{"report_id":"a01f1891-4d32-41fa-8553-1a0640b55f02","version":6,"status":"done","tags":[],"date":"2026-02-07T12:42:50Z","url":{"schema":"http","addr":"krakenapp.vip","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":0,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"final":{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"title":"krakenapp.vip/","dom":{"size":49110,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (42880)","md5":"316aa9e93365189b2dc1fc0f45318dee","sha1":"9a42f1b8449301d77677fc91a074a6bdbd3e331d","sha256":"d0176ff936052109ef9854dac5335445b4ccb1b7eb7ce95f802e05dea1f5c9be","sha512":"79404d652d6210c7b1562f08f143d082542487117842583b85b047596e6f85f6e2e18a5846ca0fc4100f1f2ecc1032fd39765067ac18a5f6b341982d3dd9e301","ssdeep":"384:CKMiMukQpH0b5n4dHluvsoan+rIAtoA4c1Hn3X5Js+TMtPMbmeoHwP2JY8:t0ufzu/anDAtoA4c1Hnc+uPMKeoHTJY8","tlshash":"eb23486a680118a211e7ddc2e2357e2a71f5f30f908b86a81fea56563fc6c71bd1b074","dom_hash":"domhash8197f983e3387d9c21057f26d3ed2095","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"krakenapp.vip","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":0,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-14T12:42:50Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"krakenapp.vip","ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":138,"request_count":69,"received_data":7840309,"sent_data":32753,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.zzladmin.com","ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"domain_registered":"2025-10-03","domain_rank":0,"first_seen":"2025-12-01T23:19:10.812744Z","last_seen":"2026-02-07T12:29:54.778612Z","alert_count":0,"request_count":15,"received_data":67084,"sent_data":8005,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"21190749030bdb1f707c9bb79e6679a6","sha1":"1bc36081e2d382532d31436b50e88574557efbd8","sha256":"b0aad3a34d4cfbc4765813436410dfb2a1175c61f130caa02fcca276d0afcd74","sha512":"9c194471e930a6908701b04eb424f617a71479d1cd659d025a066d239ea56aac8f8b8923194863722c6bbfd1670be3e8dba3de0cbfe8ed5b0a2eb1515c42d094","ssdeep":"","tlshash":"49c08cc8a1d32d001602645110af29e8a028402770485b428da4d8893e221b88237e98","size":145,"data":"","first_seen":"2023-07-03T15:24:20Z","last_seen":"2026-06-04T23:17:32.325466Z","times_seen":72,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"973e831379b94d060af9b2e9bc78f49e","sha1":"83448e2204ac7f3afafeb07ffa3d2b92a7e31ce2","sha256":"814148cbc3bea44c7786594a53ca13a6326ad08dfd73abbb11e82c285a15109b","sha512":"45e6d9b25a24e2c9a1c34173df38587cad6d7d85753f8211d4e0dff58e73be9e4cb99724024ead994c6cef70aaa958f9f15fb628bc9d83a52b39ca44844f8080","ssdeep":"","tlshash":"5c90027528c2201060173256547658e601308030d4588d51010498a1985543156065ac","size":49,"data":"","first_seen":"2023-04-11T21:45:58Z","last_seen":"2026-06-08T12:17:02.74355Z","times_seen":33905,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Drq0_EwN.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"a5c2b2a95b7d5a4f4656217d1ea017f1","sha1":"a104f0fb764ef3b2d01a9dd2251571ccdfe44c1b","sha256":"2930bbec9f7ac6136bf2de040ca06705f916b5dfb5fd7fceacda3429d80b4fb9","sha512":"ecd509517b351b0e243cf73dc377ba4cc3f3402640fe521d5fa0013af005fcf30356fc6310b7814a958959c22d8039c33b45f21b069372ef2b53dac0833f214a","ssdeep":"","tlshash":"b74169c915f94a74db5a029390240d23bc790e84a01784d5e77d0c4963446ddb7aba0a","size":2219,"data":"","first_seen":"2025-12-01T23:19:21.971239Z","last_seen":"2026-02-07T12:42:58.700425Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Dvp8bhAg.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"b02c8a239ed9a6008f3007e75f67a3eb","sha1":"9f330c503a7bb7eb08ed30f58ffbb432c2b57b45","sha256":"8fd49cec50ac30d2b29ee100f95e989764d51ab3193216229585201da3b6cf51","sha512":"6668dcd2d1b6eeb99e20c6f4f59128964a0d4fd2d66482ad22c6e137b5c85a09c3d711057680b1a3d9a21c9212b888356b58bee0471c834f3ddb7b53b93375ef","ssdeep":"24576:D2tDKr/PxixoLReFYyStgRoIVcAvOt9/LJEPIFpbAvslL/uuvuul1IGkogO/Fs:D2tDq/5EoLReFYyStgiIVcAmt9/LOPsU","tlshash":"e92509e87654742583a331b404bf180f6237681da40e8578fa5ad4da6cfd88a673bf7c","size":1035595,"data":"","first_seen":"2025-12-01T23:19:21.922007Z","last_seen":"2026-02-07T12:42:58.689537Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BZZ6p9iq.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"bd41523f8f4bfccc1e19791f5555d36c","sha1":"faa4453578c3050451fff6c48db4cb782b3bc0f0","sha256":"bda1b81f75656e1fe99da40f065b252c5010114df0b16f8c8668d4ab6afe7ecd","sha512":"fe04f19a24832c6f5bdc7f1e03a7018a74530ebefdf291a2f1ab82ab31a1c203c6bf74afb8ea29432f8a7441ca5ae984474e997852346eaeb17b4b8cdb437a09","ssdeep":"192:z5CvilGnMlkdQ8n8QCtJJOmW6/qgmrQc8GkwWHRWFUn:lCvMlcQ8ndCjJOmW/gmrQcXkwWHRW6n","tlshash":"b402d7c5b0a6a6724fab1895f1e78150a56d1b4ca01bd4d0f02f9c003befed0a679f6d","size":8312,"data":"","first_seen":"2025-12-01T23:19:21.925886Z","last_seen":"2026-02-07T12:42:58.710989Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"4b787857f4299f4accf4b3dc8c3e2e09","sha1":"22129a10f4d39947544e2de3d2708e3b9eba49da","sha256":"89a58007610c18a13db0c125561d9fa603771ff958c28e96a85e71f8f4d328c3","sha512":"d3c1102462df3512af89d6320821df5441a47a1bd472d93bdc3f64c328b79e9a841f4009bbb25830e3b31c1a929beb72f6311c161b481e878ea1a3e3fd44b4f7","ssdeep":"","tlshash":"d6c08cc9a0c22d102602a41052af25e49038402bb0489b538d94d8682e220b48233f9c","size":146,"data":"","first_seen":"2025-10-22T19:51:05.532381Z","last_seen":"2026-02-07T12:42:58.733053Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ede74e75dbb1611035cd62bfa1a0eea4","sha1":"7cfa11d8edf07d4bb08b50c42bf6f4ba231de047","sha256":"a168e5a14ce863e89bf7c1f53d38e408cac6e90cea284765b67eaf21c1f5c54c","sha512":"b655977f3dda2959b29e9cf51ca8694f25bf3368b1f0f615933c8d944dc9bc9f72b7ffb8777c264c4e09dff09d719dfcee74efd45d7b20ba02a9d671ddfc5e75","ssdeep":"","tlshash":"40c08cc9b0c33d007a06681454af35e490258427704c1b028c94ec492e331f08233ea8","size":147,"data":"","first_seen":"2023-06-07T15:49:18Z","last_seen":"2026-06-07T11:56:06.462977Z","times_seen":556,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D-SViGEz.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"a0855b4d6990a0a1e5efe858e4c877cd","sha1":"7cf367272a9a544d1d55fbb92568cee181a0d925","sha256":"c145a373971ce4b91ca00b99cb0b0fa91062e51e5a87f96d72b08f364c96a74e","sha512":"302464811dce015e97d3dc35d99e96579a985962c0554542d325f81899d82335a4cfe99e6f4b1c7f0b7b1b959de2e02cd287f3f3b326aad5f8a8d26211154218","ssdeep":"","tlshash":"59310e123898d6382b87d1c811188541ea2d2b0f987912fee6a27c28d7ae1897421f5b","size":1534,"data":"","first_seen":"2025-12-01T23:19:22.002815Z","last_seen":"2026-02-07T12:42:58.716274Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"202a354bbdf52d5a7f3093f56edc7c51","sha1":"131cc58c8c23abbb4f934661c0a3574b0fcafe16","sha256":"5f0e5c7f11a9f093c86d4355eb7d7dc5aa8b74797b82941bb83d2476878cb785","sha512":"3833fa487c9f0eb7c4e7df6b51970524063dde5666b368b743190504cf7e170026e624c39415e676481238556f1b448b60658e8848522f25edffd4f658e0c756","ssdeep":"","tlshash":"b1c08cc4a0d22f005606641061af38e8a024402674481b128da4dc4c2e620f49237e9c","size":147,"data":"","first_seen":"2025-12-01T23:19:22.094005Z","last_seen":"2026-02-07T12:42:58.735747Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6900701ff959494d30437499abeb8885","sha1":"7cb4c820fbf30caa6b50d6c2dc4aa7c0c4b644d8","sha256":"3be52a71ee1e4d668cceef779a9942298cef4d68e03183d10681c4aa945c83f5","sha512":"731bc35b44d92adfda91474163cba7cbfe8ebb8faeb76364becb6a0f87c8d62c68a560257759546c0c38da3d0ea220cbee60eed126f77194441f92786231135b","ssdeep":"","tlshash":"b5c08cc4a0c22d101642645420af26e4a028802a70485b128c94d8482e620b48233ea8","size":138,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-08T09:25:51.141686Z","times_seen":6505,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"db3f25cf7be133fba75311cfe2bcb995","sha1":"f6966cb8ce59b64ac97d0c554fdc25d5a7526a73","sha256":"160237f18011318c228d8dd842f25e4ea815331e1407ada84066fa8f37c6c182","sha512":"9bb33994aa6a4b05a5dfd31a563d44f96eaee50e8dc8333649cdbe6530d8af8706f1b46a93489789356af457774290015122ce1fcead7b3cc04c8ba7cf11386f","ssdeep":"","tlshash":"80c08cc4a0c22d105a12759114ef24e4a0284036744c2b428cd8d8882e224b09233eac","size":149,"data":"","first_seen":"2025-06-25T17:53:14.121408Z","last_seen":"2026-02-07T12:42:58.73802Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ceee98da2287a98ecbdb52f39d9ae8b3","sha1":"1e785dd51