3bac261856930e55022f65cb434be70a0d6bf5ad75304756953a00c2d4c6fcdf5b5e58a1c9a5d0ce931eade22954630e26d25","ssdeep":"24576:WBIeNg6mi8fTCPzh5wAmVjOYM9HdWQq3agx/:WBIeNg6milmVjJM9HdWQqKgx/","tlshash":"34153ac97692f06157ab20e240bb0006f3396e59740e8494f16dd8eb7d69d89e2b7f3c","first_seen":"2025-10-28T12:27:40.36684Z","last_seen":"2026-04-20T23:47:18.073402Z","times_seen":23,"resource_available":true,"data":null}},"time_used":383,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":383,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/user.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/user.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-e04\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3588,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 54 x 54, 8-bit/color RGBA, non-interlaced","md5":"c7631c049259fd7bbb1a881787a0fc88","sha1":"960b4381818d72b055d445161944584cd1c5ef5c","sha256":"164a4d4aa6fa994e9fd8fb5aed6857b6c65f3249ef0ecc0c0c2cd3688a897b91","sha512":"ef53b7fa1478e99e3c2d6bae3cf05157763d18ac12986f6cf0443c4a05fe96c62bb11ab5ce996b420b939dc28e04b0b81ba61dc287778ee0a1bf88e16a29504b","ssdeep":"","tlshash":"d4717de79381ed5ad898ee29517298824dfa626dde5230422c5c80f78a18dedb009b67","first_seen":"2025-10-28T12:27:40.350459Z","last_seen":"2026-04-20T23:47:18.130506Z","times_seen":22,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/svg/dark/zu29.svg?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/svg/dark/zu29.svg?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-64a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1610,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dee7d907e8337a7056bcc4fe131bc521","sha1":"6d8e8628c73c14e3827ebd276745db40ad2b0885","sha256":"b9947b15312f76170ae4fe6a86f139731695325e7b607ab8c30d29d62dc94138","sha512":"409c20d9ae7b78740e979537ff57eab75788e43c592bc6ce09bf6f7a41c6ccb2dbd7ed71898b02e3bcd26600276e866c7c9a021dc8b4039a0647727ab4c2641b","ssdeep":"","tlshash":"1731e83586459cf16087c3143fedd94aec9fd083b10e48cdbc813d31c658596ea86128","first_seen":"2025-10-28T12:27:40.33109Z","last_seen":"2026-05-27T00:49:19.325761Z","times_seen":32,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-3.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-3.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-9b3\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2483,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"030b802b9be3a6b89383ccced14c9dd5","sha1":"eeb22c3a225638b577fccec355528b31dafdaafc","sha256":"34abe87b5f39802ae5a15f66d36651feb2933effdddedccadd9c72a82241e976","sha512":"67c7c922bd40acfbb1e118a4466be43d7f1bc4fd75271178a9184d152a93097b10115273a8f0db0d47d4370185db0a7e2851fa85f9788852598881a0fbf4f667","ssdeep":"","tlshash":"e8514a3933041d9c853a59fabd072c44019a2f47a43a50542f496a2afc2cf3a90385d5","first_seen":"2025-10-28T12:27:40.345305Z","last_seen":"2026-04-20T23:47:18.097036Z","times_seen":22,"resource_available":false,"data":null}},"time_used":605,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":605,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/87dd30f707124da79d31817185067d3c.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/87dd30f707124da79d31817185067d3c.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1368223\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF6C122135318716E1\r\nAccept-Ranges: bytes\r\nETag: \"E78EACF37338D5989C16AF1A91CEE9D6\"\r\nLast-Modified: Mon, 22 Sep 2025 06:29:54 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 7128806946336268069\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 546s83M41ZicFq8akc7p1g==\r\nx-oss-server-time: 17\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1368223,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1599 x 871, 8-bit/color RGBA, non-interlaced","md5":"f6daa43a9cf1812e9ae0c719a6000b0c","sha1":"546bcfbd3a8ce68aca885dda19726655064bb2a2","sha256":"474e087f59a2ea8f526c4c657cad2c0629b6aeae943b404739fd9e14a2fd5607","sha512":"4942bc918fdfbc8f3c09eb17798a57765b2de2ede49ce8ceaa5d29b5ae4dbd3cba1e330de6691163873e104f29b376d3e1392783d942bef0a9593e5f0cc6f40d","ssdeep":"24576:gjfz1Tz6w1XQkbf5A1uHW/nSQM0Td7F296PTi2FPF4MvY:gtV1XQefBHW/SQMMdR412QMw","tlshash":"1225330440bb4f369b9316e36e112896f5c16346fa6e8c3bfea75bd3860d3f4255e224","first_seen":"2025-10-28T12:27:40.346157Z","last_seen":"2026-04-20T23:47:18.129405Z","times_seen":22,"resource_available":false,"data":null}},"time_used":2582,"timings":{"blocked":926,"dns":0,"connect":0,"send":0,"wait":280,"receive":1376,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getCustomerService","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/common/getCustomerService HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":285,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":285,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-91b121a0.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.116Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-91b121a0.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: text/css\r\ncontent-length: 61\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-3d\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":61,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"14420442c23830c7572ebce9b337300b","sha1":"4c7c2f4bd2f0d9eb2470e0dcbb58a250772f1f4c","sha256":"91b121a06897fec309d4c6f84e4793777a254960d0c97a6fdcd35a940add7175","sha512":"dbbdbac5bdbfe3c429247a6aec8e78bba326e136a72230e102785f8b50d83dd79005a9d256ccbba011574c64644ed29c098ef9d154f855333fda04e2fb902a62","ssdeep":"","tlshash":"dea0026d17162408f2276145f12a4f0dcf48ad22aed75246e38359913547e8d2560219","first_seen":"2025-10-28T12:27:40.386195Z","last_seen":"2026-04-20T23:47:18.093301Z","times_seen":23,"resource_available":false,"data":null}},"time_used":347,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":340,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/currencyItem-15550dda.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/currencyItem-15550dda.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-6d6\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1750,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1749)","md5":"0a88af6b4dca3c130c74addeb274fb10","sha1":"fb0c4b8a0f7b7c4bac8e193999f99b4070ffcfad","sha256":"15550dda13edd7fe55a2d29edacb7ba57f23f39ef10d087669c0f75facae0763","sha512":"5d046b442f0f471b2063fcd34fb68b1d95b79647ec7e50cf5290ebd866febcd12e9b890a1784512959c4f4a433d3f31d57540254b4e0abbb6f55dc7773677619","ssdeep":"","tlshash":"ed31c05457110375da3bc8866ea8010dc0d47fd1901765cae8afaa2b2ccfa931b7096b","first_seen":"2024-08-19T15:53:11.157884Z","last_seen":"2026-06-03T22:15:44.553345Z","times_seen":346,"resource_available":false,"data":null}},"time_used":328,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":328,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-84ed8764.