{"report_id":"8d0771cc-4774-4ce6-bcf3-dda6f9040dc7","version":0,"status":"done","tags":[],"date":"2026-07-12T17:25:04Z","url":{"schema":"http","addr":"bepfi.com","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"bepfi.com/","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"title":"BEPFI | Buy \u0026 Trade Crypto","dom":{"size":135593,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (3259)","md5":"a9ad81b2d01fd02d72571d5acd6726d1","sha1":"92bd8920ddc57def6363a3dedf4d279acbe17039","sha256":"dcf6c7f1e09687b0d607d747b5f585e27d23fd77e9259107a9fc21b43b2b6166","sha512":"854aef5add430df012c6f3b0343c30b7350229f783113a9a2685622c63ea746fb08b9355bab9351d82868ccadadade630a17a580cb8e9daeedc284255d123a57","ssdeep":"1536:y0kvfBvfcFvfxVvfTvfKvfDEDuAwUKYi13EAoL8QMH7fmv:VS7y","tlshash":"9fd3f7f863f4b2a4e042e3e0eb2555667e5e54e7aa43c568f3ac0f849f428cdcc57885","dom_hash":"domhashfd23fb0d3267ec64866fc776b808b265","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bepfi.com","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-16T17:25:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bepfi.com","ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-08-09","domain_rank":0,"first_seen":"2026-07-10T14:55:38.06329Z","last_seen":"2026-07-10T14:55:38.06329Z","alert_count":66,"request_count":33,"received_data":1489734,"sent_data":16195,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-07-05T22:19:28.847206Z","alert_count":0,"request_count":3,"received_data":42666,"sent_data":1628,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/jquery-3.4.1.min.js","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a6b6350ee94a3ea74595c065cbf58af0","sha1":"b15f7cfa79519756dff1ad22553fd0ed09024343","sha256":"412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb","sha512":"f5a9c6aee347c155e4dd796c51716b7447bc22ae44741fceb6bcfee02f955ad4063d38613f241108a3e1f3e1f540fcaed8d9848b9a0fb823c00955cf9a19efad","ssdeep":"1536:jTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPmt:jgZm0H5HO5+gCKWZyPmHQ47GKR","tlshash":"a08319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","size":88147,"data":"","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-07-13T06:48:22.845703Z","times_seen":5487,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/app.min.js","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d07fddad2dbb2e1b33663063df276af3","sha1":"ff05ef5d12cab598273743b8ecba860d5fe3eb19","sha256":"84c100eb29667fada78eac7c2ef3831d2dfa9d01827c00f9a8c07a8da28231ee","sha512":"497e5b7368287addb7d29b29b80a3f89ee35f8b1fb5156b0b02bf27fbc6b238fbe78d4554ec7f879b982da6ff9b1e4750f1daf058c5f921c5032eec06afd48c6","ssdeep":"","tlshash":"c57122791314b93c02a30ad7e6e6aad07a343886d5411070a8b9ccaf1fd98d39371ff6","size":3615,"data":"","first_seen":"2023-07-07T00:40:59Z","last_seen":"2026-07-12T17:25:07.91701Z","times_seen":448,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/header.js","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"022389b461a846053b809318ae1f9875","sha1":"1c4ab9cf9acf530ef6191af6603b31befaa514dc","sha256":"7390aa020c894150ba30476545694b04d692af5bf04fb53c2a501163a1afbdfc","sha512":"77f18b60e6a65987670cdf24eeb6c954f6f67e6bed3bdc82d983835771315d5819d53ef0789df0e59a6a4522f5b80624976cb68a982bc5b552591f118f23f150","ssdeep":"","tlshash":"af01f52667047d7d40bb0fafe7e20e94bb2590d79461403630a9c98f1be25d1a6a6df0","size":734,"data":"","first_seen":"2024-12-03T22:55:29.791653Z","last_seen":"2026-07-12T17:25:07.91822Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/banner.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.078Z","timestamp":1783877077078,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/banner.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5Wge8ep9KJ6WRokK%2BJ%2BDlja763%2BTMT3ldwnkPYICrxLC1SdxdFb1tHlav6fxl19L1XiExbXvRu63pLGCfY%2FHEZb5HIEVGZChHeKy2RiwoK9SaYmaY18hPIRXe%2FM%3D\"}]}\r\ncf-ray: a1a1be13bc015694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2555,"size_decoded":1561,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"05e191ea68ead874adbaf8e8fd094261","sha1":"1eb08446b6900cfe7b74330721f561938d1f9c09","sha256":"2bd8cc5c97fe05e4ffe193ccf9d53b1b1083e1715e864e2802e0ac5e6664cb09","sha512":"d64670bca69ded79d78c149726b21cafea97bb66786127bef46b184b7f0c6e64b16349e5455d6bd31571a6187001cbd5c710963f843e90e91efd315b47fdc493","ssdeep":"","tlshash":"dd519b49dd0225562137b3bc9fb20a14e6ad2063db171294fbec52648fba4b88579fcc","first_seen":"2026-07-10T14:55:43.320898Z","last_seen":"2026-07-12T17:25:07.898971Z","times_seen":2,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/trx.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.105Z","timestamp":1783877077105,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/trx.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gJ%2Bc%2BAAaO23OYdSqg1LtaNkxowdp3fURXr1%2FBC75Tx%2BnyabnhxJbwviqxiK7D3Ap2l%2FBgK%2B%2BLD6%2FVba4ee6Xnv%2Fm3OVe6s861RcH5KaMlXeSst2tWFTEN4STh2Q%3D\"}]}\r\ncf-ray: a1a1be13ec105694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1451,"size_decoded":1573,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"76f81a124b273e6a86325e711ebaa6d2","sha1":"cafe93010ab183240a167866a0c882ea625496b8","sha256":"83c9e68359f6cc95b6b5f366ab2212baa55c9cf14e2bb1f5fa9e25e8e96a566c","sha512":"4751802877c27a83bf68ff75cf0b1ddbae0239c60018697621850d7681e908f25774783e1adb1ed01e65cbfbab91ccaf91c510c8b923a90829b61db5f8ab2c0a","ssdeep":"","tlshash":"3d3165c62f68ded9c7a893f2a6602465a825f2aa755c4d5dc04c3f1739c94783c03dca","first_seen":"2023-11-19T01:14:23Z","last_seen":"2026-07-12T17:25:07.900132Z","times_seen":234,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/intro.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.072Z","timestamp":1783877077072,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/intro.