ee6a35b67f38f46942243fcc1447d78","sha256":"52a7afcd70d3c689cc355823f4b4c247c33c7944b19b9b89acf0f2ca6f46df32","sha512":"096e3237b0ff7e86b1208c326558c1dac22db78ebb9cfa44abab6f0fd6d77233be16439120703e5e9a6b8f9c7c3c4cb6058cc816e38559c8f9dba780028dd543","ssdeep":"","tlshash":"08c080c460c22d001552955060af35d5b035543770585f529d94dd483d770f55337fdd","size":163,"data":"","first_seen":"2025-12-01T23:19:22.088217Z","last_seen":"2026-02-07T12:42:58.739738Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d5b9095106d420a9e894653253889d42","sha1":"5906b05cd1abf9cf7939e6ebe29333665bee864f","sha256":"cbd2c27fa7ef3be0a40795283f56b2910112741c9a6771adc57d6e56d814af2b","sha512":"ab91769e0450984c12dcc12607d5b75e1cd75001b96fa71cbdb8036e3e606e79eb378bb0ebb9a13241663ca93a583d0cd17bc98d5f35a3ac62bb75e6d6be08cd","ssdeep":"","tlshash":"e9c02bc4b0c73d001602645010bf34e490344027b04c1b53ccd4dc483e230f08233edc","size":137,"data":"","first_seen":"2023-06-06T20:45:10Z","last_seen":"2026-06-08T11:27:23.679229Z","times_seen":933,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a15c447f08875de3100ed8997d5994ea","sha1":"b77d1c8bbbbcc5d0ac532e1362d796508029192f","sha256":"edd33609ab9f781e02fcf2c8e5ecd9f1e9b7bfdcbb576f01e9b2e78747b47e47","sha512":"55050de7b026795f86b16a8f6a67428555e9d05c394d87abf47b1bde43968be03e16569d97d1f38f6d37a1cc8b9bb5349cabe354e3def7dcbd5187640e3ac7ce","ssdeep":"","tlshash":"b8c02bc8b0c33d002602645010bf39e490344027718c1b43ccd4ec883e230f09233edc","size":139,"data":"","first_seen":"2023-05-08T20:49:32Z","last_seen":"2026-06-07T20:41:05.682835Z","times_seen":795,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"90132eae8fa07761280c09db3b89e4d0","sha1":"706527a2dcfbb9589b6e076c7c90ee37cf8cdbe4","sha256":"4ed822480cd9eb7e7ea925f97ac0270fff317132fd62a64cd5feda3c6d00070d","sha512":"54d8de4bf269405e0f8a8ad458cb1ad0274e5586a1b027641b1f4a7593eb76846f5d43d7a290fe7bc5fd1191149d0fff55bc19c83a32653b6bd75dfd7f235da5","ssdeep":"","tlshash":"ffc08cc4b0c2ad001616641120af25e89024402b70881f028ea8e8892e220b08237ea8","size":141,"data":"","first_seen":"2023-07-03T15:24:19Z","last_seen":"2026-06-06T18:44:47.910756Z","times_seen":96,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1b062b624423a9bf9c28c4f3c9268bc9","sha1":"e7bed9a63f6864442f46b477826c9a8d18e6285a","sha256":"58e158655976865cb02235e479afe51ca704a4c0425ae5ea8b4b94b9a6931f4d","sha512":"2278b8d594da90c8f275b759992ea33200b58bba5f73420320154d7214b4132b1af76fbb02da14b60d1c238edadff729cd5f70adc9b4654d354900fba2e005f2","ssdeep":"","tlshash":"f9c08cc4b0c22d002602641020bf38e49024402670482b028d94d8482e634b08233ed8","size":141,"data":"","first_seen":"2023-04-30T07:46:29Z","last_seen":"2026-05-22T13:54:55.739283Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-r6NuSn2j.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"3ad2cd91e856f781e703eb2a63e830df","sha1":"08593f8dad6af766afc9e2b1b8328d698c5371bf","sha256":"4290941c58f092ba752927fe090e36735309b0e558e83e969585839a78052f30","sha512":"ea8e0bfff6baa0d14d207d2b034a0e80512b086b24732df24f8d0ee2f04e69e7bfdd86989514ee980d232c33cc351271f4bfc3bad6ef5ff1e107f0f0f119882e","ssdeep":"768:qucwrBq2PZK0X9Lxt492u4zHoa71meNik2O5Zsyx7FE3rupT2dAVKWLAcwySUVzT:qdEjfBCy88Z/zcDkgVi5l","tlshash":"f7032a9bf7c5707203ea61e4906b0806f3295e24b44d84b4b558accb3dea50a47bbf7d","size":41314,"data":"","first_seen":"2025-12-01T23:19:21.959224Z","last_seen":"2026-02-07T12:42:58.698984Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b488d5dc299a97fd1b2a7d30d8ece6df","sha1":"c28f57d5c348f982935829ddf4494555e74ae302","sha256":"b6a25e55e761b60d655ac228c2120cb31adbf9ce418973c27a3e00d1bb3f2e55","sha512":"a563487084cfeb2a040f2c13fac551d8aca9a693ffdc1f974d6a20fdb14b583cb1dd5730afb6608d1167d8f6046e2903628fb5afa988814bb1a9ee6ca7830ef0","ssdeep":"","tlshash":"0bc08cc5e0c32e011e22a82164af3ae8d024542a70881b868ce8e9982e224f08233edc","size":155,"data":"","first_seen":"2023-05-05T08:00:34Z","last_seen":"2026-06-08T03:14:52.239655Z","times_seen":192,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Dhqj5NJ4.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"25b64ef85ac3d254db35bda802093ffe","sha1":"80d6ff3fb94600ab874039c7d3e8234ea6e6271f","sha256":"e2cb64fa927b66d08f0021034682f2d20b65ad4d00eb568335921703df35b666","sha512":"44c8b3380e2510db1bc26a7e91107d82103065f2743376c2644d0214cead88c45a194731e3f339a9b4a10bacef5ba1f27ac3abab4fe5a8c5c185486d8756616e","ssdeep":"384:WSQpH0b5ds/DYzKRorOXTLs2t1V3mDz2Y2b6qrZosS3FJf2p7zKY2BWybnF/rVKU:WSu3DYzKRorOXTLs2t11jY2+qrZoL3rX","tlshash":"16b29195df18c89c2a31e24a2d89a4d47a5d6f238ea841262cbdff1d35e0f740539b38","size":23998,"data":"","first_seen":"2025-12-01T23:19:21.95452Z","last_seen":"2026-02-07T12:42:58.694835Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/ais-BW5wgNRd.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"9ecb605a1082e7894f60519127b10768","sha1":"d7a7d94492cdb2ef434a4254b874fde356cbecdf","sha256":"54b47dcf0f3b81a6c089d24b4f9301cea065e3071956c632ac6e15d17707c8d9","sha512":"a7d6e8b101e095341f3c3d314944dfedae7b6e4f3207ed27c1c4babcb92ffa543c92da4733bc8b1a8c30b0f1f5315478413437b155d211cea8e96361ad14ac18","ssdeep":"96:/oU1A9h6cSKkMW0gf5GN5B/8M/qIhqqv2cFHZckwpiWG4qqLISs1IsTbmZrT/NV:u9h6xMLT5B/8FWd205ckwgWG4qjSyvSz","tlshash":"bdb18e0ad52de0bfc04406fb6d0be89645f52202691875ceaf0e19b7b7857a229f91cf","size":5450,"data":"","first_seen":"2025-12-01T23:19:21.950126Z","last_seen":"2026-02-07T12:42:58.674023Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/useWeb3-mQiMsCIL.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"8504d9947cb1bc32ebc9c950e57296d8","sha1":"1794ce649d40de82da96913d25552faf6ba759c9","sha256":"792cb99bdaf87005f0a51844460d5d32ff33acfbbbdf4d3cf69357c20735b5fb","sha512":"70e711b9d19e223131ec67d31dd99ac52df216bd76a009ad2b8da30423328124ca1158b7f9ac60ba0eeaa1168d9df79163030b01a58b6ce3446c47c1c948c16e","ssdeep":"","tlshash":"a831000e31445670a37c0c9ef8ac21e017311b55392de8ddac2c4d533698e5e83bb6aa","size":1548,"data":"","first_seen":"2025-12-01T23:19:21.980195Z","last_seen":"2026-02-07T12:42:58.723393Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/pureFunctionsAny.generated-BXiNt-Wh.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"0ae1152a8ed242138ce5106d5d9c7c80","sha1":"3d820f8051d6eb69210a26cacd73a393eabb85b9","sha256":"2986575ad331967ad2f576aba9b4b64b088888e3c7aaf97f3d4e5c0ccd4062d0","sha512":"8b8d53714b8a766a2a272a32bd68ddb32f2332cb939ce32abf88661c7e9a840c85a43a5e370e5b505a8c8769520d1359cb11a33659e17f1ce1447674e8ca0f2d","ssdeep":"3072:TgTCsnOmrarfhntbTr3VPJxIL98IXS28Bak+Hg:TwnOTtbPhJxSrihaJHg","tlshash":"67f309c872e1f06353e334a154bf550af27a6c58b8095864f115a0fa7df1946a2bff38","size":168717,"data":"","first_seen":"2025-12-01T23:19:22.0442Z","last_seen":"2026-02-07T12:42:58.721383Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-B5uP-BwP.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"5e51fb02fe826f159e3877c122dd42f6","sha1":"6ab1993e857064941528f05f5c1e17ed8bbf7b08","sha256":"349b42088e3873c1db2e4cd5bb3d3995706ae35eb187be1271f216def12dc460","sha512":"93979bed8702e4160c539eff5f7be07a2ba755509bdbaddbf124313bff354fd4bbc111a63c0739bc2c186dc0947bfea4ab860eb4137e4043facae6b95d925b30","ssdeep":"","tlshash":"5031a74b1dc852b21c47c4fde15ae052e9ad250c7ca041e0c098be2b615ffc4eeabe1c","size":1806,"data":"","first_seen":"2025-12-01T23:19:21.955867Z","last_seen":"2026-02-07T12:42:58.726775Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"56e833f5b985ea4adb691fd98f25bbbf","sha1":"3ffaabd91d254b86f3854b28c146491dde2547ac","sha256":"14ad3f7732ce6b934309e98d1f5cd83bd6a748121f9c28698481f0bbb02dbc9d","sha512":"0a1f00e65aa7277ad3cd8ae37af5114f7bf42554e69cc2d28c7cabe01090eea60d86e32fd7eb13912caf30cb951e097a4c7dec249318b0e57494101c472e2ead","ssdeep":"","tlshash":"b1c08cc8a0c26e002a02651010af34e8a024402a708c1b028c94d8a82e630f0823bedc","size":142,"data":"","first_seen":"2024-05-24T17:26:58Z","last_seen":"2026-05-30T20:07:23.818105Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"12257f7aca7a2184d5747edf184763a2","sha1":"fbed2aa8be1967f1014cfafff712e8874b378f33","sha256":"161ade31c797803662a8cfc6f7a4994c5ad2fbef4941bb357c3df9536d9b6bb4","sha512":"0c8cfb681eedb034e81145f6f6fc1e172d901cfb51de520b19ebb1b1ea9f2612cc27c7779cd8258cad4022a91e5d428e36cc2537ef985ade3b87c2b6ad89f238","ssdeep":"","tlshash":"2bc08cc4a0c22d102606681014af38e49024402670481b028c94d8482e330b08233ed8","size":136,"data":"","first_seen":"2024-12-08T21:22:12.707551Z","last_seen":"2026-05-12T11:03:22.44157Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"38be13baf9f2bf61b33abaa8f934f9dc","sha1":"31203cd8d9914fc274b62d06d26ad9af16009331","sha256":"25e459481fa432f5a35128bdd12fdefb0d80587ab2cf30ec26ccc84d70d886b7","sha512":"9f34e4d63b84b0dbe5ebe3557868ff30b1e49d5e6cca1c114a36076a975bfe6855d2fcf7c7f23ac06832885680bf1f59743592c27f5607e588561c3a03def10a","ssdeep":"","tlshash":"07c08cc8b1c26d106a56642024bf39e890244067b0c81b568de4dc493e220f89233eec","size":156,"data":"","first_seen":"2025-12-01T23:19:22.067697Z","last_seen":"2026-02-07T12:42:58.74949Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/ups-BvsJPvxL.