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-84ed8764.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-3d2e\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15662,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (15661)","md5":"093c208df1f4ef71752719fea4706b68","sha1":"8c11e847960c509d8aa24406b81638cdafa464dc","sha256":"25249d798503f52a0d9e9232e5fcbc94faeb133e33b3ac6d604c5859ea85a2cd","sha512":"8d57bf6065fb25d53c77080e19490ae72db2560e5368ead29ee81a70f72c83407549987b485b8ac62cee6fa8c15caf7fda29181ec2c7c4e05b3c6c0313a86e55","ssdeep":"384:c6jCgoWU5g3eDBFc4xGiflLQiqbBPbzGB1ZcHjCmQUK:c6jzoWdYzc4xGElwxQ1ZcHjC2K","tlshash":"5e62c681f9068a3cf577a06150d80810726d7fde540e8ae1b5bdac8b6766efc7349b38","first_seen":"2026-02-27T16:35:10.055303Z","last_seen":"2026-03-05T01:18:35.549944Z","times_seen":5,"resource_available":true,"data":null}},"time_used":327,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":327,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/SOL.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/SOL.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 404\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF18A10832361CDED8\r\nAccept-Ranges: bytes\r\nETag: \"5E22A9302A4383454BFE530F0DDFFB53\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:19 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 18276743004581408811\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: XiKpMCpDg0VL/lMPDd/7Uw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":404,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"5e22a9302a4383454bfe530f0ddffb53","sha1":"be5b706cd340c21bd9be3a3ce56647ec384d6624","sha256":"b4f74a2541dbe53158395e8b054ec169ffe18124b55a0b5e027ebd9c22b5ba11","sha512":"0d94a417d4f0c678faea64e59463ab5c6cd582168ae7e744d44c1d6878deffec49dec89d5b5ca176bb15767eae10cdf9aa1691d4b033367becb08caf8ec56889","ssdeep":"","tlshash":"c9e0f1f27d245ca97f5642050fe80ff2d03c66f515119c861db2ca2d554105545d5453","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-05T15:12:51.655582Z","times_seen":946,"resource_available":false,"data":null}},"time_used":1556,"timings":{"blocked":1302,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-5-checked.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-5-checked.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-8de\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2270,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"2525a24baa01a75766cff27f4bb6ff2d","sha1":"f03f3a2ccf23f5027ddd3828f319e33f346d060b","sha256":"9aabb5ca8d5c53028e6054f5ffbb3c92727d99411dc91c435a95be85d9462c1a","sha512":"b57b5c8693c98ae36f27313ce9a242cc2691cbd3421b43c2a820b888a43a7fba4e29b1b850e422a319f7893968c2f7ceaa70234005679735c4aab3d478543779","ssdeep":"","tlshash":"df41e885fe704cd2951eee981df16607dd632ac054d2b852bccd880ba1300fa890c8cb","first_seen":"2025-10-28T12:27:40.351151Z","last_seen":"2026-04-20T23:47:18.113505Z","times_seen":22,"resource_available":false,"data":null}},"time_used":601,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":601,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-0f899e09.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-0f899e09.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 771\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-303\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":771,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (770)","md5":"2cb4e92b9887efe1c55e824ede5c19cf","sha1":"3de028c3870138ffaca8ee7ba73fa28255bb9c43","sha256":"182be9180798a240300672f0db4142e218046a50a2f83e6f61e9057813aad279","sha512":"8d66c6837bd89aceec9414756d4afbf160f3e44930538e3cdfe3abe384a886ba8f5bb08ffeb31d41baa845dc04ab220c5d3e5e1ca65a588fe805e2c8e16a87f1","ssdeep":"","tlshash":"f901dcf9fd0dcfbb5fa2460141d02600140a1feefa1819e698877d661be8890da9f72d","first_seen":"2025-10-28T12:27:40.415775Z","last_seen":"2026-04-20T23:47:18.076554Z","times_seen":23,"resource_available":true,"data":null}},"time_used":484,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":484,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-c21ed74d.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-c21ed74d.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 515\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-203\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":515,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (514)","md5":"6af85dcd3fe5831eece2f524891ed558","sha1":"e17a83374f246c3795ad120fe1a897c9738435c1","sha256":"abc615309c8f2e74396a9750a01da59159f3743f9ae2b4170d503a380f2c2644","sha512":"1b2dc924ab6aa7b2a6592ac2ebae9398f22d3691f195c686b0d7a7cf91eef7c6f0f1612b4c5997f2ba917527e4a1e2e04a1bf6410691cda2c87920b014ea9e75","ssdeep":"","tlshash":"00f0c92f792750b26ba388fce127181263680f4a33a0c5b9e54a0b0087388ebd15e628","first_seen":"2026-02-27T16:35:10.057092Z","last_seen":"2026-03-05T01:18:35.557071Z","times_seen":5,"resource_available":true,"data":null}},"time_used":484,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":484,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-84ed8764.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.508Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-84ed8764.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-3d2e\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15662,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (15661)","md5":"093c208df1f4ef71752719fea4706b68","sha1":"8c11e847960c509d8aa24406b81638cdafa464dc","sha256":"25249d798503f52a0d9e9232e5fcbc94faeb133e33b3ac6d604c5859ea85a2cd","sha512":"8d57bf6065fb25d53c77080e19490ae72db2560e5368ead29ee81a70f72c83407549987b485b8ac62cee6fa8c15caf7fda29181ec2c7c4e05b3c6c0313a86e55","ssdeep":"384:c6jCgoWU5g3eDBFc4xGiflLQiqbBPbzGB1ZcHjCmQUK:c6jzoWdYzc4xGElwxQ1ZcHjC2K","tlshash":"5e62c681f9068a3cf577a06150d80810726d7fde540e8ae1b5bdac8b6766efc7349b38","first_seen":"2026-02-27T16:35:10.055303Z","last_seen":"2026-03-05T01:18:35.549944Z","times_seen":5,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/filters-659ad1a4.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/filters-659ad1a4.