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qx%2B9VQVv8Hsr0kXVxWds8kvVESBKb0MgrhixSMH3nPRAacp1amXuYNn3tgSeUtor%2FprmRLQKg5qy2vU8he9KpVr158XtT8gLkzEVvKW%2FHO%2FREuiFSTf9MKStwcA%3D\"}]}\r\ncf-ray: a1a1be13bbfd5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4296,"size_decoded":1912,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"a62eb1276da74b592821e097fb37c71e","sha1":"755176446fb8d32feaff17c16e14c946f8ac243e","sha256":"2222cae6dd04bee3652f4fc3715271668b73b5329c4e555eaa29a164ba5c7459","sha512":"aab9ef11df764d20e5e1edb1ea26566215811b44d1cd7e2c676894bc84c1f2c3b9c4345ca762f5684113e2ea5f2d7e4393fc09b0240c469313845457640d055b","ssdeep":"48:aR7vz2xcQTBV//qT9eWLV/PMqL//qnbndVgUqYRnUkcm3r+dbrVJx+/AQA4cH335:aVCVL//y9fh/Eo//OUXx+/hoJ","tlshash":"ee919a4aed825209e13fe779bfa20119e7052033a79791d47eec2184cff80698561fcc","first_seen":"2026-07-10T14:55:43.344068Z","last_seen":"2026-07-12T17:25:07.900763Z","times_seen":2,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/trade.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.081Z","timestamp":1783877077081,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/trade.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZKnI5zeFeHtlEQnuYzJ8DiZ2PakjeyX406WuACtDcqxDSJbXY%2B4pZT9pMo0P%2F0cTxk27dXUypObaA1TMgof%2F%2F60SlPydpNkgPBpLc0WJrna0n8YO1o1x6Yr6DGo%3D\"}]}\r\ncf-ray: a1a1be13cc045694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2040,"size_decoded":1489,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"90dee92f666ff11b9f1e428961ee6bcf","sha1":"79b05e02163f592ce42276eb86089c4c3da36a31","sha256":"b9204fadef8072d40c8d8f4474a4a3de6ff4d269b8495b5bb9052637553c4bda","sha512":"61ca025044469313a28c396f3a0255033fde8285b2318f6d5b96ad74b9d6b4723a3444bc8e7e5d130919d251b47e73d839ef7dd081ce2b84e6466836bc1fe5bf","ssdeep":"","tlshash":"45417c569c03d2095133a368eff20118e66a7067a70386b4bbde65458ff869c8773de8","first_seen":"2026-07-10T14:55:43.345002Z","last_seen":"2026-07-12T17:25:07.901908Z","times_seen":2,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/double-screen.png","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.099Z","timestamp":1783877077099,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/double-screen.png HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/png\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\nserver-timing: cfExtPri\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mEL7xPk7l5xX6%2FAijNTf1yf%2B2EBbcGC359HnChFePepK4DEa%2FGwPwiNiDCIfSnQidKUWVMmxakrX0F4Fp%2BlFiQk2xPZO2bIeOjdQb8DB3mJYfeEsFI6FbDNFMAo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1be13dc0c5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 284155\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":284155,"size_decoded":284976,"mime_type":"image/png","magic":"PNG image data, 1736 x 2026, 8-bit colormap, non-interlaced","md5":"ac90dc351209afad6ae36d2616ebb73e","sha1":"ddfc792091c71f15cc4bd3d80d3499d19bd9f945","sha256":"10704ee88c5b9fcd3963e95967ed32f8b5be4bab7c02ff323f00febda1092fe7","sha512":"6d9316337228fd4a6c3f2c966fb54ddd3236ba8e2624c2905b8fc5fd0a8d216eb2fc9a21e6f650857b4e8cffaa935e25b8a7d1bd99eef2bc6b9a7c3d5fe26ed5","ssdeep":"6144:53SMuQmwhJO5fYhofQMwJXLCJcrFqyhzmnkfclI877:b3DQ5fYLdGq5qyh8qwIG7","tlshash":"295423d264d88a05e30ed8b80d07894272a875a19ee95de52f8d7dcb14ccd6ea0cbd0f","first_seen":"2025-01-18T21:49:24.786459Z","last_seen":"2026-07-12T17:25:07.903361Z","times_seen":3,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":185,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/eth.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.102Z","timestamp":1783877077102,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/eth.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=O4uTtpirK6Xet%2FQIuagspLTC268n0sICkPw9UEwjJwX53IX18CkODN5ocrAUn0BiPVO6LFcJAyhY2az%2FohopAKRuA8TpsRfId04fUziPAr6US7DZrtxxIYddm%2FE%3D\"}]}\r\ncf-ray: a1a1be13ec0e5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1025,"size_decoded":1254,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b4140b368702c1a2a0c62215f61aefee","sha1":"c14afee9821f4091f0754d0a186c2454d3ac9a4c","sha256":"0e2d8f6f3c63c07ea6381033872e9ba6e2175efb951149e99ce68e51ba530a4e","sha512":"0b0a88d61f0e1aea18121b610eabb0ed6e2464bb4a03646eb4e6be406b3c39f0b67f7c27a7e3968ffe8d6a755d31c8f6e648a51679f2602ff4475e0dfb03c07d","ssdeep":"","tlshash":"09117fcd3908e8414694c339a78c21b5d6f385e7de4c8194c5447a3b35651d17d9fbd8","first_seen":"2023-11-19T01:14:24Z","last_seen":"2026-07-12T17:25:07.903908Z","times_seen":238,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/home-screen-phone.png","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.112Z","timestamp":1783877077112,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/home-screen-phone.png HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/png\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\nserver-timing: cfExtPri\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vLbPnaVhjU3CPGzqJxe1axMkUe%2FtybZmhDMaMW8ON6q1ZRzasz8AUsrRWgyofbmZ3uZZVK6WRbeK6rUllBv6zvgLmhxFYvhYgEKujnOivYpZCSpIwkgqXJOsjuM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1be13fc185694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 210366\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":210366,"size_decoded":211181,"mime_type":"image/png","magic":"PNG image data, 1411 x 1986, 8-bit colormap, non-interlaced","md5":"3b5e4248315a8817a8eb8bcd21e5939a","sha1":"0965e89f4115bf651bb32d552bbe854cca297ffa","sha256":"8f7150dc19892d988959a87a9d6ea1f0a9a5cae067ea1ff954559740b37a50af","sha512":"bcf7b3dfb9d6fddd75caa5df1788aad18d19db66eeed4a3d8dc1810d40947293806345fbd236dd5cd3d7625ac54e24cce32a6c91383a82e93616d5018c8d6515","ssdeep":"3072:+NRzJ0Cf6QMoQknEWldWhDdxHLMFRhZXQ5cCVbrMke3+X1aoz3gQ/UsQjHGL:G5JhH3EKd2BxoFRhds1rjeuXcyg76","tlshash":"cd2412c2195eea85f1d73076766adf4ef905e7891160acf7f3cbaa03694907b76028c0","first_seen":"2025-01-18T21:49:24.783725Z","last_seen":"2026-07-12T17:25:07.904456Z","times_seen":3,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":168,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.490Z","timestamp":1783877077490,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Jun 2026 08:37:23 GMT","end":"Mon, 14 Sep 2026 08:37:22 GMT"},"fingerprint":{"sha1":"CD:5B:53:23:61:72:75:37:AD:E9:F1:74:B2:D2:EE:09:81:05:55:E1","sha256":"9F:07:21:2D:14:EB:C5:C0:D4:2B:42:E4:55:80:7A:BB:AF:47:A8:BC:0C:5E:05:F3:2A:2B:1F:2A:78:4D:FF:D7"}}},"request":{"raw":"GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://bepfi.