{"report_id":"8f3c4dbf-0cff-4fba-818b-f02c6de3cf47","version":6,"status":"done","tags":[],"date":"2026-01-25T03:17:27Z","url":{"schema":"https","addr":"trustapp.at/","fqdn":"trustapp.at","domain":"trustapp.at","tld":"at"},"ip":{"addr":"37.77.106.99","port":0,"asn":9123,"as":"TimeWeb Ltd.","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"trustapp.at/","fqdn":"trustapp.at","domain":"trustapp.at","tld":"at"},"title":"Trust Wallet | Download Extension | Crypto \u0026 NFT Wallet","dom":{"size":9748,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"fa5b66d52b7abec8583890109ab53c8a","sha1":"50ec5b46bf9c9afc4bbceabae2bb6791115446a6","sha256":"47b0a907326b58cfd16675808251131e2cdd6bfa769b890e2a51effbbaca7f7c","sha512":"2643e3c9c00ffacd06e42103b5f6033ce9c07e83a693dac559185e2f09d22cca1873afaa68b82ed8aa68198a4412f1ca76c600b2a8abf7a858a3fc8c7ac50139","ssdeep":"192:VvzExthVM0zdNtPhTqN9C65XwIyJLcO+4:VYvztCL4","tlshash":"6112a79bc7e74263594352291bfa93f57b215407e60adfb53dcc82688f81a9048b73ce","dom_hash":"domhashaabc69dafaa8a4edd2cbd1af408c29f2","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"trustapp.at/","fqdn":"trustapp.at","domain":"trustapp.at","tld":"at"},"ip":{"addr":"37.77.106.99","port":0,"asn":9123,"as":"TimeWeb Ltd.","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-01T03:17:27Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-25","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"trustapp.at","ip":{"addr":"37.77.106.99","port":443,"asn":9123,"as":"TimeWeb Ltd.","country":"Russia","country_code":"RU"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-01-24T20:35:01.118328Z","last_seen":"2026-01-24T20:35:01.118328Z","alert_count":6,"request_count":2,"received_data":197048,"sent_data":909,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"trustapp.at/","fqdn":"trustapp.at","domain":"trustapp.at","tld":"at"},"ip":{"addr":"37.77.106.99","port":443,"asn":9123,"as":"TimeWeb Ltd.","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-25T03:17:06.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trustapp.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Nov 2025 20:22:40 GMT","end":"Fri, 06 Feb 2026 20:22:39 GMT"},"fingerprint":{"sha1":"3C:D1:D6:C6:78:FC:B2:11:F5:EB:31:72:2D:A9:2E:F6:C5:69:10:2A","sha256":"1A:65:D7:C4:31:2A:D8:CA:3A:80:E4:16:EF:38:AA:74:3F:80:24:C3:49:45:43:80:3B:F4:39:2B:05:00:AB:84"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: trustapp.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 25 Jan 2026 03:17:07 GMT\r\nContent-Type: text/html\r\nLast-Modified: Sun, 09 Nov 2025 16:58:44 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6910c844-2619\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9753,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"12c709d50321465bbae4c1ba145b9568","sha1":"fbbb2368ac0cd7ebd9fc1f01c8e81fac340c577c","sha256":"4af247688293e0cb91f9440cc93735e1c0bc428d2135bfe6a6cd3281240f948c","sha512":"6a2fda13f5846f9b0ff54e83f1017c9eefb07c59fa41b205b7708061ed9710df062aa900dd1a3a00776405d9c1b332e33b1c4159ca135caf64e982420bf8478c","ssdeep":"192:X2zExthVM0zdNtPhTqN9C65XwIyJ8cO+p:XrvztjLp","tlshash":"3512b99bc7e74263594352291bfa93f57b215417e60adfb53dcc82688f81a8048b73ce","first_seen":"2026-01-24T20:35:08.830957Z","last_seen":"2026-01-26T08:23:17.320412Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1416,"timings":{"blocked":659,"dns":378,"connect":39,"send":0,"wait":92,"receive":1,"ssl":244},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-25","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustapp.at/favicon.ico","fqdn":"trustapp.at","domain":"trustapp.at","tld":"at"},"ip":{"addr":"37.77.106.99","port":443,"asn":9123,"as":"TimeWeb Ltd.","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustapp.at/","date":"2026-01-25T03:17:07.434Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trustapp.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Nov 2025 20:22:40 GMT","end":"Fri, 06 Feb 2026 20:22:39 GMT"},"fingerprint":{"sha1":"3C:D1:D6:C6:78:FC:B2:11:F5:EB:31:72:2D:A9:2E:F6:C5:69:10:2A","sha256":"1A:65:D7:C4:31:2A:D8:CA:3A:80:E4:16:EF:38:AA:74:3F:80:24:C3:49:45:43:80:3B:F4:39:2B:05:00:AB:84"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: trustapp.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustapp.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 25 Jan 2026 03:17:07 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 186813\r\nLast-Modified: Sun, 09 Nov 2025 16:55:41 GMT\r\nConnection: keep-alive\r\nETag: \"6910c78d-2d9bd\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":186813,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"f31065f3cd27ee747f132dfb9f3004ca","sha1":"b1f3cc4a67b0b7c4cc1c8aaa594f4b141e574794","sha256":"aad2a3e5c939abd19c4960dbf40300fcfbf4b1a97b23aa08877f9ca689e20b38","sha512":"e6505d407245ec6a74b73604035572c9ffe3cbb314318e30e0c2aac3a355983d4c250066e25fafbf438fd6989ba70285e30572e7eda117a47e09dae7c40f81bb","ssdeep":"3072:jUcVblV61/KfYGyjVoEovkLYqFYUU9PoPZXLNnYfKDKwM0w+W3:jHVblV61/iYGyjVrovkLYmYN9PoPZXLe","tlshash":"dc04f44aba56d92be01137bcc9b3d1f0e49a6d40fa13b48366f47d87f8318a9cc095d6","first_seen":"2023-12-20T05:41:30Z","last_seen":"2026-05-31T07:11:05.716702Z","times_seen":265,"resource_available":false,"data":null}},"time_used":309,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":145,"receive":164,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-25","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"trustapp.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}