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-c1a\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3098,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3097)","md5":"108e8a33acc9e8f6df2af0924b2958d4","sha1":"ae1441bc16610136b492302ffd5718ceb244da31","sha256":"6e09893fff5c8c16c6d90f7e5d7579ee52235e8468e4d6b1daca2c95ad2909f5","sha512":"b54a08ffea09e2b0b5c3989b20d493f1b948a030a1b3156129db091212e9fd2617db64bdf33b31e55ecbef7b0b2b960b0d4c280b6398bbb517c37d859143cb95","ssdeep":"","tlshash":"d05112edf8c7613397e95af94018827572cebe10686e4a4df54be0415a63888e0bfb74","first_seen":"2026-02-27T16:35:10.049284Z","last_seen":"2026-03-05T01:18:35.558873Z","times_seen":5,"resource_available":true,"data":null}},"time_used":275,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/menu-1.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/menu-1.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-dca\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3530,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"97e610f754ccbc0b242c053d2f560911","sha1":"244f312c7aa445729b7d948e6bc398559e83f0d0","sha256":"17e95e0e8282502498c923f71030bae029639a86c314ad4aede845e116188672","sha512":"716fbcc07316a3aeacf4939e9ebeb02332b205d10aef6812c94a63e1b2587c58f810622a9816af2ff243a63bec223c9c47495a7fc296b9867ba9c6c50356b81e","ssdeep":"","tlshash":"14715cbba94cc439565730cd43dd536b9526f114fc39775c4170fd2a9c680e3d424d66","first_seen":"2026-02-27T16:35:10.060356Z","last_seen":"2026-04-20T23:47:18.089469Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-54d16624.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-54d16624.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 741\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-2e5\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":741,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (740)","md5":"e6428165529380fc041fa3cbefbcfade","sha1":"81bd1cb0293487a9feea5dc38ef1a82e0bb50d93","sha256":"f9278283e8a20292bba29c1a43e79f6f3436f753d0d28c35ce032af9024cf5df","sha512":"804de08513ceaf347166562250fd6149626b1035268510b617dd6378d6e449c7f40f25a536a15bec74c7a7903d664bfb623c5f5ebf2d2bb49dc27024936fdc58","ssdeep":"","tlshash":"0c011096bc58c53b3bb748b8465a0815350eaf49a3346ee64d9c252017aacd1870d70e","first_seen":"2026-02-27T16:35:10.058652Z","last_seen":"2026-03-05T01:18:35.545277Z","times_seen":5,"resource_available":true,"data":null}},"time_used":484,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":484,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/svg/dark/right2.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/svg/dark/right2.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-269a\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9882,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 98 x 74, 8-bit/color RGBA, non-interlaced","md5":"2de00a13334642512b289f5a565a9009","sha1":"c196e146daf3d943def5f9a3b151d99aa89a05ae","sha256":"0b3c4c574aa96169fecb7534bca2c1afe04fd8694785decefcd39fd7320a0451","sha512":"5d0e724a860b9ecfe670c31bda680c91878be8498790a67d260777dc2fd791dd45643e0b3e718c498eb868212e473d42f0f69c06daeec460a79f2c918e2afeb3","ssdeep":"192:AVme7zyLZWVBbwD1cfQe12d54XjEFvngM0FZyRaWPrTVFe7HvDeQx/Z:iBXyLTDPeA4XjMff0FARaWdFUbea/Z","tlshash":"ab12af73be2d0e9a3831fd996a241fcb12ce26c2b16c9857cf444391fbf465188a85f1","first_seen":"2026-02-27T16:35:10.101356Z","last_seen":"2026-04-20T23:47:18.141136Z","times_seen":11,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/menu-6.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/menu-6.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-bdb\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3035,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"34b17b1502264abf8be82482a702c42e","sha1":"ea7c4cf99b7c710f4c6e6ce3ea80b84056b11bb1","sha256":"702e37a314af5a2e186bb1bd538fa73c99a329df72ecbd978d8b44b3a0521ef5","sha512":"78c7315a5c14b410407a18b7474e69c334287198be0b628dcfe6220a668a403708f89c65901a07b7965b00f7734920e83f57efe835f25efce2cb1f5ce1ead9c8","ssdeep":"","tlshash":"b0516d0a7cf01e2d80ae864d1ffbe2bc713c3b26da07354a0429927747440b2103bae1","first_seen":"2026-02-27T16:35:10.107478Z","last_seen":"2026-04-20T23:47:18.142202Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-4-checked.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-4-checked.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-90e\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2318,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"f3b14a066a2be34b6b2fa23086af8556","sha1":"d829cc6532fe75ef7218e7d4fc585fe64ab80070","sha256":"97f00724ab0d336c0a85f3c7c2ba8a9833175c9cbc2a7c05a63af2d0634f8b8c","sha512":"864dcb15afe90e26e12485b7e34372e1bdc2461c18699897a9844d3d224eadfb83205822d2ba5ff1acaf1fe8310f8daaf1ee3f0e33cd401217f8508e6bf7b02d","ssdeep":"","tlshash":"f141b55ae810a841198ae911eaf4075b6b377281c5d0f4b7a8cd8c0b58311f4888abcb","first_seen":"2025-10-28T12:27:40.334215Z","last_seen":"2026-04-20T23:47:18.138539Z","times_seen":22,"resource_available":false,"data":null}},"time_used":603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":603,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/platform/dev/config.js?1772672492071","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.076Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /platform/dev/config.js?1772672492071 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 394\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\netag: \"69a17141-18a\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":394,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"4bc52b1aa6813b98e0af16a138354c00","sha1":"91ee6accefe6f24544627bdd1ae2aba499d5016c","sha256":"bf904efa24cb62a824547b6df3a7bbade81bfa77cc27124d7766ae502e5d6231","sha512":"22c852a633d0c36ccf7d549fd1c6a800698e42994d993a47f534b92c8ff8430c14d668c72d2bf8eb79e8b4459f83116bc75ff5f5269f36bc3b8cf2cb9ae886ae","ssdeep":"","tlshash":"f5e0abab3138c16451b08f2b6cec4817f68b2733494c010bf8b469041e79d542178890","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-06-01T14:24:52.336032Z","times_seen":377,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":372,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"webapi.16djht.com/ws/10259df3-f00d-48e7-ac84-9b1d49ecd3c8","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"GET /ws/10259df3-f00d-48e7-ac84-9b1d49ecd3c8 HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://somaliaz.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: WDLNKwknaUgar6pwm5MC9A==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx\r\nDate: Thu, 05 Mar 2026 01:01:33 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://somaliaz.com\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: wmpejr2DV7JqCdAvYpmg0NiUnPo=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":2662,"timings":{"blocked":0,"dns":906,"connect":1187,"send":0,"wait":283,"receive":0,"ssl":1152},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/DOGE.