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 13388\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 12 Jul 2026 10:18:11 GMT\r\nexpires: Mon, 12 Jul 2027 10:18:11 GMT\r\ncache-control: public, max-age=31536000\r\nage: 25586\r\nlast-modified: Thu, 01 Aug 2024 20:41:22 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":13388,"size_decoded":14200,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13388, version 1.0","md5":"8c4b05d4371467ba1d0bc60839c6dcb9","sha1":"4b7bad6c115b963523d3cd7ad52ebf717135e24a","sha256":"bf9cfe01317e3758dd38982921dc1f26cc7243237d02e7ed90d3830b6f4e8ed0","sha512":"bbc736ea4982c31478ffa27ed69ad7c3efb1b6a691129a9a9d10dc6d2256022043ee22464f9aa2baa267de0c8d95fd7b6d28a8d58bfd997edb26f152e51243d3","ssdeep":"384:KPp1Y0kc+9CQmQ1My6T5E1nOT3bU4FTCFOZtDN:KvKL9CPQ1GT5EhOTrrZCQN","tlshash":"3852cf0d187aa401eddb2617b0cf0d0dcc63bef412be9bc11a60694adf9ac65b7412c6","first_seen":"2024-08-01T09:34:47Z","last_seen":"2026-07-12T17:25:07.905759Z","times_seen":3708,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":26,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/header.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.070Z","timestamp":1783877077070,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/header.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F%2FtAhVsCSIuIJ3aBONsSKNC2lkTEoc8pBIdKcozUlbEji%2FgQTLQdfNNviGgvES02Mz5GWSBfyrQdbR1Nj5xEb6bpwbIVVq8hpHmBm0fxH29eumdYcXItkLVkV1I%3D\"}]}\r\ncf-ray: a1a1be13bbfc5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4835,"size_decoded":2008,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"bcf80065886ec9c89c268d10575fe106","sha1":"d3bbb362395959b943d299ecd23e4d1d1933b732","sha256":"606f04f81788650c975ade66c7fce03f0071310e5c0d50f78a0b3917e3dfe136","sha512":"48c482b77dda3fef0cdde220b69fb104ae9e73cc1bb4a00b7e7d1cd5184b2ac3d1f2c162b0ea289f4f47723a274c625f75d7a7ca7584208484a013cf280b9587","ssdeep":"96:bkEw7W/1jmQ91XU9iwhnpmAskATGNRtOraT/8U/vs:bkl7CjmQ91E9iwhnpmAskATWRtOraT/a","tlshash":"a7a1fe09cb02311a6537a27eebe20a19f22530579b0351797b8e414f8ff6019c7b6ecc","first_seen":"2026-07-10T14:55:43.332312Z","last_seen":"2026-07-12T17:25:07.906289Z","times_seen":2,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/opportunities.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.083Z","timestamp":1783877077083,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/opportunities.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rG8UqrAjqHwbIZ6s7UDnAPF%2Brqqp3KO0fVqgb9UQkBLu7yYFyLWxn2BCmYc%2FMqbp%2F5dNCLtFgiSN6YZmwsl19P1TmMTRNz%2FtwBqcg1ml6RdLBlb6GcPNGolZacc%3D\"}]}\r\ncf-ray: a1a1be13cc065694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1333,"size_decoded":1248,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"fc99982ab5665f504ab78630b13e4f31","sha1":"c0cfe83e67c947212116a07c87937c2e3f29a8fe","sha256":"59e310ad51dca8ff398ac7aff30d4de846397b90a9ebac603f511f80d5bac631","sha512":"69a7506270d8f150b5c44cb5cf462b29628b8b462a4a5c796820ad5e7323fb67a18a695c085b15a4c52014453fab47043bdf87d6f2fd25aa733d2bb1b03a6d9d","ssdeep":"","tlshash":"8c216029c4722006d133d765aff2121ef587b073930789b0799c7346cfb85d85511f98","first_seen":"2026-07-10T14:55:43.336565Z","last_seen":"2026-07-12T17:25:07.911781Z","times_seen":2,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/app.min.js","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.089Z","timestamp":1783877077089,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/app.min.js HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/javascript\r\npriority: u=3,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hcw1cR11Madr%2FbGu4I5jXDZHDuODxgl4IeJr9xlxrQzEnzlqoa676u4NugXCA3lJRkoQzceFIGxVMrgETEJwEQGySYCu%2B%2FdPKc9E4Uw22yaPKkMmVRXX4E%2BHIpo%3D\"}]}\r\ncf-ray: a1a1be13cc095694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3615,"size_decoded":2211,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3615), with no line terminators","md5":"d07fddad2dbb2e1b33663063df276af3","sha1":"ff05ef5d12cab598273743b8ecba860d5fe3eb19","sha256":"84c100eb29667fada78eac7c2ef3831d2dfa9d01827c00f9a8c07a8da28231ee","sha512":"497e5b7368287addb7d29b29b80a3f89ee35f8b1fb5156b0b02bf27fbc6b238fbe78d4554ec7f879b982da6ff9b1e4750f1daf058c5f921c5032eec06afd48c6","ssdeep":"","tlshash":"c57122791314b93c02a30ad7e6e6aad07a343886d5411070a8b9ccaf1fd98d39371ff6","first_seen":"2023-07-07T00:40:59Z","last_seen":"2026-07-12T17:25:07.91701Z","times_seen":448,"resource_available":true,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/header.js","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.091Z","timestamp":1783877077091,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/header.js HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/javascript\r\npriority: u=3,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vERNtCM6DYxa2zOHFkG5lt7F3cFTHUaILZvPaWtXvbOO%2BMWfydHkp26518kFQKVSUCmKO%2BCa%2Bj4%2FCvpLJ8jSNDdHtmTTz5Nbv1t6v1DTiDzJ7A%2BkbM44TjHlgBI%3D\"}]}\r\ncf-ray: a1a1be13dc0a5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":734,"size_decoded":1089,"mime_type":"text/javascript","magic":"ASCII text, with CRLF line terminators","md5":"022389b461a846053b809318ae1f9875","sha1":"1c4ab9cf9acf530ef6191af6603b31befaa514dc","sha256":"7390aa020c894150ba30476545694b04d692af5bf04fb53c2a501163a1afbdfc","sha512":"77f18b60e6a65987670cdf24eeb6c954f6f67e6bed3bdc82d983835771315d5819d53ef0789df0e59a6a4522f5b80624976cb68a982bc5b552591f118f23f150","ssdeep":"","tlshash":"af01f52667047d7d40bb0fafe7e20e94bb2590d79461403630a9c98f1be25d1a6a6df0","first_seen":"2024-12-03T22:55:29.791653Z","last_seen":"2026-07-12T17:25:07.91822Z","times_seen":26,"resource_available":true,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/coins-screen-phone.png","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.113Z","timestamp":1783877077113,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/coins-screen-phone.png HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/png\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\nserver-timing: cfExtPri\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BhVNLE%2FQgWQ5ReMli4ODgNt5oZgoT2zvn%2FjLgX4rmLGmX%2FGc6BDQsinxCUc45yFug9sJs6h5NELMzRYWgjOrznMhUQukPXOnW26Hbu6W0%2FDUJVU17iQjmYldLTc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1be13fc195694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 223576\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":223576,"size_decoded":224397,"mime_type":"image/png","magic":"PNG image data, 1158 x 1810, 8-bit colormap, non-interlaced","md5":"566f22219ea787a603e16d62077179c1","sha1":"9b042df544b1bf31438249e3db2316f212bfb106","sha256":"60f2b1cf2463fe91e57f50b1751c8349120e6aa47d269ba544e1d8f087e6ca19","sha512":"88b58e716a3ef532ee8368de1b7299487d4d35768d4f14c07c86f3a96066de83b85ed08306c4640cd0c8084df2fd3a9e13ad803177b3d8f669c2181dfc9e335f","ssdeep":"6144:OHFcmS36B2I7kSZoP0sCKbDeGBz5DZve28LxxOWqI3T2wOU:H6B2qE0SbbpefLxxVBOU","tlshash":"1d2423a2edbd66c9d5229e9185eef78dc496a13737300f330c69c4ba604ac45bbcd4c8","first_seen":"2025-01-18T21:49:24.787779Z","last_seen":"2026-07-12T17:25:07.918943Z","times_seen":3,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":183,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.493Z","timestamp":1783877077493,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Jun 2026 08:37:23 GMT","end":"Mon, 14 Sep 2026 08:37:22 GMT"},"fingerprint":{"sha1":"CD:5B:53:23:61:72:75:37:AD:E9:F1:74:B2:D2:EE:09:81:05:55:E1","sha256":"9F:07:21:2D:14:EB:C5:C0:D4:2B:42:E4:55:80:7A:BB:AF:47:A8:BC:0C:5E:05:F3:2A:2B:1F:2A:78:4D:FF:D7"}}},"request":{"raw":"GET /s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://bepfi.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 13432\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 09 Jul 2026 05:57:23 GMT\r\nexpires: Fri, 09 Jul 2027 05:57:23 GMT\r\ncache-control: public, max-age=31536000\r\nage: 300434\r\nlast-modified: Thu, 01 Aug 2024 20:41:24 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":13432,"size_decoded":14245,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13432, version 1.0","md5":"4903a00d1c555c0846799302c673d6a1","sha1":"a7171422d5c6540cf3eeb0b0c7b7fda3973128f9","sha256":"0e637574ec102b93795e00daaa92eebdacf1dcee9133b123fb9b56ea8eaf7e14","sha512":"6416c3a2f32879f8fe571a4d98f7b2ca4bebfce1c5609dea723bd94afcb5be216ea6ee0870a797c46c45c52b3f748604041503f226b93ca3a4a6b17cddfce0a2","ssdeep":"192:NonRbzPS8pKCgi581CDQ+IZH2pRD325KUEjDLEysVlRLFOpy5EiKn+Alt:e1zPECgrCD9Ih2pRCxGDL4lFWiKBt","tlshash":"1352c09e6fa04053e7ee9e7bfbe73276c100d65980316038f5c80322db4238d1199cda","first_seen":"2024-08-04T05:56:36Z","last_seen":"2026-07-12T17:25:07.920393Z","times_seen":2068,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":22,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-12T17:24:36.654Z","timestamp":1783877076654,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/html;charset=UTF-8\r\ncontent-language: en-US\r\npriority: u=0,i\r\ndate: Sun, 12 Jul 2026 17:24:36 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1h2vRmfOK342yXixU4MNxJb4y7uFeaCuCqgugH0kk9n31upOkeLd%2FEK2Bc%2BQT7OQ0TG6ni%2FHHTduHV5Gl6ftLxK8TlHtu8QNgIJ40FqJBMjjnuBONhJ2ibBHLV4%3D\"}]}\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: zstd\r\ncf-ray: a1a1be119bee5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":135599,"size_decoded":32899,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (3259)","md5":"c50c7451d8150db8d876727f3d9e7245","sha1":"1f5e9f5efd9dfef357cef7d5a252b50bd59289a6","sha256":"f96455d7a42c499cff6e9368eb80715f28da006319fce9eccb844d70c4fddba3","sha512":"47d778a87cd747352a26f9780529b57365fd7c4a9c4d1b1f1d3965a6536a41d5a9e67072b800eb0bdd01775434f214436cda36cd34fbc5be52db6e42eb3938da","ssdeep":"1536:u0kvfBvfcFvfxVvfTvfKvflEDuAwUKYi13EAoL8QMH7fGM:BU7t","tlshash":"74d3f7f863f4b2a4e042e3e0eb2555667e5e54e7aa43c568f3ac0f849f428cdcc57885","first_seen":"2026-07-12T17:25:07.92103Z","last_seen":"2026-07-12T17:25:07.92103Z","times_seen":1,"resource_available":true,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":15,"connect":15,"send":0,"wait":117,"receive":140,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/global.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.069Z","timestamp":1783877077069,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/global.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sMz5ius43Cos4K6%2Fa6s90emTmQcWIGl5WlPjN%2B1Kjd0NyxDwsjsuIP3UC0A8mOSu8nlEvQPVyOTE0c7yVT6h0ZLJmXn%2FifjotvZdhVVl4sTeyow6dXfvX2XxM4A%3D\"}]}\r\ncf-ray: a1a1be13abfb5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1764,"size_decoded":1494,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"a8d93fe4cb300c7f9a22bbce83cc86c1","sha1":"3d14062501500248ccb9017bb838805b6e31ff1e","sha256":"99d96e2f263b22269e7550121ceb8356e6787121790b028607c611f885e1da63","sha512":"cfd4d2e3171e0b9cf23bdfbebf7dec662790326b1125d7cc0f3dcd7f212f89af79e851f063ec8123ac9d6751a08f141dec7e3b5e22e7a74a7f938c3ac2ae240d","ssdeep":"","tlshash":"c131ce6eda0350c2727b4e6c67a68319fb0501a30700467cbbccb7a5cfb557a46a0f8c","first_seen":"2026-07-10T14:55:43.335654Z","last_seen":"2026-07-12T17:25:07.922718Z","times_seen":2,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/benefits.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.075Z","timestamp":1783877077075,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/benefits.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vasVYYeIe%2FgMDGIgUMEDyjuyb%2BEszyVM48MqxdNdews0GDj3Ac%2F%2FxOM1K7S%2BwjiAa%2F7Xj%2Fy3ckPGhNp4jJK05I3CKwFmG01HpHt6UnB2r8DoD%2BiVIc4co5Cv1a8%3D\"}]}\r\ncf-ray: a1a1be13bbff5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2948,"size_decoded":1638,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"77dfdb598182ac4508b82ee68618b299","sha1":"f3db0dbf6510d5ec82a12c19a003d3ae94d183f5","sha256":"a39ee6353676bc0734a536a8c2b0083ac3e2f91b8050a872d20c7dffff98b1a6","sha512":"f677abf1db796da5b0a433a9e37c3a725ab1052e6db43c3d14b5d49294a1af198eefe03867121aab352515aba1267f2798122af872665ad65f79f70bdd4d6555","ssdeep":"","tlshash":"ac51593bc82525465133be686fe11a04e34de453d706c2a47adcb2498fba5185573ecf","first_seen":"2026-07-10T14:55:43.334533Z","last_seen":"2026-07-12T17:25:07.924282Z","times_seen":2,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/trading.