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"17390e3f5633c157b3aec518084c844d","sha1":"46d34b0c765e5d29e368a52eb427191f06052afe","sha256":"ec0e6fb258add36caec41bf8330310ef749bab4addcde64454733ec97b8b45ca","sha512":"cd8d415e5461da00406e3f2b4ca5f55eaa1d46c0d76eb105179b941f20790b0bd0f7d19f92d02fee0bb0aaf7d616eda26d8e066e121817d8fc5c73a02a2eec74","ssdeep":"","tlshash":"43516d7a2bedf8a035ce44597109f6345c61d70d73a868d2be3478a1102fb03690b7b4","size":2923,"data":"","first_seen":"2025-12-01T23:19:22.031441Z","last_seen":"2026-02-07T12:42:58.67321Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BKZudewD.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"5b4c0f606f604ddf72dc1deb18aaea7b","sha1":"97b14e2c6f8d90743a14f55fcb7bcd65de5b9eab","sha256":"a8003a03bcdb8b6dd7d3a777ad87552e8b8ff9afc1adc518b1d36114d016892f","sha512":"b00d0fb7e1cc1ff5bb2263f7b8428f764df3991c484618c8b7c325d8b4dafc165a15a0d28ab0b1ff2b8ef4e1101f9127705d6597612e654b89e0f2a25e16ab24","ssdeep":"192:vFnh54k2/4e1sjzv38AOYf+GVGoVv25cyZzNv5ibn:vPC4e1sjzk4f7GaemyBNhiT","tlshash":"75f1b8256b57406cd62ecde04544624019dd23ed3129c493e8deae28da57ef8be3f2e1","size":7462,"data":"","first_seen":"2025-12-01T23:19:22.041153Z","last_seen":"2026-02-07T12:42:58.688501Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/use-tab-status-BC_CKPC2.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"06c853da49a948e06a9e8740510dc99f","sha1":"cee57901b1328094a400e97836f0ea19fdde4082","sha256":"c8c6eb64012ff871d40686e5f1f16862607b63a10dc0df106558fc2b763dc26f","sha512":"2ed06db795bff4af1ddc31cfe6fa9736a604bcf64cbd2161b7aa41be984fd1a1f683d4ec1af96e181e6e5434db67e8f915ca8321f8fab53d9fbe5ca35bf4cd7d","ssdeep":"","tlshash":"4cc0809f4c506374d53c568d753c25310b531727357574f1a02d0d56632b5d412ff907","size":189,"data":"","first_seen":"2025-12-01T23:19:22.011334Z","last_seen":"2026-02-07T12:42:58.714974Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"34cbc41b0086fe874d04609e28ae3270","sha1":"020d83bc0a45ee54310b163f12f9d4b24b50b5d9","sha256":"d80412740eb63aab1c8bb741675f50c6f3f3c0f18d6502c0b7fe43dced11d00e","sha512":"553668b1c79e681cc3c7471ff4117e0fd0597bc9bd0f48776031ff27afbc8310e6ad0e869ec213028f25ed91701ac375c98d6f08efaf642968668af72a07a8ae","ssdeep":"","tlshash":"eec08cc4b0c2ad011612692110bf24e490244026b48c2b028de4d8682e230b49233e98","size":145,"data":"","first_seen":"2024-07-18T01:10:46Z","last_seen":"2026-06-04T05:13:20.676421Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d665ad318d73f3891106e0981753e8a4","sha1":"f8c763a88edad5af35014ca90562cec361bc874d","sha256":"5e561231afdfa7a6ba0feff690b297d5c9f9863888cc7ff96af950b36fca6f4e","sha512":"3d8db5dca31c6da11e14eae82abe71fcb60d7bc919d6e82f78c2d178888bfb866838528dd810f3317e9981883c3c53181c8a68b9a5905b953f9a5403eb4fb7df","ssdeep":"","tlshash":"1ec08cc4a0c22e006a42685458af64e89024842b78482b028cd4d8882e630b48233ea8","size":147,"data":"","first_seen":"2025-06-08T13:47:31.008055Z","last_seen":"2026-05-17T04:09:20.132421Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"03cdea2585cd3cafe2844fccc268a4b1","sha1":"d62b4143d5b881637e8a382faabdc37834ed004a","sha256":"e4402c69da53c5e5f3f0bc91f575c285a7a58c32b1c603d320a554fc877de771","sha512":"58c3f9cfa543dac9ed6a21e097d7050e996b73189c1ebe76bb551914e4f60cd6ea69c490b23b283055006e2e3fe415ed8650f2a4b6fe04f227ea034d6883f811","ssdeep":"","tlshash":"f8c08cc8a0c22d60161aa91510ef29e49034802a70481b02cdd4d8482e220b48233e98","size":146,"data":"","first_seen":"2025-12-01T23:19:22.077297Z","last_seen":"2026-02-07T12:42:58.752903Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"49a7f0f24b71638c523adb4a6e90213c","sha1":"fb7d9ab3426e116745968e38434250ecb5413d97","sha256":"1e3ffdb4afb74b03073d7ba3d01928b7cb6becd6458d10b74495b917a883eeee","sha512":"c4e86f2abb07b2795cbf6b58fdf8b7719e9400521cd7da371ee38b64b6052f6d2c0cee1ec338cd9b0d8c7366207f08e5b44561c92e8e61530e871909e73250e8","ssdeep":"","tlshash":"30c08cc8a0c33e109602641050bf26e4a0384026b04c1b02cea4d8982e220f8c237f98","size":147,"data":"","first_seen":"2025-11-21T18:20:58.070689Z","last_seen":"2026-02-07T12:42:58.753894Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0f40806f855fc503ec7fe0e2cdc6da5f","sha1":"ad59d99993690064ee6565eea713ee4c5260f572","sha256":"954bc1931a5584c910a5391a0e2c05ba7190f3c672433a85c162ac948a74a44f","sha512":"7ea9c1cffaf640bc7083f2306a134368aa54ae775230a1f1990c43817594d950ecbf94412ea7ab6262bb8add4715ab6fffe7579f85b0a1c07f6acc4f8207cd9e","ssdeep":"","tlshash":"1fc08cc4a0c2ad001a12649010af24e49034402770481b029c94e8492e220b08237e98","size":137,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-08T12:43:51.985429Z","times_seen":5629,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5c171b0cfc84e5382edb71e31c5002c7","sha1":"873530f22c0af21c6b6934f75b2d30cd49bcc316","sha256":"00636039dc6804ebf93970d7888dcb3518983ea48ec75fe576d1f634ec061966","sha512":"65207c4b176a1923bbc874dbb37924348be735698777053f3973bc705a9367550851b157f114dd4a08dbb469541446d8f8d294a29d12c0c112a045127c2019cb","ssdeep":"","tlshash":"63c08cc6b0d22e001a02651254af34e8a024402a744c2bc28d98f8482f720b88233ed8","size":154,"data":"","first_seen":"2025-12-01T23:19:22.071701Z","last_seen":"2026-03-28T23:08:59.625379Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"971aceadc867c3c2651dd6b3435ffad9","sha1":"cb478a730e11622ca725bf99cb83e337f7d7e010","sha256":"ea85a9b6e26169347ba816504e008722b6d6307273bbde095706444314103206","sha512":"fb63facb84276abeb42a9e4dc62b2898b4c1bdbf7fdc40155703a3d2b7f0d13a91bf2df898178f38d0b10f90567e3f707a359c38e335d6b2b6edea20a7692b6a","ssdeep":"","tlshash":"fac08cc9b1d23d101606641058bf24f5d0284027b04d1b138cd4d8492e220b48233ea8","size":148,"data":"","first_seen":"2025-10-12T12:01:37.280537Z","last_seen":"2026-05-19T07:58:02.846778Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f9c483922058cedfcc502e9a65685808","sha1":"25d18461740f0522409961a8e1680c93f75316bb","sha256":"4cdb68616d41bce8d97032b7caee530201f40fdf61b71aab48745023ea36dc95","sha512":"534b912b57e015136102a60e6fc58413a5f88173a0ec39f00c7c2c13d42ead283910c6a86081ea6398a51bb4855796ebe5affa0f1d6b5ced8475865bc8ba01d8","ssdeep":"","tlshash":"fac080c4b0d62d201551541414bf3cd490244026744c5b029dd4d84c2dd64fc4133d9c","size":157,"data":"","first_seen":"2023-10-25T16:06:30Z","last_seen":"2026-06-08T12:43:52.041296Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5948bc3b90afab1829ab7ee61269f24e","sha1":"517e29a82521418181f702543be8ae74a3bf68b3","sha256":"14fc83a84c91770211dc352186f8e87ddc85e87c2dba0c80a159b45897b9ae2d","sha512":"05c079bbf0389ad341941c3e837aca91dc9aff681cee8da0b4560551ba13e6bbb76b01213af6514e6991e3369062870866a41e67e6d67a37038ddba3ddee7d5f","ssdeep":"","tlshash":"a5c08cc4a0c26d002606691010af24e49028802670485b028c94e8592e264b08233ea8","size":139,"data":"","first_seen":"2023-07-01T13:40:07Z","last_seen":"2026-06-08T05:16:21.785301Z","times_seen":1012,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-CQO3CuJB.