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/DOGE.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 2808\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF11EA963036E20732\r\nAccept-Ranges: bytes\r\nETag: \"D55DD75446D505958E5210985B246BED\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:20 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13943290759176926731\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 1V3XVEbVBZWOUhCYWyRr7Q==\r\nx-oss-server-time: 7\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2808,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"d55dd75446d505958e5210985b246bed","sha1":"df83b77aa8f8647f67f478e02c23f864a592f6d6","sha256":"8abf24f47bc3b4def59a6e6441a9f2dbb8d20c953c2c5373f219ab614a8f208d","sha512":"b65c5b9eca2ac0bef1dfdf742eb6ce365c3368650b37cd847ce12b955e683d3843cdeab9ec25beed31976e9b3ab571e59d4c66431e44345e7c57347a72bb758f","ssdeep":"","tlshash":"a6515c150736fcaac55846a3889f0970c8ee362be160571a7664cc17ff949494a17743","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-06-05T15:12:51.527019Z","times_seen":914,"resource_available":false,"data":null}},"time_used":1595,"timings":{"blocked":1327,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getAllSetting","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13770,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"626b1c8c560a9b0ffac88a34408f710d","sha1":"2308d575a0d9f0cf2f95ebd9745c143c251d226a","sha256":"b4cae5c1d7d981820d79e02dbbb674e87f9f8b795536fbe11ccad3765dbb049a","sha512":"bf79a00603675c1d9cfe825bc2caf11292aaf04c56f800f9c3c215326e9b5eaac3f14002fea7093e2986aac0c1aff3a543f8a2293ba0cad27082898713aaada1","ssdeep":"192:tYfZm32vOuQ+olE+O+y0c2T0XddD1xiNoXik6ANPUk1NzqqQjzVsRq2CPzqeSoKK:950nV1hcBJVSrWTse08","tlshash":"3252744532ccccbd82eb2dc990fb3b5aa5dc30ab9688d819d4e5af5c98ded75480f009","first_seen":"2026-02-27T16:35:10.044308Z","last_seen":"2026-03-18T14:21:55.024629Z","times_seen":10,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-38676ad4.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:30.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-38676ad4.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:30 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-4b220\"\r\nexpires: Thu, 05 Mar 2026 13:01:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":307744,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"f4a946974b11fa7f470cf83d5f172868","sha1":"333106f2a69125a68de65a4693a7f9a10ad9301a","sha256":"38676ad4f09ea60b86ee8876a53838f98e59a2a8c4c6a964a922363a102af0d2","sha512":"584fba51a1d4e6f9327ee916086513275c37b960e7ea52d233c568708de4b4cc128bd2adec82a73da69d17838e606fc7f64ee2eea26991bf14d348b987524a71","ssdeep":"6144:nOvxsal1W9EkZ8w71ZACkFDS3vyf58rBeV05TR:Ov1C9dZ8w71ZACkFDS3vyf58rBeV05TR","tlshash":"2b64d7a9a590117c6f27aa7597ce5ad8f23ce6719c118de8f20160094fc3ffa2363617","first_seen":"2025-10-28T12:27:40.339431Z","last_seen":"2026-04-20T23:47:18.14522Z","times_seen":21,"resource_available":false,"data":null}},"time_used":802,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":802,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/vendor-41cad6c7.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:31.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/vendor-41cad6c7.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-e2d03\"\r\nexpires: Thu, 05 Mar 2026 13:01:31 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":929027,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"2e82feeb4086c6af6a22a0dcd606e681","sha1":"cac678f3c9517340895a67efb5faa40e2ec20632","sha256":"4142575970109144fc3f9092d6332369257588f6073adc78ef114b7f0d25209c","sha512":"39811da1fa8180674a86964c8fc3bac261856930e55022f65cb434be70a0d6bf5ad75304756953a00c2d4c6fcdf5b5e58a1c9a5d0ce931eade22954630e26d25","ssdeep":"24576:WBIeNg6mi8fTCPzh5wAmVjOYM9HdWQq3agx/:WBIeNg6milmVjJM9HdWQqKgx/","tlshash":"34153ac97692f06157ab20e240bb0006f3396e59740e8494f16dd8eb7d69d89e2b7f3c","first_seen":"2025-10-28T12:27:40.36684Z","last_seen":"2026-04-20T23:47:18.073402Z","times_seen":23,"resource_available":true,"data":null}},"time_used":507,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":507,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/d84fd12ff28d425e9fb0a9e692a8ebbd.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.718Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/d84fd12ff28d425e9fb0a9e692a8ebbd.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:34 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1153\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EE4F5FBB3830EAC726\r\nAccept-Ranges: bytes\r\nETag: \"9BABD0456E7F28E456B24206D13D7D8B\"\r\nLast-Modified: Mon, 22 Sep 2025 06:33:17 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 482682180639983623\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: m6vQRW5/KORWskIG0T19iw==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1153,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 50, 8-bit colormap, non-interlaced","md5":"9babd0456e7f28e456b24206d13d7d8b","sha1":"693713c5fc068559e7b8c6d53b817dca1dd4a285","sha256":"9f3a3c982058bbfe0043dca51b1600b0633f801083ffcf0b0d803facc4cd3ea1","sha512":"bae205e86e62f72303ad359b3c307fd18dec274d043391e7ea24b9585b359d3d5e7394433377a3075428ebcfff50022693961f2c83188330ee1067d5c9eb3371","ssdeep":"","tlshash":"31216ab90244f91bb42d3841d27fb5dc4442f1fa5e454209c3e5457749657a704503bd","first_seen":"2023-09-04T08:20:12Z","last_seen":"2026-06-02T07:46:15.649723Z","times_seen":41,"resource_available":false,"data":null}},"time_used":2492,"timings":{"blocked":1115,"dns":343,"connect":254,"send":0,"wait":261,"receive":0,"ssl":514},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/menu-8.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/menu-8.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-9cb\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2507,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"2368e1298780cc9e8105f6fe58663033","sha1":"9d8c19b4159e04a1144876496f7e0073dfc2863a","sha256":"8780e32b1af3873fd88e324a65230fb15ec9c808db600c4294dffc6933595618","sha512":"54e9350ddb9c94c3976cb936690fc6792a37c3e9278e649a5d1bb53a4b90a569542f8a2fca2bc592eddd233b3ac39f863c9bbaa4fc0c16e4e0ab4de726982792","ssdeep":"","tlshash":"54514c67d5c0e47201aa1c4b393ea6a76abcb560c49ff94105c88844c371b5dde458df","first_seen":"2026-02-27T16:35:10.108689Z","last_seen":"2026-04-20T23:47:18.090497Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/BTC.