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.080Z","timestamp":1783877077080,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/trading.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CnTWkcs6KdalV8p%2B8n803LTXZgrOV9Ccnl1X0nHwIIqGfMdEwil93rstFdzGfzNZpXwW2AF%2FSrd5P0X%2BkOtfwDxHd7sV8EYH2JOZwugbGZAVk4fwHblqF7pGQSw%3D\"}]}\r\ncf-ray: a1a1be13cc025694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4821,"size_decoded":1897,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"6520fb38f3ede23909325ed2a808b90b","sha1":"db387266ff56b7231d60ea3a09a3fbbe81d5b09e","sha256":"f5a7def0849d950c63a76bac47f7b6dee69da86ec0be502a12b340f2354add5f","sha512":"2e77110e798252c93b0c7ee50624541e5c0b843e1aa6e2baaf9bd4a0ef89a5457989f4e1e78102a485798da38fde1f5e609ee08e7ccff87934f00a91cf557954","ssdeep":"96:vVSkSCZRsV9Nf/V6CZ3Zqf/XVe9x0YCZn+9rB2cd:vVSkSCZRsV9WCZ3ZgVe92YCZn+9N2cd","tlshash":"97a12895c505b90a3333ba78bbe20259e66c20a3e70202ed7fdd1654cfb6564c973e9c","first_seen":"2026-07-10T14:55:43.340859Z","last_seen":"2026-07-12T17:25:07.925397Z","times_seen":2,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/busd.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.108Z","timestamp":1783877077108,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/busd.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cMDcih%2FqevutqD3KrTvHDF53faZcWDCQgLi88Lot6sv7sl94ewjTo%2BuGJd4k1ChD6Nv%2FqxqljuEczSUszVc1zQKpGA2Q4mc3tFb3%2FR30EDS77ufCfVECkkWU%2Bvw%3D\"}]}\r\ncf-ray: a1a1be13ec155694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":942,"size_decoded":1278,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e18c9a55ae92ba734105e2ebdea06679","sha1":"0c5927bbf67033788a0829b817e8ba735da3b026","sha256":"23a5afc32f0a882ae287456596c37ef02183563af26c57619e91c66a90cfef21","sha512":"0aa09904c5489dd182148d429ba9497aacccb895b6c7e7f07b77e3dfcbc2af8bb3a02f7f5a3ddbaaa7eeff9b5659193fe3724b0003c20e78ab0e7b7b00529d16","ssdeep":"","tlshash":"6d119e24d204aceff50dcf4483f0aad12e626ca382544c7cdef81a79d755c570c5529d","first_seen":"2023-11-15T03:06:45Z","last_seen":"2026-07-12T17:25:07.927064Z","times_seen":361,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.478Z","timestamp":1783877077478,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Jun 2026 08:37:23 GMT","end":"Mon, 14 Sep 2026 08:37:22 GMT"},"fingerprint":{"sha1":"CD:5B:53:23:61:72:75:37:AD:E9:F1:74:B2:D2:EE:09:81:05:55:E1","sha256":"9F:07:21:2D:14:EB:C5:C0:D4:2B:42:E4:55:80:7A:BB:AF:47:A8:BC:0C:5E:05:F3:2A:2B:1F:2A:78:4D:FF:D7"}}},"request":{"raw":"GET /s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://bepfi.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 13408\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 09 Jul 2026 03:30:52 GMT\r\nexpires: Fri, 09 Jul 2027 03:30:52 GMT\r\ncache-control: public, max-age=31536000\r\nage: 309225\r\nlast-modified: Thu, 01 Aug 2024 20:41:26 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":13408,"size_decoded":14221,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13408, version 1.0","md5":"39aff03d2a35b1c80f210051f35d4b2b","sha1":"35e71e31bff4893da229049a3ababbb552f46ea0","sha256":"0a7fc3de6341e5ab2853f213dbf792903cd35039daa9530a649a20a877ccac8a","sha512":"9d491cabb8fc51d748fc9403696d6f73e4087b266b53ce99dd1b384ec310f3d53afe208779f471629c65388b67e98ae804bec7b84048d315274ab16c54e56b23","ssdeep":"192:+cFH4GkIebSTLOFnUiyLnVApb+QBR/X4RfsnYQgYuPLOa3ze/5jaFt9q4gan:+CYAqrUzMbF/4RcuOa3zc+n","tlshash":"a152bf2d9cd48573d2e850bd2c740e4919ae6f3a24cce086ee3a25d19e2f7d023e8537","first_seen":"2024-08-04T05:56:36Z","last_seen":"2026-07-12T17:25:07.928921Z","times_seen":1536,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":32,"send":0,"wait":17,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/domain_icons/1_1782045117587.png","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.569Z","timestamp":1783877077569,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /domain_icons/1_1782045117587.png HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 21 Jun 2026 12:31:57 GMT\r\ncache-control: max-age=14400\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/png\r\npriority: u=6,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\nserver-timing: cfExtPri\r\nserver: cloudflare\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9SzX%2FouQ3FUdeNhexnJ%2FeaNMzc3Hugwfo3tSIyUYONHbrV8yiEHNuFwyIbAds5o81CJR6IrUnlOqsDgie%2BPvVXrvGRFUuYnUth6xGPYwasVIfxWwSDwEijA0jwQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1be16cc295694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 105242\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":105242,"size_decoded":106071,"mime_type":"image/png","magic":"PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced","md5":"b3510422fd13be6bc33314036609e3f6","sha1":"dc7084c60522ce44c9d628ed1e9c58b0bf4d2938","sha256":"8f21fd9b58b0cfbfb88de21bea323aed79ae8afb10fd28edcf7078628dd30c57","sha512":"6ff8f071d208c042b473d1babb4669238c47219f9752cdc3455401736d7adbfa5bb66dd15ff4e92e4275ed9f547f4725227bc05ab53275e2e7761efa9c0e0fa4","ssdeep":"3072:4RhHUnPVtDd8oTbeLdJr84zvJDQ2uhUrXdImC:4Qn3DimYrfrNImC","tlshash":"eba312f5e0d01e2c5a2b531e2ca6a712315eeb342d2df5ca782cbcdb06254edb655f20","first_seen":"2026-07-10T14:55:43.314054Z","last_seen":"2026-07-12T17:25:07.929526Z","times_seen":2,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/css2.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.063Z","timestamp":1783877077063,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/css2.