{"report_id":"87e6deb8-38be-4242-a718-3d9916ba840e","version":6,"status":"done","tags":[],"date":"2026-01-25T03:58:10Z","url":{"schema":"https","addr":"usdtcrypto.space/","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"ip":{"addr":"138.124.125.47","port":0,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"final":{"url":{"schema":"https","addr":"usdtcrypto.space/","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"title":"USDT Mixer | Tether Mixer - USDT ERC20 and TRC20 Mixing Service","dom":{"size":6814,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (453)","md5":"cafbb7034e0d73ce93c89b517b9ee035","sha1":"ca709996a69e4e0386d15048bff1faa03a2078bf","sha256":"8a85a19be961b37cafbb1a78fe61117b8c19cbf0375a29d2c04f67ef61455d3a","sha512":"bff8d53287f08daaa74a9a46d1e029b6fb9ac6b713578134de0faa494a5c3ff64e932fc376ed3733f56cf957972b99c727485c0b3ebb1019b38cdfc0e8b4c1c0","ssdeep":"96:nhUUh6YBYY8OnNiUUhLYBcCsUUhAYBZBaUUg5AaiDbNaJPedLBjloy1vERRAe2Uu:hUs6UbQUIHJtAaiUJ2d9jeOQ2Uu","tlshash":"e1e1943397d515220396aaa93ef7f5085a56800beb5ed85433dc059e4fe3bd880b329f","dom_hash":"domhash01a7d3f73ff694f87238785a402d2b39","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"usdtcrypto.space/","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"ip":{"addr":"138.124.125.47","port":0,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-01T03:58:10Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"usdtcrypto.space","ip":{"addr":"138.124.125.47","port":443,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"domain_registered":"2025-06-05","domain_rank":0,"first_seen":"2026-01-24T19:22:04.044161Z","last_seen":"2026-01-24T19:22:04.044161Z","alert_count":0,"request_count":4,"received_data":150476,"sent_data":1799,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"usdtcrypto.space/js/domainConfig.js","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"ip":{"addr":"138.124.125.47","port":443,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"cd2ffabb73d0aa55d82586c0a35c21af","sha1":"6e12bcfa6642ccc9824cef66c32a22f861e0698c","sha256":"3158456eed08d78d253fd4170f3b370691e095dcc9ef7250669e38de3b0ec690","sha512":"9c976acce5553ece1a5049457d5ff25c934b0eb445027e9d32a44ed0ee1587eca5f158595622ba184da571f020ae1b9c23fe45eb0058106d6322d25243a0c20c","ssdeep":"96:qvM35CHtsg+i8f6i0mlE5KQSEbQNPB7fU0SuZTrWe/mdvauxHvaE:n3cSg+i8f6i0aE5KQSEbuPNfU0PZTKes","tlshash":"3581132c34b6a1334677602ed79bb1e4f52092973108ef15b94c83c86fe5b28ae71799","size":4194,"data":"","first_seen":"2026-01-24T19:22:08.192197Z","last_seen":"2026-01-25T03:58:11.766058Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"usdtcrypto.space/js/domainConfig.js","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"ip":{"addr":"138.124.125.47","port":443,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtcrypto.space/","date":"2026-01-25T03:57:49.164Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"usdtcrypto.space","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 14:02:40 GMT","end":"Wed, 04 Mar 2026 14:02:39 GMT"},"fingerprint":{"sha1":"A5:44:FF:FA:BB:03:76:5D:AB:CF:15:A4:C2:1A:59:D9:6B:96:55:77","sha256":"54:28:5F:39:88:BE:64:B7:16:CD:31:AA:E1:D1:08:86:0D:FC:2A:88:BE:0B:C4:1A:C8:76:C6:01:E3:D4:DE:1C"}}},"request":{"raw":"GET /js/domainConfig.js HTTP/1.1\r\nHost: usdtcrypto.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtcrypto.space/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\netag: \"1062-6931cbf8-202987;br\"\r\nlast-modified: Thu, 04 Dec 2025 17:59:20 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 1048\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 25 Jan 2026 03:57:49 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":4194,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"cd2ffabb73d0aa55d82586c0a35c21af","sha1":"6e12bcfa6642ccc9824cef66c32a22f861e0698c","sha256":"3158456eed08d78d253fd4170f3b370691e095dcc9ef7250669e38de3b0ec690","sha512":"9c976acce5553ece1a5049457d5ff25c934b0eb445027e9d32a44ed0ee1587eca5f158595622ba184da571f020ae1b9c23fe45eb0058106d6322d25243a0c20c","ssdeep":"96:qvM35CHtsg+i8f6i0mlE5KQSEbQNPB7fU0SuZTrWe/mdvauxHvaE:n3cSg+i8f6i0aE5KQSEbuPNfU0PZTKes","tlshash":"3581132c34b6a1334677602ed79bb1e4f52092973108ef15b94c83c86fe5b28ae71799","first_seen":"2026-01-24T19:22:08.192197Z","last_seen":"2026-01-25T03:58:11.766058Z","times_seen":2,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtcrypto.space/img/usdtlogo.png","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"ip":{"addr":"138.124.125.47","port":443,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtcrypto.space/","date":"2026-01-25T03:57:49.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"usdtcrypto.space","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 14:02:40 GMT","end":"Wed, 04 Mar 2026 14:02:39 GMT"},"fingerprint":{"sha1":"A5:44:FF:FA:BB:03:76:5D:AB:CF:15:A4:C2:1A:59:D9:6B:96:55:77","sha256":"54:28:5F:39:88:BE:64:B7:16:CD:31:AA:E1:D1:08:86:0D:FC:2A:88:BE:0B:C4:1A:C8:76:C6:01:E3:D4:DE:1C"}}},"request":{"raw":"GET /img/usdtlogo.png HTTP/1.1\r\nHost: usdtcrypto.