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/BTC.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 1125\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EE95E04A3130762C8D\r\nAccept-Ranges: bytes\r\nETag: \"75F196B437F9D87FDC198BC904C66C4C\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:20 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 10138601249240458443\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: dfGWtDf52H/cGYvJBMZsTA==\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1125,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"75f196b437f9d87fdc198bc904c66c4c","sha1":"79b6e300761520f7ad41856878999dbc1fafc137","sha256":"f72b9a231c13012613217eec2bec27b923204e8c6cebc2b2ae51485d2b5d679d","sha512":"de4633885db64868d13a4a4699631acf0b00af0b2cda542c5be26b4dce3a1f8b4e071949280ddd9f3c59eb7a236d5d8d7003ffcb9633e0749fb62d46c780ac60","ssdeep":"","tlshash":"2421f9d3df09102ec4029c9cd4730c6bcc287a963410445b5f7c823fcc0b6496864b67","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-06-05T15:12:51.674782Z","times_seen":1634,"resource_available":false,"data":null}},"time_used":2373,"timings":{"blocked":1058,"dns":283,"connect":258,"send":0,"wait":257,"receive":0,"ssl":511},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-1.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-1.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-4a4\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1188,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"192f09128ca9b6a97ac793dd6912dec8","sha1":"25cb7426aa1c03912c77e4a171eb24c437dfd4ca","sha256":"604d520098aa42eff07403397e39a4a2e056f468c45f1cc830ec831a0554a21d","sha512":"a15c556ad7f9c1f5915092fc2c44a5f9c6ea33f81935351309cdcfda87d5fd23c52025fda6e020b29ee3f92a98c67134bf73df7a1a8f9b324b7fa24b6faaf53a","ssdeep":"","tlshash":"b521da8cd9d404b5d4b629263382526b96efab4c8210bf01217a53d5f4ad219ec05904","first_seen":"2025-10-28T12:27:40.341711Z","last_seen":"2026-04-20T23:47:18.136308Z","times_seen":22,"resource_available":false,"data":null}},"time_used":607,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":607,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-3-checked.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-3-checked.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-e2f\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3631,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"b6863e86c8e07c48a93fc9355790a43e","sha1":"eb6006b26bb09fa59996735b7e04ac8cadf17632","sha256":"6f6b2939bd7abcbdb6326426a154257db9ebe1aaefa3c71ed09e9ec95cc10d45","sha512":"a3eba790992aae283fe4bb47ab8078372c59a65c2a54f51615a8ddccd647c55d215f17c55325523570f3f9aa8c2aed46ae9906331fa3739f13af3cdd7280a9f3","ssdeep":"","tlshash":"2b714b4deb5d0c441d69df08a9e82763daa686c18ab2b0c5eecfc4036421ce54d1dbd7","first_seen":"2025-10-28T12:27:40.344625Z","last_seen":"2026-04-20T23:47:18.137627Z","times_seen":22,"resource_available":false,"data":null}},"time_used":605,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":605,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getCoinList","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":1629,"timings":{"blocked":673,"dns":69,"connect":308,"send":0,"wait":280,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-718e97e8.css","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-718e97e8.css HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-c3c\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3132,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3131)","md5":"99147448861bbe9fa856273a827f28a0","sha1":"5bd421bea48d5d469990f6c3686d50a242fdb681","sha256":"718e97e84a5efa0e5dd658233e8ff869657a79d2c3f7daefebbc14633c96e722","sha512":"701e2e6569639d935076a8c5b7d45a40060a95696df554926bb6d85a10ac98a69299f928995a9945c152a1dff95d3ffff6b94512478dff3a986205646701b2ec","ssdeep":"","tlshash":"6c512e59f7a925352c77dacfbe848e4cd5102e92f09badc4e14397120acf6d31a2531a","first_seen":"2025-10-28T12:27:40.377996Z","last_seen":"2026-04-20T23:47:18.099173Z","times_seen":22,"resource_available":false,"data":null}},"time_used":341,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":341,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/currencyItem-d3c067a1.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.793Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/currencyItem-d3c067a1.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-4bb\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1211,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1210)","md5":"7d0ee38a66a4971b1cc933fc1bf7f33f","sha1":"30ba4f4666324224b1eec17aad3bb9861baa7d39","sha256":"446662278d0ddbd4c64de805fc45cb40e2c9441f18d9122af5bf833fef14642f","sha512":"be0198e380bb3a6baf1c8b62fa8fc1e46f1d427687c8382dfcba80e600b28c4da2107175ead4423b836c756239e5c7a0cff6e64c27d408e0d7f55a802ac8e9cc","ssdeep":"","tlshash":"e521dc9aa902c7b1dbbe8066c17d0414035d7bda701181c1ffed044a3b8aafcd728a31","first_seen":"2026-02-27T16:35:10.091567Z","last_seen":"2026-03-05T01:18:35.57454Z","times_seen":5,"resource_available":true,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/platform/dev/logo_144.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /platform/dev/logo_144.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-a58\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2648,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 122 x 29, 8-bit/color RGBA, non-interlaced","md5":"b7ab57e8e49861420fb5876b5db96d9b","sha1":"49abd42a4155f65c094cd88f65568c167c1724e0","sha256":"bf5fe635a36e7ac98ae1fc14f6ca9629198983b813a09e645b18e73a7924a4ca","sha512":"6f948283d5b933e1a32baf90293c25263d390e934b380dd3c8476a88be14b4837faaa9d86ca123e8beb53d0cb2a0fff8e6fa50f90b9a5b727657d3ea8ca52c54","ssdeep":"","tlshash":"24513b776a10cdec815c4fb1d9024108d6488d932eab02a4bdbc5b34ab55ae9b07c947","first_seen":"2025-10-28T12:27:40.360915Z","last_seen":"2026-05-26T07:58:52.909279Z","times_seen":26,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/menu-2.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.752Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/menu-2.