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"131631c16ba14469a6834d72b862cfba","sha1":"a9c3ff5b9e1a55a86ed7873fc0fbf76bffca7063","sha256":"3d6c3116d4e3073a04f81edd25b9b389d191b953e3da1a79cbac4b8373061b93","sha512":"c93395d084e6d70d6d9c53dd64a6906a12359582a4b8091fd088b5f6ed3044a93f3d10335ca317234f775b961fc158faa9488766e650bf43ff3ffc0df8748b13","ssdeep":"192:zdB80Edgjt66Wbte7+HoH1ZwJY/N2aVfV8QLVPgwy:zdB8ojt66utUjzr8Qx4","tlshash":"acd1a606b478adfbe66b98313a914010a01d579dc214eeb0f2bd0f112feaee9635c71d","size":6265,"data":"","first_seen":"2025-12-01T23:19:21.928839Z","last_seen":"2026-02-07T12:42:58.68428Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"8b452556faa1e5246e74820d82d902f0","sha1":"384cfc3dad6b7f8899d987e0217ccc41e0f40bf1","sha256":"79c52bafc8b247c56ce4a3606ca8beddd0cd5c39e53f5f169e95e6fe5c9d197b","sha512":"e1809ea8845485ed91d1d203a3405577b18646ea0b7720715bf0abfd34c9d35ab13efaeeebdf07428040ae09c69d45911a9e23bf72d175299770e45ddcb6294e","ssdeep":"","tlshash":"cdc08cc8a0c72e011a12ad2034af36e8d024542b74986b56ccd8d8493e264f0a37bee8","size":163,"data":"","first_seen":"2025-12-01T23:19:22.062973Z","last_seen":"2026-02-07T12:42:58.76009Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"67dc7d3c3fb223072e525951ef727540","sha1":"de60e0fe6a62bb12b3d7ce8fbd8238d79003707f","sha256":"824dc0f2f451ad1b435684373071265e8d36fb546200e4a076a69a4c5041c224","sha512":"a2a80797f167107bb72b0ab0c791c3f169fbc2ef3f46f1eabf8e6ad7727a987ecc02dd8695d1622a1704872d9f877e24325e623273731cf90d005f12a81c8a3d","ssdeep":"","tlshash":"61c080cae0d66e001d01655050bfa5e4d034407a748c1b028c9cec543f124f44137e98","size":161,"data":"","first_seen":"2025-11-20T16:53:08.439446Z","last_seen":"2026-02-26T14:58:46.878598Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D1Zb-YHa.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"ae1f250613153f2e0a969b885b98bd3a","sha1":"b78ddbf16de272ce51bf6fd9c6d9128693f18cba","sha256":"51f2ca19528e8f694b5d867151cc5389b11ac5926135eb836f6144fe208fb842","sha512":"9b33677473641e3bb076f77c54ded795c49e04f1abb54c8724ea23b643e9fd82620bddfbe9b64dc0155abefccb501663b2c3824cd7443359a8c5fc5ac0baa247","ssdeep":"96:yUp3uBiu4sRa+NxbDIe40iXPSJfgs2x4QtAs9W9nTtGCFywQG/LNkOb+CIKO2O:yMuBiu4MxbD+LX2fgnx4QtURlh/LNkOo","tlshash":"58b10948f438e57ae73a8e8498554950a31a6bd6e234c0d0b0fe3d161fc1da576b9b18","size":5314,"data":"","first_seen":"2025-12-01T23:19:22.000486Z","last_seen":"2026-02-07T12:42:58.711723Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"36f26a090abdcc337bfc430f7eba2abf","sha1":"bde4b3d8e5ebea671a9a85174cfb4058a4bf0adb","sha256":"217e71e9b0dbcd6bf49e06ed0c8570fc448a800192167db81cba4cbaefddce78","sha512":"a191f331612f086b236bcab8dc8340639cec8859afceb86edcaa7913e42165ff3d184a5a5f4bac7ea93f59aeea3c76e505c456f9f5da206347076658fc271a87","ssdeep":"","tlshash":"12c08cc8a0c72e101a12655015bf24e4a024402a70489b038c94d8482e230b09233ea8","size":141,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-08T06:01:07.24381Z","times_seen":1577,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d65c173ed8b68de0dd299297eac35a22","sha1":"b46a2f786bd7bc38edb5e016bdf89a6266b75f82","sha256":"19cb7a848e56fc986e4673856ca39f32b292816efb0bb780a1cd11ebe8684292","sha512":"839fa6459adcfb6664cb285c2ea49ab410f4cd002ea6ccd5bb6e72337f1d3abc477f2c1599185cc67331c85544d953231fb29ab9f344f1e538387bc9dbb0415c","ssdeep":"","tlshash":"7dc08cc4b0d62e006606641114ef35e8a024842670485b828cd8d8583f230f09233ea8","size":147,"data":"","first_seen":"2023-07-03T15:24:20Z","last_seen":"2026-02-07T12:42:58.763975Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6ac9071d9932331d6f13c28662df3eaa","sha1":"f6eb1baa0bd1ae6f59ae6aceb867f897511aeee1","sha256":"b4c3e0db43ddfac91e82f4f458144da6e4066d57aa41fed04d86cd9b3c0e368d","sha512":"cefe8e65fa5d8690b53f96ad56320e72dba887c3ccd4df0d4eb9000a5bc903b77d1b7ae8b1ad7ec25ec0443e8fd41327e3deb9238f38884b08549579c918e3ca","ssdeep":"","tlshash":"25c08cc4a0c22d201606682014af24e490244026704c2b028dd4d8492ea34b48233e98","size":140,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-08T06:01:07.252666Z","times_seen":389,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"26e672633c99c355431dc3d63e66c354","sha1":"f75e2c2d4e470d5133ca2c7e788d534b0e3b6f26","sha256":"bc70fab40877c5063f367301e8259ba5b2d6a87cd1f68fab59d9c44401186bc8","sha512":"af9fcf34c6e42de93e23e365e6b6d1c1cfc0e0aaf9eda217d877299d2117f6614e6fdf6da4520030df4add057a661bcd98f3ca3faeea00e6ef088e5f419a4469","ssdeep":"","tlshash":"3bc08cc4a1c33d121b1aa41110bf34e89034403a70485b229c94dc882e620f08237e9c","size":151,"data":"","first_seen":"2025-12-01T23:19:22.091624Z","last_seen":"2026-02-07T12:42:58.765337Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/wallets-DLBFDD61.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"280d2116d713ea8b563b788ce612b6bd","sha1":"22ab0ca4ccdfe0963cd5417bd970b79d5c456703","sha256":"253de8d6d23dda031534bf1079668e6164e429dcfda96a46ca9e108faac1a5dd","sha512":"441c63d9a04c9891bb8296766f163a6b6d4b66384beba1c5d9c2ee05fa1681c4286f58e6c754e544d0b912b2be8f4a2ae4b0482e1c216b65760cc9ac70a4de7b","ssdeep":"","tlshash":"4d01c5b421324e670aac935ce16ae301cc3133cf71fc68b83187d10844db320d767682","size":819,"data":"","first_seen":"2025-12-01T23:19:22.042822Z","last_seen":"2026-02-07T12:42:58.713591Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D5VEIFl7.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"6af6953ad10e8c1f3bf28362d073a87e","sha1":"3fbc6d21e264db2d02e576f2e762ce9934924236","sha256":"52dfcc523ffcc1ca90603e466e9e785a408659a8b57aa67f45932c824e6ab055","sha512":"b002a8cba37c927487f0a5da97b0ff7632eb1a16dc4c4c6c43c382a608698305fe797a11bc595ed4c4b4c2b00bd0d2139ae7c66308a3ffffd7bb03095d020888","ssdeep":"","tlshash":"fd81c687f4a1ba36876fe5ed40890ca064394b0cf45c8ae5783e0f592a492a0d71ef1d","size":4017,"data":"","first_seen":"2025-12-01T23:19:21.941275Z","last_seen":"2026-02-07T12:42:58.712333Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d8a0b36a3bb5359d82373fd74ab0a55b","sha1":"109fcd2e9501021577ad657d5701aa40e771b723","sha256":"26b23c11a596c1301030aaa5e72296226d0b2c601ff7b24694d413a401ac9826","sha512":"ebb5fb5d0b9ad70253bc33b31f5fab9fa0efb74a89eefd5b900d6b956970a52ef306b8e62a73b47775339624aef7daf7f4779743b84394f80591c0ea8182f9fe","ssdeep":"","tlshash":"d8c08cc4a0d22d001a02641060af34e49028442670481b028ca4d8482e620b48233e98","size":138,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-06-08T05:16:21.767001Z","times_seen":1327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"806a64acf3107f83050d962303d87b6f","sha1":"444ac235353e39cbf50f98b449997f37bc96ba86","sha256":"3978627534bbff29ba679fa14f050c384b7bc4a423418193a078ab517baee121","sha512":"4cd2435407293b5773f51a5a15fdbd6907f20476b02cc79639f55ac84e4555d170128c5b42b1c1070f399962e8b516d87516a5723ebca6c5f74358b8379f5797","ssdeep":"","tlshash":"9cc08cc8a0d37d001a06651065af38e49024846a744c1f078da8e86d3e734b4a233e98","size":156,"data":"","first_seen":"2024-12-11T15:34:05.794605Z","last_seen":"2026-06-01T03:03:32.009342Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"428004d533c350004753117c04571cc4d034447014444d405040d4531c570315115c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-06-08T12:30:54.748671Z","times_seen":688447,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"428004d533c350004753117c04571cc4d034447014444d405040d4531c570315115c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-06-08T12:30:54.748671Z","times_seen":688447,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1ca49f0e439cf34669924908e59b2897","sha1":"efea6ef6bd12f3ded99d07b429c6af21c23ed826","sha256":"9f9ee6011e8f88513c2761906180f430478c9d9835d4e74a211cafd3c79b955e","sha512":"f5dfd73abfc4c47819a1c10e68b974d2253a67fd9fb113e510809ee5ea650d5dd1f003dedcd6f88235e4e5b696f28c5e2f18526e794579f3b9f5a1d7db17bb21","ssdeep":"","tlshash":"fec08cc4b0c22d102602a91010af24e49024406770481b168c94dc882e224b09237e98","size":141,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-06-08T06:01:07.246399Z","times_seen":538,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"41bbcc2c56aa15aca722543a89a6c730","sha1":"406498af64c571b878803bce96126d82f84fe1fb","sha256":"dcdb9d7d09bbc4280e61709eba14765c1788e29f96bb2d757d7e41e1ca174807","sha512":"48052a6d22581aefb3f456e7ef17080ec74175298ef4d6f05275e19043375211c712175b86b2a51347902345cd7d2d47535dc383acc4b70757be798e6d778136","ssdeep":"","tlshash":"bcc08cd4a0d62d002a12a45430bf25e890344026b0486b03ccd4e8592e234f08233e98","size":148,"data":"","first_seen":"2023-11-01T14:09:04Z","last_seen":"2026-06-08T06:01:07.253225Z","times_seen":60,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"67d7c71b52b45e95d05747ccd9e79f01","sha1":"ea70f74567a45af4ac0757d26182f813907c7683","sha256":"68e042fc470c31ecb937734105de3b63ee038cc32166f48709b950429b5b54c0","sha512":"2993e076818c13f7fa0dc35016fb8f5d8cf1c92639f4b101810c5e655e5d275161f0e769a33eaebac43140739db7959a3347afc94dfadcc0d7b86a49434199b3","ssdeep":"","tlshash":"e9c08cc9b0d26d001602649010bf25e49024802770481b029c94d8492e220b09233ea8","size":140,"data":"","first_seen":"2023-06-03T18:56:31Z","last_seen":"2026-06-07T11:56:58.230009Z","times_seen":334,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2103688daf0a1270d4ec8ff5170228e5","sha1":"c19867aa0762e66b0b2402e4e64ad7d0e18fb73e","sha256":"5111e2ab07eec45cf0ba1abad930d45cc28cd5b4f58e7e586e2a7d1d806f713a","sha512":"afacef785f476cba09ce571898c9102376a8b546d85bf7ce6753329198ef47059114d64c527212e4ea91f2e747eb130bda3415dc5946e2e33ca74905199a2b2a","ssdeep":"","tlshash":"edc08cd5e0c23d002a2264a420ef75e49078402b744c5f479c94dc483e678f09633ed8","size":153,"data":"","first_seen":"2024-10-16T15:21:02.080533Z","last_seen":"2026-04-15T03:15:26.479412Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"270d517988e5e287fe9ad11852910f9d","sha1":"d0f8a22d1f5e48b2ee821db92b8043fe68e0cc81","sha256":"b7d7ffd63c5dba36a7335631b5a2a1422e783d11adc4016da5e4d07d88b158c6","sha512":"c5c33b893f1a049aa2b048cde3802692ac1801956dd555a51cd1063518faea31b4bc8543b9bbc4d6a1b98724cf64cd4c4fe3b17d6114f10bcb16e092063d3b01","ssdeep":"","tlshash":"60c08cc4a0c22e2026a2a89410af25e8a024802ab0486f169c94d8482ea20b58237ea8","size":149,"data":"","first_seen":"2025-12-01T23:19:22.099352Z","last_seen":"2026-05-17T04:09:20.134472Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BLcXRUH3.