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7CM6%2FzQzys1Z8%2FjaWOP%2BRRYZmPRBUxtZLGB3rYoaX1Qeb33wY0SZUi2XyYasePuTeEhExVJ1GnUmfUzN51M3NPOOXxkCs%2BWgFbV6LJzGiZmBJE8x6onWhGir2Ko%3D\"}]}\r\ncf-ray: a1a1be13abf95694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7283,"size_decoded":1605,"mime_type":"text/css","magic":"ASCII text","md5":"777c3d5537f2ac8e9dab7afe116566a5","sha1":"97f2a847b7a2baa16708ffb4432cb9117a7a8e1e","sha256":"4ddcad003225a5fc6d0f54123774b341176020a00830321808a9550ea5067ddd","sha512":"14c9549958f2dd00794966e8dc553fbdcb6d7d67d9ee599665cb785d52b256030fef37e4393a1ac858379b48a702a3230a59981b9c1ee80348f2fc40c08b87b5","ssdeep":"192:KNE6N/NAN63FN9NIYNYfNApNfNINj3mN7N4qfNRNhXNcNHNy3cNaNyxNs:wEAVuYrTP4Av1GTMBhHhdqtgqgks","tlshash":"8ee19c91045ad400eb830cc277cfbe3abd4f51266486c4b9ebfd58a8adebc27525874d","first_seen":"2026-07-10T14:55:43.310621Z","last_seen":"2026-07-12T17:25:07.930946Z","times_seen":2,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/normalize.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.067Z","timestamp":1783877077067,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/normalize.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gfgIs8fDl9sY8K%2FmQnyZ2JWtIYqjgTtt02Z%2Bvk6gKqZlwLDXGvwX4%2B7fFQhINUYOlb1GAW00nsV9O2pWfe1O0gtGMXMRz%2FV9ZNF9EkHEA%2B%2FJ2fY0T9njFFVCfTI%3D\"}]}\r\ncf-ray: a1a1be13abfa5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6609,"size_decoded":2701,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"d8a232ca4c0d091f29189d87889a70d9","sha1":"c5a733326ecb3b776061d0cbe583757bc9ceb94f","sha256":"4dc93d6ba1454d586d9aac567a1fee2dbdac99bf3274c733ec35e0d4c740d50f","sha512":"93aa9cd14894f15651b947a495a23fef2be9122f34bb35398c664a9cca64a54e095ccba881f8bb7179948fc517a5333e720bb7999458cdf6840d5ce7b732c22d","ssdeep":"96:FCeGD84G0k7M0ZUn3PocEoSXbR6n5QABm8xtnU6Zdaazbz6Cz2ns:FiD8KnAcEo46nFBmgU6vaaaCis","tlshash":"77d10f911b413b63a2b20e34b76b6649f36011778e0434dc7ce122a49f657e9d664fcf","first_seen":"2024-10-11T08:34:40.534194Z","last_seen":"2026-07-12T17:25:07.932155Z","times_seen":77,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/jquery-3.4.1.min.js","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.088Z","timestamp":1783877077088,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/jquery-3.4.1.min.js HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/javascript\r\npriority: u=3,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ob%2FQPKItQByfV4UnDCm0rxGxIQd1TKQLLIKRjfulhyj9xaGnSFItMF9KcEcKf6iw4kX%2BshNYadxtXZfsC3SJLa7JW0vIo4t3pi3R2VbuQOtS38TkwFzAtuyPePo%3D\"}]}\r\ncf-ray: a1a1be13cc085694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":88147,"size_decoded":33555,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators","md5":"a6b6350ee94a3ea74595c065cbf58af0","sha1":"b15f7cfa79519756dff1ad22553fd0ed09024343","sha256":"412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb","sha512":"f5a9c6aee347c155e4dd796c51716b7447bc22ae44741fceb6bcfee02f955ad4063d38613f241108a3e1f3e1f540fcaed8d9848b9a0fb823c00955cf9a19efad","ssdeep":"1536:jTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPmt:jgZm0H5HO5+gCKWZyPmHQ47GKR","tlshash":"a08319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-07-13T06:48:22.845703Z","times_seen":5487,"resource_available":true,"data":null}},"time_used":209,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":98,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/ltc.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.103Z","timestamp":1783877077103,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/ltc.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WVCdGAQ7epAmkOpXNeY9j6vbe3YIMwamyws0AMjRY4BTRm1%2B8izco7yH80i8ZDQHh%2B%2BkAW7H09JmOsU6q5HshidJerDrM2yMenffZrxYw3nYKbB5vPa4n9Tm3hs%3D\"}]}\r\ncf-ray: a1a1be13ec0f5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":753,"size_decoded":1326,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1357667ba2495b5b9b624e477f83c544","sha1":"841592b39e45a36429a8d5a054c08e5c7c934a6c","sha256":"19a2412000c4b36f27b784a6f0ae5d074945770bcb9d3433aa8e9cf26a4cb39c","sha512":"67f23837d53730f260685d63066c729ba7cc5433133643d58f5d6af5420fdf8622a5a6d77d2e57e429914848a8ec3d906c5dbd35ca78e327afb134e9f920d8f4","ssdeep":"","tlshash":"fc01d05d4780dc7d6591866443b461d16376b047c78149f4dceb267bf6058d05254bac","first_seen":"2023-11-19T01:14:24Z","last_seen":"2026-07-12T17:25:07.933341Z","times_seen":357,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/bnb.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.105Z","timestamp":1783877077105,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/bnb.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9vXAV%2B84aPn6quaGEtWvuSYVOczA9RiTuVzB%2Fa5BZsSoe%2F7RUaaHjSHdH1eAMmRxvmy4BfUtlZTx72iWvNbl5t7eW2mExKO8shXtKaMSsNBwVb5YihsU33JwnaY%3D\"}]}\r\ncf-ray: a1a1be13ec115694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1871,"size_decoded":1659,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"faad1f8773e47415f372e48416f460e9","sha1":"9e1e10f8554a43fe3e9e870b7409636370af597b","sha256":"1e3f4850b5e106283bab874805118c2bc246923e52ac418009c0af133f5af545","sha512":"55966d0ca64f991e97ed14bcaced6a7ee4b7667e4cb33f308c7c92794e5116ab2a86be72528f880a111e593e6c01cc56b00e40cf786768de954a1184b7647154","ssdeep":"","tlshash":"863101ac41b6cc3de23583f409b052d816e6ac77f100347cb4e59b52bd24ad72a85ede","first_seen":"2023-11-19T01:14:24Z","last_seen":"2026-07-12T17:25:07.934616Z","times_seen":356,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/coins.png","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.114Z","timestamp":1783877077114,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/coins.png HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/png\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\nserver-timing: cfExtPri\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=D0%2BbfQbvJNefF1nHMbQ0Yfx3oCUEuT31BwFCZwtL7Us7EsxmmkGfiieEaPW00OR47aVCqu4rKvx1c8F15ugwTMOcEZWAiyfCdygBq7CUsQ3zpqey0HAiXQKB8Ds%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1be13fc1a5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 200007\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":200007,"size_decoded":200822,"mime_type":"image/png","magic":"PNG image data, 1722 x 1230, 8-bit colormap, non-interlaced","md5":"062aa992017a48ae0d0711e6fbb3f2eb","sha1":"996189e5f991c2d24811c8ce71916a5b982e67f6","sha256":"0d85fb99cc050b7ba875be92d23cca8a5b64f3f2e8a1624fe7a6ed1b8a0572ea","sha512":"81c133b30d3f2b6cce3724eaed9ca6a0f516447132884a707aee44419fdda658f25c296f98c7c7ff18a45cea064ec2380c85413219d3c1ce2ddfb6a652f2e3c1","ssdeep":"6144:aB1tF2er0LiIb49Zxc4pSxZyKUgwq8oCHto8E:S1tF5rmiIsTxc4pcy1XoCa8E","tlshash":"a214121a8572c66ef427f234279644cdb974d3c6b22e8475b2bb018b92410a4f2e5ff7","first_seen":"2025-01-18T21:49:24.785172Z","last_seen":"2026-07-12T17:25:07.935248Z","times_seen":3,"resource_available":false,"data":null}},"time_used":291,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":188,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/usdt.