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-ae0\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2784,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"715f1dc5b636eb900c29f77f1677dc17","sha1":"c69216387d80ec662cc69b16b8efbe39a33ba651","sha256":"27dfee94da18bd483de15b7a15965569b2a8ec6905eba6f156ebc85692554b94","sha512":"243c4655f24a18549859703b9ab76b0869fd3d0228cf248d70a9678b697289feada8209ac9f2abf8469c06549d85773b21ea399e12a427d0e23ff67262a49698","ssdeep":"","tlshash":"0a512c48bd6472d2ddbe1b1eeca067416afab0d352393a63116f2bccab65805500a07f","first_seen":"2026-02-27T16:35:10.065462Z","last_seen":"2026-04-20T23:47:18.132406Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/menu-5.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/menu-5.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-e08\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3592,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"774bc521e28f38cd6e84f25339273f2c","sha1":"3c60cd7cf65ed4882f185c1078c444b2c2f9b379","sha256":"5fcee85757c6ba589fef514403fce32b011e9e844606ad713e7bd34491f37046","sha512":"80f7b9c41bb341e5825456ae62a8aa71228f409d9d98ab2a2bfa048fa637c6c370d27a3e025cd0866f9cf8231833d3f93a31a080f35fbbf3bcae14eafdfaf3d7","ssdeep":"","tlshash":"3f716d7afe96a12acb4e55fd762ad550b0d507002060756433df50be1858903bef75c6","first_seen":"2026-02-27T16:35:10.10623Z","last_seen":"2026-04-20T23:47:18.112314Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/BNB.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.793Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/BNB.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 2560\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF4F5FBB3830A2C826\r\nAccept-Ranges: bytes\r\nETag: \"CB84D3CA48A52E3DF1025731A8BEF4EC\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:20 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 6590887318613304211\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: y4TTykilLj3xAlcxqL707A==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2560,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"cb84d3ca48a52e3df1025731a8bef4ec","sha1":"b059f2eb3aaf93145fd62647cb908c5532e06795","sha256":"0f4502d8c5254df1eb0eb8d124c7684b4f02e2a5004525d5bd7acd18a6ebb9fc","sha512":"d7cd5d9aface1bb4718d418d1f7108bbbde7e8e24e926ce4bd4a88f51c715759e55741de3d6b17e7e54dea502761817e093e768a337fc0030a259fe9b4338151","ssdeep":"","tlshash":"7e513a6a47020c971334d44f89fc3eea1d6edc1ad421e0aeee0197fa18101c18dbe343","first_seen":"2023-05-25T23:01:30Z","last_seen":"2026-06-05T15:12:51.597661Z","times_seen":1502,"resource_available":false,"data":null}},"time_used":1562,"timings":{"blocked":1303,"dns":0,"connect":0,"send":0,"wait":258,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-2.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-2.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-50c\"\r\nexpires: Sat, 04 Apr 2026 01:01:34 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1292,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"26bb1a00090521d583b5e90bfa4cc0b1","sha1":"826e40232c9fa9bf13b75d1a6faeaf10decbb78b","sha256":"d48254fa43516c22cc6d6cfca8f3ea3676178795ed7faa8cfbcc5b6a97ae22da","sha512":"1595f60f4915fefc10a385640ecdac92e44b053b8f1d0023c3f9d4aa1b65516743e80398bbc2b8d09dedce0b05f30477313930a21f1a036e13c39a3eaa8b275e","ssdeep":"","tlshash":"c221c8fa9878320696b9bef37618d988806e19bc090b3a4090b0d5ba5594d357fc01a0","first_seen":"2025-10-28T12:27:40.358643Z","last_seen":"2026-06-04T06:07:00.891081Z","times_seen":23,"resource_available":false,"data":null}},"time_used":605,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":605,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getAllSetting","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.063Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13770,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"626b1c8c560a9b0ffac88a34408f710d","sha1":"2308d575a0d9f0cf2f95ebd9745c143c251d226a","sha256":"b4cae5c1d7d981820d79e02dbbb674e87f9f8b795536fbe11ccad3765dbb049a","sha512":"bf79a00603675c1d9cfe825bc2caf11292aaf04c56f800f9c3c215326e9b5eaac3f14002fea7093e2986aac0c1aff3a543f8a2293ba0cad27082898713aaada1","ssdeep":"192:tYfZm32vOuQ+olE+O+y0c2T0XddD1xiNoXik6ANPUk1NzqqQjzVsRq2CPzqeSoKK:950nV1hcBJVSrWTse08","tlshash":"3252744532ccccbd82eb2dc990fb3b5aa5dc30ab9688d819d4e5af5c98ded75480f009","first_seen":"2026-02-27T16:35:10.044308Z","last_seen":"2026-03-18T14:21:55.024629Z","times_seen":10,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":290,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/cast.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/cast.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-178b\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6027,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 77 x 81, 8-bit/color RGBA, non-interlaced","md5":"f9c892904fb89e2de1d3fe26b4774a05","sha1":"b00014c970793eddbfc563e95fdc0a435b5250d3","sha256":"b13c5b1de591e43f51c7e54c163195cf902636b2311e5fb5b64452ee840bcfda","sha512":"b40a619f492975d9507c3813d1a4632f25f5f4fe5f1744b0f6787e2b72e800743b7ac9bbeb876385400bb5522c0bff1bd8db77004e75bc2b2c51dd1f2a571326","ssdeep":"96:4+aZ4FbfnW3Hd69FPjm/hme7YMEDBMdusju4LrbLMlU4+e/eQTpG1x3+z8:24FbWt69FPjrMhJVMDRmx3+I","tlshash":"2fc1afe2c3c600b56fc21e8b508e3c338483fb5ee5a2363ed4382aee504f174184b125","first_seen":"2025-09-22T11:41:07.914192Z","last_seen":"2026-06-04T06:07:00.896717Z","times_seen":25,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/dark/menu-4.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.756Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/dark/menu-4.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-e06\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3590,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"abc3f366419dc2702dd27818fd174a4b","sha1":"820efddffc9e0a9866cccc36029b1b1c6d06f9f4","sha256":"150903b4d9cee006a2bf4d1c219429387e9fd7762de28d29de5005e84eec62c9","sha512":"a1ada22b0b2c5c11f664656f16b15f312d31de4d5fe29ac59497e2c2d7dfb60e4ff391bb12d0a14d6dcc7231105bd23ac6e8a103e0a3772bcd3f46f403ffad64","ssdeep":"","tlshash":"cb716d361772fe01e296532c08edaa807b0d44e75ad8c8139cc3189befbde642dc8e10","first_seen":"2026-02-27T16:35:10.040402Z","last_seen":"2026-04-20T23:47:18.083363Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getAllSetting","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.900Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":280,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":280,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/adcb552611f045619ef06c7309b7e6d9.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/adcb552611f045619ef06c7309b7e6d9.