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d564ce82c834333054fd607a8d5c534","sha1":"5270d7ae184e1fe5ad1aa081095018bdc602d49c","sha256":"599b1429c1c92d572cb8fc59c47e0eb876acd0958e7edd19abf1be64b92a8cba","sha512":"250e43460e4cfb16b97baa59f6a4bca7bf653e834d5f41bc34b383b57270293ab0c9f74bab649564573e0a24285145b1fceb6fee1123ea7b6f0e1d1a9e133115","ssdeep":"192:gzEA+ri4YzlVQPNbcBwaVMIJ6PbPLIhME1K+R:O+ri4YzHQ2BuIJ48R","tlshash":"62021b1ef0219dbec5778895a44858a1e62d0ffdd2544058b2ee1d290fc5cbce7deb90","size":8913,"data":"","first_seen":"2025-12-01T23:19:22.006319Z","last_seen":"2026-02-07T12:42:58.67179Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1a336cd95b5d65077986d137d575b09d","sha1":"78e535203f31fe022a8bd6e2ae34060adabfa508","sha256":"b2643459deea445b088cddf23cfe26f71681d66016da45caa366d1936249a67b","sha512":"a20f70cb6008808b47c73285ba350d7f6a629f4602952dd120cb6ff29d5bf28a8d26b09312367219a20c1b1b4e9341ecb6b99c877b92eaf6df4a5126511bf704","ssdeep":"","tlshash":"59c08cc4b0c22d006a22a41024af34e490244026704c1b028c94e8482e230b88233ea8","size":141,"data":"","first_seen":"2025-12-01T23:19:22.066476Z","last_seen":"2026-03-25T13:21:01.90145Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a15c447f08875de3100ed8997d5994ea","sha1":"b77d1c8bbbbcc5d0ac532e1362d796508029192f","sha256":"edd33609ab9f781e02fcf2c8e5ecd9f1e9b7bfdcbb576f01e9b2e78747b47e47","sha512":"55050de7b026795f86b16a8f6a67428555e9d05c394d87abf47b1bde43968be03e16569d97d1f38f6d37a1cc8b9bb5349cabe354e3def7dcbd5187640e3ac7ce","ssdeep":"","tlshash":"b8c02bc8b0c33d002602645010bf39e490344027718c1b43ccd4ec883e230f09233edc","size":139,"data":"","first_seen":"2023-05-08T20:49:32Z","last_seen":"2026-06-07T20:41:05.682835Z","times_seen":795,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-CsxycG0o.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"0fad9904b3dc0453bae24f4517e63d53","sha1":"739339012ee2030b759c44667b84b4f0c78b98ec","sha256":"0e3435633c2f6019e125544b6bf822c581054964b765b493e515b2e782d0c01e","sha512":"2ff00e3bba41729b3a20bc02fc241040e574537fa81c8fc8e13fd3a95e9ab17e29c29482a8f7698c038a6aae7d2ac3ddae81269437231ca5af20fc243ea07c1c","ssdeep":"","tlshash":"0c41537d78c41074ebbb9ccc90620912f61b5729023498f1e0aa5d2c2b2b549e17be35","size":1971,"data":"","first_seen":"2025-12-01T23:19:21.924025Z","last_seen":"2026-02-07T12:42:58.72014Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f325222a758aeaf467ffd9902267b129","sha1":"ebb95b3866ab29d0ee9bb0755384b81ab12e000e","sha256":"cb11ef6823d7949b57e01ab9d6bb5c829be6b14322aa0dd5897a6d2d209d0672","sha512":"aa743a98e2ffb65897bee06760376bb5dbb7c2f10613ca12c8cc462ae79e1d3351855f14b3ea70088d449656bb4167061ab22d99f0eb628b9b63dc2a94131292","ssdeep":"","tlshash":"46c08cc4a0d26d001602641020af34e89024802674481b028c94d8482e220b09233ee8","size":138,"data":"","first_seen":"2023-04-14T14:41:51Z","last_seen":"2026-06-08T12:17:39.386554Z","times_seen":2267,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c5d7f6a8ecd91ebf6cc974297f65c918","sha1":"33887bc7c32f4f1ca776e2da09a07ecc28e7cce1","sha256":"73f2d76b712bcad7f6c8699c180afd8cb5e44451c9a8005e4e8b5818a99dae6a","sha512":"91cac552941ef0df049023c4f9fb67c51f0782eaaa9dda76d4109f1435efaaf4991886d0eedfb47e33c508fb3b05b44cc946fa1877dad879398a8071b67a02cc","ssdeep":"","tlshash":"65c08cc8b0c36e00160264101aaf25e4a028402670482b128d94e8483e230b08233eac","size":147,"data":"","first_seen":"2023-04-12T10:08:15Z","last_seen":"2026-06-08T12:17:39.515903Z","times_seen":2980,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"283fcecc5c03aceaa0d9870e3033d7da","sha1":"bc3ed77031037768805766a5c12eb7f501cb2f15","sha256":"c36f68ecb505eb0232ddf210a53d8e03ac89b358cbee21729a50747ff1abc0a3","sha512":"af4a54de4b5ee5b155ac00a16a5874a6670cdc47e51dd3b4bab1d99ede6e72641e79f0378e3a485d6efcbe2ce4f1b546638a15b32b37a70b7dfa2f294f82cf1e","ssdeep":"","tlshash":"6fc08cc8a0c22d202a0e662114bf25e490384027704c1b029d98e88d3e220b09233ea8","size":149,"data":"","first_seen":"2025-12-01T23:19:22.102225Z","last_seen":"2026-02-07T12:42:58.781845Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6c4b63197790d25a07f25a43bd99b082","sha1":"9cf651883e08001a9ec271a0c3c2d4ba8cbfda2d","sha256":"cab5094ca7bb9e74a1d0753500ab633f54ee468f574b0c71293e95e0eeb863b6","sha512":"019ba7e344e3b8e2fb0b9b422fc54931b8f5650f519c8532a13b38b604c7761110390b28f6531300602e1e130ef426834d9ce94baa0654db26da7edfbba9b19e","ssdeep":"","tlshash":"5dc08cc4a0c23d101a02641020ef24e8a024806a70881b028c94d8482e230f08233ed8","size":140,"data":"","first_seen":"2023-06-19T06:03:31Z","last_seen":"2026-06-07T11:27:45.487824Z","times_seen":717,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1f842cdd6acf9f1c234f4c8476aee6fc","sha1":"1236b7141e517091abf7f55a6944fde33e7786b2","sha256":"60ee0bf8fe337d7977735711eb78c4eca4da267ccee517f8713bb10b973ffb49","sha512":"1d0a56bf1c513a278ec2f3061477276a5060dd61db772bdf5e3e6747ffd026f5175c0fc734dcadedf79492c804082adb74bcad0551c94a7eced2bbe97e039f7c","ssdeep":"","tlshash":"b1c080c961d72e1066115510107f34e8b024442774481b129cdcdd483e734f29237fd8","size":165,"data":"","first_seen":"2025-12-01T23:19:22.073663Z","last_seen":"2026-02-07T12:42:58.78382Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-kmAcbwOH.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"b28bcb3fec298fb15c2b0e0972e2cc0c","sha1":"ebbbeb942ba22d28970c3850edb46aa9a2d9f290","sha256":"f8a7a140f2d90089f5b81ae163edac26223b462c1647dde35e2d5c6a07ff125e","sha512":"98628234186fb17c6101d8106339c36c14c27eab8580fcc05524d86e154106e6217c8e2e5220311ace9387aa625470a93a9f53a46c5047438738496c3db75548","ssdeep":"","tlshash":"73314251f8d8b13063938dc8912a58a1d688076b967ce2e2f07b2d501b7169da478f1c","size":1849,"data":"","first_seen":"2025-12-01T23:19:21.94353Z","last_seen":"2026-02-07T12:42:58.709412Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index.vue_vue_type_script_setup_true_lang-J3dTgPJj.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"fcc1764361391ccf8f1cd11fbbd378c3","sha1":"62757084d94f088587dffc3945092c8e5ec86ba9","sha256":"3dc6e4fb198e018c2d07218357ad2e49981de1e274630e9ac3d075f7a9e56c21","sha512":"3a7e4671f29e1745006f50095a24ba2670683b05bc3a464cccf8d04eba4bcd7d322566f0547a400ef9fbd73993768c79d167ce3a76f2c59e33a3ba7d0ff4ac5b","ssdeep":"","tlshash":"4751a41efc09c5bad2364c706454010a211c3fefa03791a5b6ee9e1937d2d68b38d738","size":3002,"data":"","first_seen":"2025-12-01T23:19:21.919924Z","last_seen":"2026-02-07T12:42:58.710231Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/use-id-BHfrFxY_.