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.106Z","timestamp":1783877077106,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/usdt.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vVLwoiHoTvq6Muj5uVdKXOW7Nkp2jz36PblCdGuRT8O6uSFYxLSCEFVhFLAbAUn%2FiEXDN7khmbTPchpFPsYdZcQ%2FLmG6Qkdo1NHcGDuaYSDsHO8fc5Z7nD2ukzU%3D\"}]}\r\ncf-ray: a1a1be13ec125694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":704,"size_decoded":1224,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eac1f7bb15967c89034b440b095ad74c","sha1":"5da1c6617fab973a2501cf6c01e083bf45aa29fb","sha256":"e0636ccbdd55d437a62c09b1355f2f018614418dc9b28d223bb2820fcfd88765","sha512":"d1aa4e69ae573e30c08d4337a91e4602eadadc28f3ef2b08e0776c156329a0eb3dcc7abe9384c4718b5c12a9d0c32c6b3455178d724b36ece1b716f0cb3130c4","ssdeep":"","tlshash":"1d019c794145c95cf51085a9db99310425b871fad2f258b8f9da12127c41cf60834fb6","first_seen":"2023-06-29T23:08:25Z","last_seen":"2026-07-12T17:25:07.936048Z","times_seen":416,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/bch.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.110Z","timestamp":1783877077110,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/bch.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AwA8lNkn5omanLnTWLaHOcJLEqx%2Fui9b%2FaOp%2B1IG%2FxYicLBy792XlYT%2FLMklMcwwflKjxxpnJuIQmzWD1Ac1lUYjqG2mpu3y2Kk1KxLvdi7gxq0OnIl7DxqdMqg%3D\"}]}\r\ncf-ray: a1a1be13fc175694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1216,"size_decoded":1478,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"08ba28bf3baad9e9d8b052b67491a857","sha1":"c9d7a01dd78d35dab7c9ef244df783459db22487","sha256":"0d3126a3953282479600ad2e7dfbf1ecace0456416bc25428894c5c7b7d1dc3b","sha512":"f0f78e36085c35ebcb92608ccf15397ed0531aada7d284ac09e992a29a6f61fc81b35245c1b320edd02496f774918dd2977eb18e7ad07bdeb1aebc45cda56a0f","ssdeep":"","tlshash":"8321cdac62c8cea84928c7f56d25d0b0d59c92df6458f30ed444d236759a0fd65e0f06","first_seen":"2023-11-19T01:14:23Z","last_seen":"2026-07-12T17:25:07.936734Z","times_seen":207,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/companies.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.076Z","timestamp":1783877077076,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/companies.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CJW2UbV6Qk1tu%2FhPErWh7uhwExi1xefgA581QSv%2B%2BSPPPi3RTy%2Fmyr1Gcn2e4pEM9KnC5kDfXZDZ8J%2FbhsnVdARgCdzFoKi9wbI4IxjpIblIAOH4iw84CuT5ABo%3D\"}]}\r\ncf-ray: a1a1be13bc005694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":705,"size_decoded":1091,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"615121497358023398ee23b1e1d1bacf","sha1":"da1897894756f802ada32b39d9b65e3678e24491","sha256":"adfa320cb36f7dcc5c15c72b7805a81f7b04c32fe68adcc34ed25234ae55fcd4","sha512":"05c37f9d34fe5bbbf6135cceb3621090f9f946c0f49c15d3bf002b8ca4a8eb5897c9e1600a658ebc8832cb233c49b8a4b1fb86e4bca43ea5a7a2920df5b11a70","ssdeep":"","tlshash":"1b01fe695813600ae573f2a40bb54001f4d25663d70ac1f575dcb544cfb86ada573e8d","first_seen":"2026-07-10T14:55:43.31839Z","last_seen":"2026-07-12T17:25:07.937709Z","times_seen":2,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/footer.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.084Z","timestamp":1783877077084,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/footer.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VlMnHH0zakG3PbBOCxHn45pUErMoUZvOalm0w4KZrMF6rrbI3d5pGOPuRDAWh0FCVCkYKmHoLECPfX7%2Fm35PJO2umpxD6FDbPemeA19cnc9GvBxvzF2JvpkjIyg%3D\"}]}\r\ncf-ray: a1a1be13cc075694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2598,"size_decoded":1527,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"32674ecb83ec462b0ccb491ded3c3b79","sha1":"0bb7399ce0557c47ec93e297cfd9cf6e93b8257b","sha256":"464be4670722fb2ebbfa95cb65e0bfc8acc994797356bbc6ef6160f24f6f138b","sha512":"0b64ebf0576d58976392d8226936cf5f14674a13c13d8cf4746c7e318f8c36b25e9c0ca362537ffd162ead04c624aa3b07dfcbd54daf64f2003ffdb7a3c6a880","ssdeep":"","tlshash":"d9515a29f621500ab1375b78fbf35255e268505352068278fedc2348cfba1579971fcd","first_seen":"2026-07-10T14:55:43.323733Z","last_seen":"2026-07-12T17:25:07.938676Z","times_seen":2,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/domain_icons/1_1782045117587.png","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.098Z","timestamp":1783877077098,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /domain_icons/1_1782045117587.png HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Sun, 21 Jun 2026 12:31:57 GMT\r\ncache-control: max-age=14400\r\naccept-ranges: bytes\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/png\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\nserver-timing: cfExtPri\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=imT%2BtrZ8NuAE9z8QTmqFzssEpTn07g%2BPUpl8pOW9w6SWe28MKE%2FNQ9IbZ%2Fao0A1LJ8w6oeUnu8ROCB3ggYu%2FgiOgG2e8l0cAhfEt%2BfKEceGRroXcFmzvJjrXtdk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1be13dc0b5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 105242\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":105242,"size_decoded":106067,"mime_type":"image/png","magic":"PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced","md5":"b3510422fd13be6bc33314036609e3f6","sha1":"dc7084c60522ce44c9d628ed1e9c58b0bf4d2938","sha256":"8f21fd9b58b0cfbfb88de21bea323aed79ae8afb10fd28edcf7078628dd30c57","sha512":"6ff8f071d208c042b473d1babb4669238c47219f9752cdc3455401736d7adbfa5bb66dd15ff4e92e4275ed9f547f4725227bc05ab53275e2e7761efa9c0e0fa4","ssdeep":"3072:4RhHUnPVtDd8oTbeLdJr84zvJDQ2uhUrXdImC:4Qn3DimYrfrNImC","tlshash":"eba312f5e0d01e2c5a2b531e2ca6a712315eeb342d2df5ca782cbcdb06254edb655f20","first_seen":"2026-07-10T14:55:43.314054Z","last_seen":"2026-07-12T17:25:07.929526Z","times_seen":2,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":141,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/btc.