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 207691\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF19774335320E4EE2\r\nAccept-Ranges: bytes\r\nETag: \"4C2F77305528D59FC94DB8A503D25D5F\"\r\nLast-Modified: Mon, 02 Mar 2026 15:52:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 5152717241629072077\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: TC93MFUo1Z/JTbilA9JdXw==\r\nx-oss-server-time: 8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":207691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 698 x 279, 8-bit/color RGB, non-interlaced","md5":"4c2f77305528d59fc94db8a503d25d5f","sha1":"326d4759bb58e3c48a155aa795b49573e060daed","sha256":"08ac3d1f23cd16a62935309289bd672ee797d2ffa495c8c1dac6343296d7b7f9","sha512":"117ac3f3825a737d1059a1d2e58853e01cd55edf963b90559813b8d814c96c144d5af2e6eaf7126aad8f9c142ca663b9f0865a7e855aad82f30bc08332d98b11","ssdeep":"6144:HrWGkQiPDLeJXr3JkqME7HICXmrqGr/V2okPOt:HrWGkQiPeJW5+HxmrFzErPOt","tlshash":"0414128fc5c03a8f8f5e9dda74916472752898bd22d70c9cf8ee494643a64788764ccf","first_seen":"2026-03-05T01:02:00.160533Z","last_seen":"2026-04-20T23:47:18.118707Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1684,"timings":{"blocked":927,"dns":0,"connect":0,"send":0,"wait":255,"receive":502,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/common/getCustomerService","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:34.762Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"POST /api/common/getCustomerService HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":247,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"9ed1771bd783ff0da3df0c6f5cd09bbe","sha1":"2cd3ad01df8785547df88c1ed5a00e97939b13d1","sha256":"06a9ccf34f975c828f451cb45846e387011ea40a651983a8da21875c398ae39c","sha512":"762ad9a4e5e4668f8e9bbe70d278febe5d6ed4f388579958fd453fc8097a70993a591a456f9117c169fd6010a9d1ec8d24a286fcf1e5506beaabf88bfe5870ee","ssdeep":"","tlshash":"afd095d21e5c45625d6111e0c41f774cf2993031b85ed68468b455d4c09f0d519050c0","first_seen":"2025-10-28T12:27:40.342475Z","last_seen":"2026-04-20T23:47:18.085757Z","times_seen":22,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/index-0f899e09.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:32.794Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/index-0f899e09.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:32 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 771\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\netag: \"69a17158-303\"\r\nexpires: Thu, 05 Mar 2026 13:01:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":771,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (770)","md5":"2cb4e92b9887efe1c55e824ede5c19cf","sha1":"3de028c3870138ffaca8ee7ba73fa28255bb9c43","sha256":"182be9180798a240300672f0db4142e218046a50a2f83e6f61e9057813aad279","sha512":"8d66c6837bd89aceec9414756d4afbf160f3e44930538e3cdfe3abe384a886ba8f5bb08ffeb31d41baa845dc04ab220c5d3e5e1ca65a588fe805e2c8e16a87f1","ssdeep":"","tlshash":"f901dcf9fd0dcfbb5fa2460141d02600140a1feefa1819e698877d661be8890da9f72d","first_seen":"2025-10-28T12:27:40.415775Z","last_seen":"2026-04-20T23:47:18.076554Z","times_seen":23,"resource_available":true,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/assets/en-c2a3f14d.js","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.381Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /assets/en-c2a3f14d.js HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Feb 2026 10:26:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17158-bf47\"\r\nexpires: Thu, 05 Mar 2026 13:01:33 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48967,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (48554)","md5":"a99cb1027398e5a4240e7f3a98782d9c","sha1":"4d5cbc2658cd669240dbc9eb6580e3ee9c9d6000","sha256":"0830ada0cc552fa9680a7c3c1add5362ae31572515b05ce6963d47f191102054","sha512":"cf6bb74e45141d181ca2d5e3d2353a8496b63bccab61aece13140e38da2e3b59ca9ad571e5f6349203c48de1373360186d0575dcdbc9643d743caee28d2c63bd","ssdeep":"768:3htZcEw/oyrLOtpBKl1hOfqxz5MJRdQjkrxfcDD6fb98LKbl5tZp9:mpo6LOtfc1hHIHDbeUp9","tlshash":"dd23f989bd1b949904f32366b8ce6e1164f10ac18269c41f4fedc8fd13dab5aa367734","first_seen":"2026-02-27T16:35:10.085051Z","last_seen":"2026-04-20T23:47:18.139529Z","times_seen":11,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/svg/dark/message.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/svg/dark/message.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-93f\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2367,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 54 x 54, 8-bit/color RGBA, non-interlaced","md5":"0802cd91bdf5e5a87af9f36d00f0b507","sha1":"60b25554f93026b83f317e375484c0711abf41ec","sha256":"f960ddcda23c3361eed36a35d406bd73527691e3f9783193764cd3771e4ee69e","sha512":"3cbd18badb475588de8d3649661b4fc7668922cf56329a5999be51095f35922638ee9c852434c61ac270075dc865335a6ae9721a4295c80800b66a1033d52fa6","ssdeep":"","tlshash":"66413b225ee9bf2baf50cd72c110b240974ed65dd1d88a7a5637f7282bc0d184ab592c","first_seen":"2026-02-27T16:35:10.04165Z","last_seen":"2026-04-20T23:47:18.106622Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/LTC.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.790Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/LTC.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 957\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EE6C12213531DE14E1\r\nAccept-Ranges: bytes\r\nETag: \"DB1F13E46508474023E51DAC9B924272\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:19 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2775687442448118922\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 2x8T5GUIR0Aj5R2sm5JCcg==\r\nx-oss-server-time: 5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":957,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 97 x 96, 8-bit colormap, non-interlaced","md5":"db1f13e46508474023e51dac9b924272","sha1":"976aea7b350c3d301a1bcc9350fa9b54bff9c8af","sha256":"50b7635088e72a9f004283284a8d63488fa127afa53e157393ca38bb55db1ff2","sha512":"08f80512e3edb58c31435f259a6d27f0ce55186594e94b3d5883245788edf4b503cae6f5361876896658070c159de7d4ea5457b0bdda11df6673f02e7c598181","ssdeep":"","tlshash":"c511b7abf5cceccad1b1414f118a4490e550cdb0147da74eea127e1bb839ab02d04f1a","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-05T03:35:57.690873Z","times_seen":509,"resource_available":false,"data":null}},"time_used":2420,"timings":{"blocked":1075,"dns":275,"connect":269,"send":0,"wait":266,"receive":0,"ssl":525},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/svg/dark/lujing3047.svg?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/svg/dark/lujing3047.svg?