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"b0312b9077100084cfae74e0e6dd6a84","sha1":"e09fc1a2e257eddc98c9093dfe91dd625f40f22c","sha256":"c5a23e5408122c3409a7e4215c64bd6d8d35a6e513727f574aa26878626a30d2","sha512":"15ff3cabb66f090851c3f82ab56803dc501c800e8ba1e3d4aaa93430e9b319aacd69ab4d5234f6d936001741b0b25b9a568d98670985e5693c83d35ec320ba76","ssdeep":"","tlshash":"1ac02b4d749820f0260e0cd5e23a066ac12b7c18532a99f4f1780b1707f536a47faf83","size":152,"data":"","first_seen":"2025-12-01T23:19:21.917527Z","last_seen":"2026-02-07T12:42:58.715646Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/home","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3e352e40da965a477c73b85f45fcbcfe","sha1":"3e723988fae01e9002cd221d32d0b80fc932dc85","sha256":"5437083c1c0938d596758b071b379432c6722f887cbe2dca49cc5dd12e4f48bc","sha512":"36bd9ae9981675720b34b16739e5bd73967018d36cffaf325c4415dede978a5c8950cd9ee99567264cef03b5020fc26def12f1274befcfba2f680291e9f34580","ssdeep":"","tlshash":"e2c08cc4b0c22d003a02a41024bf34e89024402670481b028cd4e8582e230b08233e98","size":140,"data":"","first_seen":"2023-05-19T17:54:23Z","last_seen":"2026-06-08T12:17:39.572348Z","times_seen":685,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"04147d51a78eb55a5fbd7b5c80dc3caa","sha1":"f2749e8371f1b4a0758da3132e9385f716f93313","sha256":"cee705b1621dbb69448cc2587355682c4d3f696637b4f536581fd0e11dc06391","sha512":"d2c1d40dbb2055cb28dd253e11623014fe10ed18b6da85c7efc56095a55daa0f0bb2d216eb87578d3fa7aa42eedacda63672a05df62e47ee2ddcf7ff13793b38","ssdeep":"","tlshash":"a4c08cc4a1d32d006602a41111af24e490244026744c9b278ca4d8592e230b08237ea8","size":145,"data":"","first_seen":"2025-12-01T23:19:22.080789Z","last_seen":"2026-02-07T12:42:58.788627Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"491845e19ee0e191a53ec59e2480ca77","sha1":"73eac5536272a8adc35f1fce57c95bf6b4ddd2a4","sha256":"a779414c3c43ebc6e075fc051fc444985549a0fb26d1f5c0498897ef4e2d725a","sha512":"7d2c00350bb9e48b3d0dcd58a75be5a35c58592336df3b1b73c9c2e68f59ef070d4cbd1fd52d7e6a76cb9a04f418fe00171bf064c1fcbb1463979016a6fbb5f7","ssdeep":"","tlshash":"86c08cc8b0d22e101606641410bf28e49028402770481b128c94e8582e220b08237ed8","size":142,"data":"","first_seen":"2023-07-03T15:24:18Z","last_seen":"2026-06-04T23:17:32.310888Z","times_seen":94,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"1afd914de766b43a2c7e32a689974620","sha1":"f26f9d7c98809f0ede0cf37f6b25db91ca95e6f6","sha256":"c125d51f2fdcef56bb464f1022f85d237a9dab0251884867f69410f37777e8e3","sha512":"56b803b77ecb199c1be52c9d0661e0748329ad03ed107dfdb76a70dae0c043c422448969198eea2b8eec53e6c26c23f9995f7a8bb0f9a0dbef4ed6246f36bc26","ssdeep":"","tlshash":"cbc080c4a1c26d011612595511bf34d49024441674dc5f528d94dc443f230f45337edc","size":161,"data":"","first_seen":"2025-09-20T13:36:21.847343Z","last_seen":"2026-06-04T04:39:15.572153Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/#/login","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a83b08e17f61e1dddfc69fb7761f5640","sha1":"89fc73f2f65ce565b8c9561086edbe9f0867edff","sha256":"639d5da1cf88e2e4447bbb9acc77eb71220c55976ee46f95290e182c82d92570","sha512":"84c2f7ee62ef97e50773f0215dcbc28528a81f2cd8189dfcb8d8de29c795d5e688e6da2ab2b346a7b22696a3810e1c094ae5b43499613bee165c0985033cd7da","ssdeep":"","tlshash":"27c08ccca0c32d002607aa1068af38f4a034846b704c1f038eb8ec6d3e734f49233e98","size":159,"data":"","first_seen":"2023-08-10T22:05:17Z","last_seen":"2026-06-08T06:01:07.245127Z","times_seen":181,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-C4rB6vlX.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"518ec7bbc33539b065b063c72507a4a0","sha1":"817e149f92d7957e4e1b7f12dce29811905902ea","sha256":"d747c88d1a3ef08661b6673ec922fc3bfe936d9ff8cdad754445a1abe5899730","sha512":"cec48518397e6ad433060933b9173341447f803a181537707d4d2b6facdb63c8d920c696011e6bab9ab33391ff8c3abe6b7b2e3ba56b00e6663c27f2dcb9d3bc","ssdeep":"49152:NY0G/oSDQNQPGMs//u+dXC0w+iGRj75mQD9xqiYcw+SYm/RPlsU8BTVw1UmAiY9M:vVA1UmANcaG","tlshash":"5316e658366af240c158c4c7e43b3c89d1ade589b40a50e05f769af31bf1b42e6ade37","size":4116487,"data":"","first_seen":"2025-12-01T23:19:22.089957Z","last_seen":"2026-02-07T12:42:58.797016Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BjWVbkQK.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"introduction_type":"importedModule","is_inline":false,"md5":"d0ab9e834a2825bc9c50d600dba7ee44","sha1":"89326f1dc3d62cac003daa11c8164edb2305e78f","sha256":"5b5e9ac94128d3e66aec992dc270dc67752fa0240ac5ce955d23268f0397df17","sha512":"9946c70998dca1b2bef8955bd847cc1314e49415bab8c34744823cb322f18d452e2ab390d52b3bb992cdaef41ebe081962e0500a6b2abf43767c78f5348cbd3b","ssdeep":"","tlshash":"49314249bac1e035d34fe0c0505554919208ef2ae66990f4e077ef942fad185b96872c","size":1660,"data":"","first_seen":"2025-12-01T23:19:21.952226Z","last_seen":"2026-02-07T12:42:58.726148Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-vcVTU6o1.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.574Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-vcVTU6o1.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-538\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1336,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1335)","md5":"2493f6f6a14ee83b7033d5ea9499db48","sha1":"5d4bc079b534ef2fd56a936c2a5dd58fb3bac760","sha256":"ab5863157c0cdb4e26581f2322b2dabc1022409192217315c122234af3cb396c","sha512":"4ec296d906530dccda5ecdc4b27c267e71ffc4d89a863b04527d83450de6d19ba05d07bcac974ba3683d8e4a351df22e2b41cda0cf6fa8cf98896f14599f2093","ssdeep":"","tlshash":"8821ce10be9da42da03ed10a45901fdea205f306d660052c8b8729376e87b473f56b0b","first_seen":"2025-12-01T23:19:22.059657Z","last_seen":"2026-02-07T12:42:58.664088Z","times_seen":3,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BLcXRUH3.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BLcXRUH3.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-22d1\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=ffe2ebd1f74de25cb3002020a56a8e79; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8913,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (8912)","md5":"0d564ce82c834333054fd607a8d5c534","sha1":"5270d7ae184e1fe5ad1aa081095018bdc602d49c","sha256":"599b1429c1c92d572cb8fc59c47e0eb876acd0958e7edd19abf1be64b92a8cba","sha512":"250e43460e4cfb16b97baa59f6a4bca7bf653e834d5f41bc34b383b57270293ab0c9f74bab649564573e0a24285145b1fceb6fee1123ea7b6f0e1d1a9e133115","ssdeep":"192:gzEA+ri4YzlVQPNbcBwaVMIJ6PbPLIhME1K+R:O+ri4YzHQ2BuIJ48R","tlshash":"62021b1ef0219dbec5778895a44858a1e62d0ffdd2544058b2ee1d290fc5cbce7deb90","first_seen":"2025-12-01T23:19:22.006319Z","last_seen":"2026-02-07T12:42:58.67179Z","times_seen":3,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/ups-BvsJPvxL.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/ups-BvsJPvxL.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-b6b\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=5d8a451b2bccb5f5d2345061ee30ac87; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2923,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2922)","md5":"17390e3f5633c157b3aec518084c844d","sha1":"46d34b0c765e5d29e368a52eb427191f06052afe","sha256":"ec0e6fb258add36caec41bf8330310ef749bab4addcde64454733ec97b8b45ca","sha512":"cd8d415e5461da00406e3f2b4ca5f55eaa1d46c0d76eb105179b941f20790b0bd0f7d19f92d02fee0bb0aaf7d616eda26d8e066e121817d8fc5c73a02a2eec74","ssdeep":"","tlshash":"43516d7a2bedf8a035ce44597109f6345c61d70d73a868d2be3478a1102fb03690b7b4","first_seen":"2025-12-01T23:19:22.031441Z","last_seen":"2026-02-07T12:42:58.67321Z","times_seen":3,"resource_available":true,"data":null}},"time_used":388,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":388,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/ais-BW5wgNRd.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.614Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/ais-BW5wgNRd.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-154a\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=582ecf5026f6c62d3830a51296bafb30; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5450,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (5449)","md5":"9ecb605a1082e7894f60519127b10768","sha1":"d7a7d94492cdb2ef434a4254b874fde356cbecdf","sha256":"54b47dcf0f3b81a6c089d24b4f9301cea065e3071956c632ac6e15d17707c8d9","sha512":"a7d6e8b101e095341f3c3d314944dfedae7b6e4f3207ed27c1c4babcb92ffa543c92da4733bc8b1a8c30b0f1f5315478413437b155d211cea8e96361ad14ac18","ssdeep":"96:/oU1A9h6cSKkMW0gf5GN5B/8M/qIhqqv2cFHZckwpiWG4qqLISs1IsTbmZrT/NV:u9h6xMLT5B/8FWd205ckwgWG4qjSyvSz","tlshash":"bdb18e0ad52de0bfc04406fb6d0be89645f52202691875ceaf0e19b7b7857a229f91cf","first_seen":"2025-12-01T23:19:21.950126Z","last_seen":"2026-02-07T12:42:58.674023Z","times_seen":3,"resource_available":true,"data":null}},"time_used":388,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":388,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BLcXRUH3.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.861Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BLcXRUH3.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-C4rB6vlX.