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.101Z","timestamp":1783877077101,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/btc.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ab9RP0WXyguO78%2BWDDvoF6pG%2FbQuI6GhVMGH3zC1Wslu%2FmMIU5P5M6zjF0lxyzrpuum6N5iUJGZDKCRLL8J51ME1Ya2FLf0%2F%2F7sQywIANrDuMMwzsSocsgog5Mo%3D\"}]}\r\ncf-ray: a1a1be13ec0d5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3705,"size_decoded":2595,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1e959a957e7815d3c97ffcfa927a6ac3","sha1":"be033b9cbd925aaab0b6244f715c5d3f34d1cd5e","sha256":"af4022bb60633db1a667a52e1746eeefe6384b81825b13155a93b47f88cdc3ed","sha512":"244d59641af74b45d0b9079ccf7a3f9c241e8888a6fb15373140a730cb21f7fddcb356ccac93eb91e1c854e848f7be1ae92987176e5924ac8bd90d456014b658","ssdeep":"","tlshash":"7671b799e3fd84d6e31c8564ede1250a875c609342040d08bead5ca4efa25d2f77bb98","first_seen":"2023-10-25T05:58:22Z","last_seen":"2026-07-12T17:25:07.940162Z","times_seen":382,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/usdc.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.107Z","timestamp":1783877077107,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/usdc.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LTqUcH6N5HfqKeJTEeZ3gVpeiVqf6vz5chOcajJZxXSyM9yNQqBzJyznMJctAXEU6pemvZ2bBB0%2Ftc2fh3JDR4RkGGbG54RHupOfo7FYIMChtvQSsaPNYtJ9IMw%3D\"}]}\r\ncf-ray: a1a1be13ec145694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1626,"size_decoded":1758,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"94ec50bf272c2ca70d2741d9794652b9","sha1":"984e715c5968afbe271b777a11cbbf1434933215","sha256":"a59ffcad23c4de45b0389620bf9bf14811e606e22bbf2f674b00baaabeed6500","sha512":"c922eef8d1002995de7e76e08adbd7245c23bf2eb411ae7df1776423503b442a9838cd471eeb00753ad79b80742eaf65d7fd8f3232682f2956a58c6846ee3b79","ssdeep":"","tlshash":"483110068204dabdfed6062cb27038c476f1a99ff271d0e8aa6f1057d08cde0759c6e9","first_seen":"2023-11-19T01:14:23Z","last_seen":"2026-07-12T17:25:07.941163Z","times_seen":331,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":113,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/assets/img/cryptoicons/doge.svg","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.109Z","timestamp":1783877077109,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /assets/img/cryptoicons/doge.svg HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: image/svg+xml\r\npriority: u=5,i\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=onnG7hgk8eRw4UbPb%2Bo%2FzHIDdyKm3Yol3SiDvClhGjxFOvXYtmau%2FCULv4hThxFuwSQ%2BoYbi7VqMo9VX1pE5ytRW9btbmh3RrFqdDkZBI3cUjktZ95BQ4WU7HFc%3D\"}]}\r\ncf-ray: a1a1be13ec165694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48154,"size_decoded":18960,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"67d2dfdb52eef2b80841495b78f1018f","sha1":"e6936e824ce5c278de5f8d7b501089499dabb680","sha256":"b6cb5aced522b0baafd4f2e9f965ec537a4d6af3e6abbbde71adaa3f502cf2ad","sha512":"5b6edd3c5cebbcd506cc31e647dfc89ad60072ab02213c7ae2a64a8bfa3401c8494068bd58ab44d98c0626567c80db60be19cb8c98bb8367a689af6f7084095c","ssdeep":"768:hf0GUz54Ieqz06WiyE7ujsxZHiU4BwGB6SoBj5I2Pns2v+TihJ:+pD1WirujsxZfeMIqqiL","tlshash":"3d23cc3dc358e3399c9387bcab2aa0e6f4ce55afc1e0d3985169c4b073911d8a38d9d5","first_seen":"2023-05-24T12:00:49Z","last_seen":"2026-07-12T17:25:07.941827Z","times_seen":424,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":91,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bepfi.com/landings/3/index_3_files/features.css","fqdn":"bepfi.com","domain":"bepfi.com","tld":"com"},"ip":{"addr":"172.67.136.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bepfi.com/","date":"2026-07-12T17:24:37.073Z","timestamp":1783877077073,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bepfi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 11:30:03 GMT","end":"Sat, 19 Sep 2026 12:27:48 GMT"},"fingerprint":{"sha1":"D3:5A:E3:57:F6:AD:BF:4B:EF:D9:4D:AC:E0:E9:31:D7:A7:BF:FA:15","sha256":"E7:BD:36:74:16:CC:A5:92:3B:13:5B:8A:4A:ED:A1:9D:EF:8C:53:64:04:91:9D:79:8B:6A:22:EC:D3:F3:89:4F"}}},"request":{"raw":"GET /landings/3/index_3_files/features.css HTTP/1.1\r\nHost: bepfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bepfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nlast-modified: Fri, 19 Jun 2026 16:52:04 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\ndate: Sun, 12 Jul 2026 17:24:37 GMT\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jJ%2B5zAokgz9q04xosDfVA8uGsXuc7Xs3JyQeEvubcms9TIw11WiqFEmlcie8xGq4qFN0ajnpbVT1fmRfP%2FdlznJFVSRiOJN1Bz7uSuThHpp6CzoZMWteMp85qsE%3D\"}]}\r\ncf-ray: a1a1be13bbfe5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3170,"size_decoded":1554,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"c280c3b660c15a533f8749cb1b27c20f","sha1":"6bc3c541ae9b1bea1eca64e69d0489a77142ff66","sha256":"45c3508af9d5b22581c1f3db3c569a931d2b9e2724553e62f293513ea79d8779","sha512":"935fb69dcfa5bc84b74dc2c518159f108309555d5a53361b4d578f1592114bf39028aa35baa24a333d5048472bcba775191132906a395e1c576f653e2525796f","ssdeep":"","tlshash":"b051c4aed42525471133f37aabb24619fa5900a3e30a46f07aacd3454ff81694477dce","first_seen":"2026-07-10T14:55:43.34921Z","last_seen":"2026-07-12T17:25:07.942965Z","times_seen":2,"resource_available":false,"data":null}},"time_used":123,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":123,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"bepfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}