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 395\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\netag: \"69a17141-18b\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":395,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"75fd0a8aecdbaaa755824e8e1bdb6955","sha1":"e9953daeb744f32b8da93c78d09fa4aad39918ee","sha256":"bde6c1110d488db935e323792e0d5288e0cf6446cde9a8606191595b5cba4357","sha512":"28faad026b58df1a98dc4617fae8b204bc34668b82b937b6f559ac28e903d3a62b6c2330d569b7db194dc383e27634e365f8b8791acc15c1524d6ae92cbdfcdc","ssdeep":"","tlshash":"b1e061bb754ff78d5459db1405ecaec8e5726011318500549b4216f69d04c839f708b0","first_seen":"2025-04-07T11:28:26.939708Z","last_seen":"2026-04-20T23:47:18.14058Z","times_seen":64,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/cast2.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.766Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/cast2.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-143e\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5182,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 116 x 75, 8-bit/color RGBA, non-interlaced","md5":"e7219df2c458d6b2c522487fcd4700f1","sha1":"3ddf86391056dd730d1cdc7a5efa8daf70183f3c","sha256":"2932bc40e32003acf144315104a90c4cea7ecce991037df8e80840622c927486","sha512":"92555d9a46928468e468297ea8646f95ccdc0114ef9b307d79cbc5a02c1bb43fd10ab2059bfe9986a02a1993825a3a8ddb9277763443531a4c020c9644651805","ssdeep":"96:B3PpMBLrFFuQeMz2kODDK7RzD2Mz4BwOMppjDmSw3v4JHOQuKa/G:B3OhFFT1A4powOMppjqcOMf","tlshash":"e4b17d4b4392a99da743c093af5c80fab690639014f6fcb11dd6666239e25c27c7bf07","first_seen":"2025-09-22T11:41:07.964223Z","last_seen":"2026-06-04T06:07:00.888799Z","times_seen":25,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jiaoyi6.oss-cn-beijing.aliyuncs.com/tu/MATIC.png?2.0.1772187992163","fqdn":"jiaoyi6.oss-cn-beijing.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"39.103.20.14","port":443,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"cn-beijing.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 22 Jul 2025 08:21:42 GMT","end":"Sun, 23 Aug 2026 08:21:41 GMT"},"fingerprint":{"sha1":"0E:17:E2:1C:49:2B:58:46:EF:6F:B8:CA:60:00:F7:D5:B3:39:DB:5F","sha256":"65:62:9F:A3:53:EA:8B:6D:C8:83:93:81:B2:E6:43:7D:E3:97:5C:77:5E:01:C1:A5:29:3A:CE:5C:62:0A:D3:77"}}},"request":{"raw":"GET /tu/MATIC.png?2.0.1772187992163 HTTP/1.1\r\nHost: jiaoyi6.oss-cn-beijing.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Thu, 05 Mar 2026 01:01:35 GMT\r\nContent-Type: image/png\r\nContent-Length: 988\r\nConnection: keep-alive\r\nx-oss-request-id: 69A8D5EF95E04A3130392D8D\r\nAccept-Ranges: bytes\r\nETag: \"96661AE9839CB25D5CCD5CA628EDFA64\"\r\nLast-Modified: Fri, 14 Feb 2025 18:12:19 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 5471959168277679892\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000104\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: lmYa6YOcsl1czVymKO36ZA==\r\nx-oss-server-time: 8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":988,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 4-bit colormap, non-interlaced","md5":"96661ae9839cb25d5ccd5ca628edfa64","sha1":"4b39c2aded636e57cefccf39d190d5274c26e534","sha256":"95ba109bb6073cfd498eddd377de0792a78027def314b0e6751d37d03773ef02","sha512":"1119ef04adc7aabb7ccd44154a2213d8ced88e85804b8368275569bfca34f6bb24c71ef2bc5ecd0bfba0232ea9510a938cddf2d7c4a4c6e11bf428a934c6855c","ssdeep":"","tlshash":"491154d7a5cdbd98df10d4f04e38cb8598b022ed9115bd832c5665119957302ddd2393","first_seen":"2023-05-07T19:16:41Z","last_seen":"2026-06-05T10:33:32.127148Z","times_seen":105,"resource_available":false,"data":null}},"time_used":1564,"timings":{"blocked":1301,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"somaliaz.com/resource/images/defi/tabbar-1-checked.png?2.0.1772187992163","fqdn":"somaliaz.com","domain":"somaliaz.com","tld":"com"},"ip":{"addr":"207.56.8.46","port":443,"asn":2914,"as":"NTT-LTD-2914","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"somaliaz.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 02 Mar 2026 14:00:00 GMT","end":"Sun, 31 May 2026 13:59:59 GMT"},"fingerprint":{"sha1":"B5:83:8F:DC:7B:2F:5B:AF:10:7C:31:E1:3C:E8:E7:50:C7:A1:21:6B","sha256":"DF:36:CF:6E:51:40:C3:37:48:76:1E:71:F1:66:22:4B:FD:BD:69:C4:DC:C8:C9:4D:A1:8F:FE:0F:CB:12:E8:17"}}},"request":{"raw":"GET /resource/images/defi/tabbar-1-checked.png?2.0.1772187992163 HTTP/1.1\r\nHost: somaliaz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:33 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Feb 2026 10:26:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a17141-49f\"\r\nexpires: Sat, 04 Apr 2026 01:01:33 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1183,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"2f6190caa88d0009fba2cea038875d94","sha1":"011f701ef38e661ae9fa302d1b73ee4a6340b19c","sha256":"ae3b530a75c0c07e5ed9a8cde996bfa192dc017956f8741dba183f9e7e706478","sha512":"9498fc52657c52ba012b8c4a79c7b4bf63de033642946d784feffa9788908aaa62c72a9452ef39f8d0938f592450b6a62e109d37fbf686f737b209478fd120d3","ssdeep":"","tlshash":"f221d7dc1ae09e615622c4ba182a06a67b2f99d79230dd3fa8100ee7e4d11a51412329","first_seen":"2025-10-28T12:27:40.354435Z","last_seen":"2026-06-04T06:07:00.938117Z","times_seen":23,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"somaliaz.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"somaliaz.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webapi.16djht.com/api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY","fqdn":"webapi.16djht.com","domain":"16djht.com","tld":"com"},"ip":{"addr":"52.193.112.100","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://somaliaz.com/","date":"2026-03-05T01:01:33.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webapi.16djht.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 12 Feb 2026 04:03:41 GMT","end":"Wed, 13 May 2026 04:03:40 GMT"},"fingerprint":{"sha1":"F4:98:DA:99:A4:5B:3F:57:78:BD:51:BF:C1:35:05:B8:EB:4F:65:C2","sha256":"23:A3:ED:12:31:74:2E:33:C2:B2:ED:56:E3:B6:6F:F1:0E:48:52:6E:21:EC:9A:2C:C3:92:22:FB:F0:28:8D:A5"}}},"request":{"raw":"OPTIONS /api/notice/list?key=ACTIVITY_NOTICE\u0026modelKey=HOME_ACTIVITY HTTP/1.1\r\nHost: webapi.16djht.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://somaliaz.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Mar 2026 01:01:34 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://somaliaz.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T10:08:54.983399Z","times_seen":16173820,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}