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-22d1\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8913,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (8912)","md5":"0d564ce82c834333054fd607a8d5c534","sha1":"5270d7ae184e1fe5ad1aa081095018bdc602d49c","sha256":"599b1429c1c92d572cb8fc59c47e0eb876acd0958e7edd19abf1be64b92a8cba","sha512":"250e43460e4cfb16b97baa59f6a4bca7bf653e834d5f41bc34b383b57270293ab0c9f74bab649564573e0a24285145b1fceb6fee1123ea7b6f0e1d1a9e133115","ssdeep":"192:gzEA+ri4YzlVQPNbcBwaVMIJ6PbPLIhME1K+R:O+ri4YzHQ2BuIJ48R","tlshash":"62021b1ef0219dbec5778895a44858a1e62d0ffdd2544058b2ee1d290fc5cbce7deb90","first_seen":"2025-12-01T23:19:22.006319Z","last_seen":"2026-02-07T12:42:58.67179Z","times_seen":3,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/ups-BvsJPvxL.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/ups-BvsJPvxL.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-b6b\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2923,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2922)","md5":"17390e3f5633c157b3aec518084c844d","sha1":"46d34b0c765e5d29e368a52eb427191f06052afe","sha256":"ec0e6fb258add36caec41bf8330310ef749bab4addcde64454733ec97b8b45ca","sha512":"cd8d415e5461da00406e3f2b4ca5f55eaa1d46c0d76eb105179b941f20790b0bd0f7d19f92d02fee0bb0aaf7d616eda26d8e066e121817d8fc5c73a02a2eec74","ssdeep":"","tlshash":"43516d7a2bedf8a035ce44597109f6345c61d70d73a868d2be3478a1102fb03690b7b4","first_seen":"2025-12-01T23:19:22.031441Z","last_seen":"2026-02-07T12:42:58.67321Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/quotation","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.387Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"POST /v9.data/quotation HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nAuthorization: \r\nContent-Length: 33\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":33,"data":"{\"type\":0,\"lang\":\"en\",\"token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: SITE_TOTAL_ID=2960d6ffb4b28415664a20e247a441c9; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49698,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"807c910f76a98ab173704f83bf589e1c","sha1":"a8f90a35254a7b028616375c17eb3dbe3d6b56f7","sha256":"24e5a34de00363785d055a6ec564f32d2a6f4469f4da5d77d5a26ed413f6a779","sha512":"ecbcaa7f4f710c9d990af7bd43b3f24e34e902bf569aadb811c0f4d6e1227745de87d157f7ecf264af55fdff9ed33ac678ef3bc5aa0643d92925c1ff02f1d91c","ssdeep":"384:QdDml9QVURF2YU+c59JHw3twLHg/pcUo2bgPk5HH7TLhpA27p4b9Is5nv4vCTOS6:6C9zq7DHw3t4K18n27p4CMyw+np","tlshash":"df23aaba2fed49a4e3506f936785beb6037730339ccb5ed4d2959e51cca4da21204b32","first_seen":"2026-02-07T12:42:58.676194Z","last_seen":"2026-02-07T12:42:58.676194Z","times_seen":1,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Crb_RtE9.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:27.722Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Crb_RtE9.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-90f4c\"\r\nexpires: Sun, 08 Feb 2026 00:42:27 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":593740,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"3d041ceae7c6be4bb9b6f7d887219f98","sha1":"3d33fe44cd03c6d4b8718bca3be52f79a0f76ab6","sha256":"88ec3a15a33cee086ea81d013e6091fb247a006b8c001fc244d6a229d82520e3","sha512":"d8f81f5742c75cb3070910193ac156ae251ce33e74e57d344cd94b12610f696051a5717efcb9181dac5140b4aa4c888c5d70da849131d9ef5760f81708e9e910","ssdeep":"6144:msaonxsadGhUS6SI0MGuhT7M8EcH7pTVkad36fFhsSIcO3jVMa/4uta78+B36JLv:uon1AeSP4kC","tlshash":"d0c4f855e753517f2e17e67d6bc5e9d8bb28ea61dd11cba1f200a00849c3bf102a3d2b","first_seen":"2025-12-01T23:19:22.056685Z","last_seen":"2026-02-07T12:42:58.678732Z","times_seen":3,"resource_available":false,"data":null}},"time_used":567,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":567,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-C4rB6vlX.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:27.721Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-C4rB6vlX.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-3ed007\"\r\nexpires: Sun, 08 Feb 2026 00:42:27 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4116487,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (41307)","md5":"9b0641622d6565b95182b689f580ba22","sha1":"d954b25ca48261c0660f840f13b2ed7b2eb9c0ee","sha256":"f261174d7e5a8135bada011274abc3ef7d6500a6e3f4b3e3c2059f347f6bafdd","sha512":"dca960c52b2751176e7454dfabd58fdbf1db369d6524d621e6d91904ba8e8acb45aa43de65c441e2b7ee690b99f1de2d2e374c70554cf139a0df44483a7f5b84","ssdeep":"24576:NY0G/oSDQNQCOxGSG5Gs//uibrKKHV1pMevQYrFqNEQWC0Uq:NY0G/oSDQNQPGMs//u+bvQYrF7XC0R","tlshash":"1d459f69664ef31049a8b4d7d03b3e65901ce552b14b84da0fb8abb712b2b13f3dcd52","first_seen":"2026-02-07T12:42:58.680775Z","last_seen":"2026-02-07T12:42:58.680775Z","times_seen":1,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/quotation","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.634Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"OPTIONS /v9.data/quotation HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type\r\nReferer: https://krakenapp.vip/\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: authorization,content-type\r\nset-cookie: SITE_TOTAL_ID=23de574faf87652d6fe38f027014ee95; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":1129,"timings":{"blocked":446,"dns":74,"connect":186,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-CQO3CuJB.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.094Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-CQO3CuJB.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-C4rB6vlX.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-1879\"\r\nexpires: Sun, 08 Feb 2026 00:42:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6265,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (6256)","md5":"131631c16ba14469a6834d72b862cfba","sha1":"a9c3ff5b9e1a55a86ed7873fc0fbf76bffca7063","sha256":"3d6c3116d4e3073a04f81edd25b9b389d191b953e3da1a79cbac4b8373061b93","sha512":"c93395d084e6d70d6d9c53dd64a6906a12359582a4b8091fd088b5f6ed3044a93f3d10335ca317234f775b961fc158faa9488766e650bf43ff3ffc0df8748b13","ssdeep":"192:zdB80Edgjt66Wbte7+HoH1ZwJY/N2aVfV8QLVPgwy:zdB8ojt66utUjzr8Qx4","tlshash":"acd1a606b478adfbe66b98313a914010a01d579dc214eeb0f2bd0f112feaee9635c71d","first_seen":"2025-12-01T23:19:21.928839Z","last_seen":"2026-02-07T12:42:58.68428Z","times_seen":3,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/login-bg-Dmdq6nD5.jpg","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/login-bg-Dmdq6nD5.jpg HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-B0XF0RGJ.css\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-22a0c\"\r\nexpires: Mon, 09 Mar 2026 12:42:32 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":141836,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 750x1624, components 3","md5":"5f827c4497503292aa2ba21c2ddddea3","sha1":"4f7ba5e1d5777ab8b820ba21c3aa1ce75e7860a2","sha256":"e22994c9ed1e65afaee9870fea70b9c27ed651e7bbe0f42d88a0125dd3179383","sha512":"2a4754bdab61c66a81ab2361df2065afae8543c3a8513aa5949de909df9875772162a527feb72ee0fd05beab0866a8fdb8e3f306535335412f99649b1bd4b524","ssdeep":"3072:SYgtjhliA1Jf7lGhRpZYJN9xyPop7++nk8mTgTUdDetB5:SYgtjhl31V7IhRp6ZxyPol+SyTg2DG5","tlshash":"09d3f1478e8d4a97ea695218ff472d8d2b09176dfca23dfe91234ec33e405b64c2906d","first_seen":"2025-12-01T23:19:22.048131Z","last_seen":"2026-02-07T12:42:58.685405Z","times_seen":4,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getInit","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"POST /v9.data/getInit HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nAuthorization: \r\nContent-Length: 24\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":24,"data":"{\"lang\":\"en\",\"token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: SITE_TOTAL_ID=8c63917b82fa851a37e424b325fb92cf; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":225,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f682618cc5dee981f3b95bd48d3cc05c","sha1":"6c27ae407c04ac218642fe2ff3c075cf4978fa55","sha256":"3e17df01f9dd7880dabe403e2cba686d145435dfdc4c3755546f65ff0c988aa2","sha512":"5442fb2d02259594f9f45fe37a8061e1f003c684bebd598e5f9807baeaeb2aecc139b0732e4a7a7819773e1cfe12777a9648739fb16c50ce87b990cad23a0570","ssdeep":"","tlshash":"32d023fd52af01638f002944ac0d679fef8411256c45d279df4d497c01640f8b31c837","first_seen":"2026-02-07T12:42:58.686376Z","last_seen":"2026-02-07T12:42:58.686376Z","times_seen":1,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":240,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BKZudewD.