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtcrypto.space/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 01 Feb 2026 03:57:49 GMT\r\netag: \"1102f-12cea600-202961;;;\"\r\nlast-modified: Tue, 01 Jan 1980 00:00:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 69679\r\naccept-ranges: bytes\r\ndate: Sun, 25 Jan 2026 03:57:49 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":69679,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2000 x 2000, 8-bit/color RGBA, non-interlaced","md5":"a440d4b512f4d2b9b63d3ab8818fc9e3","sha1":"90dac8c11ffff8e0b345d11a55049c088eff2165","sha256":"2de63cb5ac9431e6febcd4dfd7527d98654452bddd468fe45b93e22cef67ae15","sha512":"90debb4d79ff0b1136fabe5809b8e6b88259a5668240f25ebdcb6b5e844a9b84415a7b37cf87fccdd68e1cd4a686a2ba8265d603cfa513a83cb87f7b41adff0c","ssdeep":"1536:3XWmI8g4DLn+3MeMpH3NGLxHDzRcS7qN0iN1EkVU0nr8rTO:y4DLGMzpdGdHDzSOO0iN1uNC","tlshash":"5f63bea34a3ad985caa1847cb9bb1fc07668a135e5099dcf537ef71cf2421e36d920d0","first_seen":"2023-05-02T11:54:15Z","last_seen":"2026-06-08T13:06:40.771302Z","times_seen":369,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtcrypto.space/icons/favicon.ico","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"ip":{"addr":"138.124.125.47","port":443,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtcrypto.space/","date":"2026-01-25T03:57:49.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"usdtcrypto.space","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 14:02:40 GMT","end":"Wed, 04 Mar 2026 14:02:39 GMT"},"fingerprint":{"sha1":"A5:44:FF:FA:BB:03:76:5D:AB:CF:15:A4:C2:1A:59:D9:6B:96:55:77","sha256":"54:28:5F:39:88:BE:64:B7:16:CD:31:AA:E1:D1:08:86:0D:FC:2A:88:BE:0B:C4:1A:C8:76:C6:01:E3:D4:DE:1C"}}},"request":{"raw":"GET /icons/favicon.ico HTTP/1.1\r\nHost: usdtcrypto.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtcrypto.space/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Sun, 01 Feb 2026 03:57:49 GMT\r\netag: \"1083e-12cea600-20295a;br\"\r\nlast-modified: Tue, 01 Jan 1980 00:00:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 6450\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 25 Jan 2026 03:57:49 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":67646,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel","md5":"c1e95980fa943781f0eb7e84beceec34","sha1":"16b7f463692369ba1c2f87ca8b2a9c0b78b0b1a5","sha256":"388ee33538664826ebace6ad3583c68031fbb50a9b64d6a4cf3f1b83ad16edf9","sha512":"ab7f0b44e2b8319476526d8868da0cddf44cbe13d234da08db0380653cae1899796f1f6219bdadcc9894a0576f7b0af8db8b8e6007ede7ca136e36ab836ea278","ssdeep":"384:8bcUhWm+++vR9wORuO4AGoNVwKOqr7IwV:EcUhbTrObxDwKOqrswV","tlshash":"cd637aaea6119d3cfc450e7ca4618c0409aa5f8e381dd2fb64e03a09677b7d8c85fd76","first_seen":"2024-11-30T03:53:11.674099Z","last_seen":"2026-06-07T22:55:03.543584Z","times_seen":108,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtcrypto.space/","fqdn":"usdtcrypto.space","domain":"usdtcrypto.space","tld":"space"},"ip":{"addr":"138.124.125.47","port":443,"asn":41745,"as":"Baykov Ilya Sergeevich","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-25T03:57:48.845Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"usdtcrypto.space","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 14:02:40 GMT","end":"Wed, 04 Mar 2026 14:02:39 GMT"},"fingerprint":{"sha1":"A5:44:FF:FA:BB:03:76:5D:AB:CF:15:A4:C2:1A:59:D9:6B:96:55:77","sha256":"54:28:5F:39:88:BE:64:B7:16:CD:31:AA:E1:D1:08:86:0D:FC:2A:88:BE:0B:C4:1A:C8:76:C6:01:E3:D4:DE:1C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: usdtcrypto.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\netag: \"1b7c-6931cbf8-202976;br\"\r\nlast-modified: Thu, 04 Dec 2025 17:59:20 GMT\r\ncontent-type: text/html\r\ncontent-length: 2072\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 25 Jan 2026 03:57:48 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":7036,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"309eb28f9d61f1307ac683716599f99a","sha1":"88f65e8fd18b03d8a7396faad716b959ab8d6cb5","sha256":"bbbdc392ae1c94a3a01c48a64f51441aa186b40d94ce8d2848ccd8c6e77d0763","sha512":"0e2910d2426fde9d1a322e8dbc39f694405d14e4dab38bba48a1819040439762fc608c33106c6261255c67d802bb6862e9eb365c2ae54c36734f0da2ef6edf07","ssdeep":"192:HtUMcUK/cUXMql5kiI8x/AaiUJ3IR9jeOQ2UBu:NUMcUKkUXfbP/KSj2UBu","tlshash":"a8e1922397d1056302566a783ef2b604165a808ba71eec5833dc146d8fe7b9c85f339f","first_seen":"2026-01-24T19:22:08.190758Z","last_seen":"2026-01-25T03:58:11.767739Z","times_seen":2,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":102,"dns":50,"connect":24,"send":0,"wait":25,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}