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BKZudewD.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-1d26\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=bcd3290b130e371e82bcd78bc8524893; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7462,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (7461)","md5":"5b4c0f606f604ddf72dc1deb18aaea7b","sha1":"97b14e2c6f8d90743a14f55fcb7bcd65de5b9eab","sha256":"a8003a03bcdb8b6dd7d3a777ad87552e8b8ff9afc1adc518b1d36114d016892f","sha512":"b00d0fb7e1cc1ff5bb2263f7b8428f764df3991c484618c8b7c325d8b4dafc165a15a0d28ab0b1ff2b8ef4e1101f9127705d6597612e654b89e0f2a25e16ab24","ssdeep":"192:vFnh54k2/4e1sjzv38AOYf+GVGoVv25cyZzNv5ibn:vPC4e1sjzk4f7GaemyBNhiT","tlshash":"75f1b8256b57406cd62ecde04544624019dd23ed3129c493e8deae28da57ef8be3f2e1","first_seen":"2025-12-01T23:19:22.041153Z","last_seen":"2026-02-07T12:42:58.688501Z","times_seen":3,"resource_available":true,"data":null}},"time_used":356,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":356,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Dvp8bhAg.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Dvp8bhAg.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-fcd4b\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=5da41b810792b9675e9d5df49dccef34; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1035595,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (64809)","md5":"b02c8a239ed9a6008f3007e75f67a3eb","sha1":"9f330c503a7bb7eb08ed30f58ffbb432c2b57b45","sha256":"8fd49cec50ac30d2b29ee100f95e989764d51ab3193216229585201da3b6cf51","sha512":"6668dcd2d1b6eeb99e20c6f4f59128964a0d4fd2d66482ad22c6e137b5c85a09c3d711057680b1a3d9a21c9212b888356b58bee0471c834f3ddb7b53b93375ef","ssdeep":"24576:D2tDKr/PxixoLReFYyStgRoIVcAvOt9/LJEPIFpbAvslL/uuvuul1IGkogO/Fs:D2tDq/5EoLReFYyStgiIVcAmt9/LOPsU","tlshash":"e92509e87654742583a331b404bf180f6237681da40e8578fa5ad4da6cfd88a673bf7c","first_seen":"2025-12-01T23:19:21.922007Z","last_seen":"2026-02-07T12:42:58.689537Z","times_seen":3,"resource_available":true,"data":null}},"time_used":355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/logo.png","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 01 Dec 2025 06:57:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d3c3f-f66a\"\r\nexpires: Mon, 09 Mar 2026 12:42:30 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":63082,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"52f30bc61bc59c22cf2bb6ada2f5de66","sha1":"02b2ea7f986182600fe6562124c0eb6a6017bd9a","sha256":"a997c092daaf0ff209304217b405f5970f53df0145bb4482c8e751f6c7934f5f","sha512":"4819065b89156f893888ba13cb963e730b069d964407e2b0e7b510d7c916e77c2b393e35ef6024ce2e6c66f1c9d13879b9c544b76e7aa4f759148ac1ede123e3","ssdeep":"768:vWbRZd+u2r4i0x9FT4hNx85aqc82Mrj2hKwuV70zt+gmmVL080HGgu1B4OTwbX:vWbRque4NxTTM85cXgL5APmFmz1BPTMX","tlshash":"a753f1983fa26182c447d7f0971ba3182cb6bd573f6560854dd15204d2b7eaceb84bd3","first_seen":"2025-12-01T23:19:21.982343Z","last_seen":"2026-02-07T12:42:58.691614Z","times_seen":3,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/ais-lH0bZRIv.png","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/ais-lH0bZRIv.png HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-1080\"\r\nexpires: Mon, 09 Mar 2026 12:42:30 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4224,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"548cef77afaea3bc374ba6fc361edd19","sha1":"8a2e08b3c8b7f0deb2176f7647d02f592e744d92","sha256":"ecc3898b74f51209f4572599e44492ed542592885f4ce8bbf00786864a2d5ad9","sha512":"ab080e115acaf397e100b2957000e183984ae8bba6751be0bfc9e06d6f5830fac0e727329a60aacd7089bed23229208d578b53ec882876e1db7f21b57e2e177c","ssdeep":"96:gKvw6wGr30cpm8gix8/Mfget2NdC0TZIQo5FEHdRk:giw6wGrkIm8gaIeyxZhqiE","tlshash":"f59180f1fba85ec9e4d067913023871f657396d3b6910d197696a443b18623cc7480ad","first_seen":"2025-12-01T23:19:22.026571Z","last_seen":"2026-02-07T12:42:58.692848Z","times_seen":3,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getInit","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"OPTIONS /v9.data/getInit HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type\r\nReferer: https://krakenapp.vip/\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: authorization,content-type\r\nset-cookie: SITE_TOTAL_ID=77367397e593d6ebe059c53f35056bd8; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":1113,"timings":{"blocked":444,"dns":68,"connect":181,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/market/quotationData","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"OPTIONS /market/quotationData HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type\r\nReferer: https://krakenapp.vip/\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: authorization,content-type\r\nset-cookie: SITE_TOTAL_ID=bb96ac256976b51c80a63283232f59f7; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":227,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-M-yx2bL1.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-M-yx2bL1.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-8b1\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2225,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2224)","md5":"291bcc8d7a5ff72598f2133c707795f4","sha1":"e802d64cec514c1bba71d5924634ff5f446ec12c","sha256":"9e27b9a5b1a029c7571fb301b2c6f1b38c813f064b1b739515f31fb95bf40768","sha512":"4267b9006927c13708bc59cbb549b5820c15563b4ec9320180fb2949c7a1a1e88c237beb580e60c9e8759cb8182f22c0bf526e9b3d680d2270e7cfc95c95e6d1","ssdeep":"","tlshash":"f041f367daa045faae33a5990f5588c9b13ce9208e00df72b180d11c8dcf6f626136ec","first_seen":"2025-05-06T14:23:01.801794Z","last_seen":"2026-06-07T05:03:56.998194Z","times_seen":121,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Dhqj5NJ4.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Dhqj5NJ4.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-CQO3CuJB.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-5dbe\"\r\nexpires: Sun, 08 Feb 2026 00:42:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23998,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (23316)","md5":"25b64ef85ac3d254db35bda802093ffe","sha1":"80d6ff3fb94600ab874039c7d3e8234ea6e6271f","sha256":"e2cb64fa927b66d08f0021034682f2d20b65ad4d00eb568335921703df35b666","sha512":"44c8b3380e2510db1bc26a7e91107d82103065f2743376c2644d0214cead88c45a194731e3f339a9b4a10bacef5ba1f27ac3abab4fe5a8c5c185486d8756616e","ssdeep":"384:WSQpH0b5ds/DYzKRorOXTLs2t1V3mDz2Y2b6qrZosS3FJf2p7zKY2BWybnF/rVKU:WSu3DYzKRorOXTLs2t11jY2+qrZoL3rX","tlshash":"16b29195df18c89c2a31e24a2d89a4d47a5d6f238ea841262cbdff1d35e0f740539b38","first_seen":"2025-12-01T23:19:21.95452Z","last_seen":"2026-02-07T12:42:58.694835Z","times_seen":3,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-B4wmwnXg.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-B4wmwnXg.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-bda\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3034,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3033)","md5":"909ea3d480f8fb95c857c098e7ac223f","sha1":"8ba2e7eea615f8dbb71faf2374692cbaf1e995d9","sha256":"f0784bc6c7c5be80cc2f7a637a3c37dec63173a0c0ad31a7f3138fea5e45c514","sha512":"f4c85e1d458459d4deab9d2b40d2beda9d9264c5fd8979d191ae3ea44f89e3e52305b6d62568fda55b8c34500326a4692cd7689c961bdf1e976de7823103509b","ssdeep":"","tlshash":"f251334ef7acd5baaf1e3999b34b56ecb13c6b608c0082a7f300565c0bc3af70212215","first_seen":"2024-10-27T19:54:01.442597Z","last_seen":"2026-06-06T10:46:01.613384Z","times_seen":158,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-DUMlTgkC.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-DUMlTgkC.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-3703\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14083,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (14082)","md5":"ed25bd0b00ab8762bafbaba51746e8c7","sha1":"348d382cda9a4caafcab3736ee8009c532789b3b","sha256":"44089ba3bb52cd5e26295df6426f9820ebdef5dc00a844bd289d7010f88d8fe0","sha512":"bc01f44388590a75fca6fc6caf13cda708349a00fc8dbb2d45170340cbbd8011b4a75fb2e4f5c1a98661eddf5fef036649c591bfcfe61869d861b57fbc7061af","ssdeep":"192:f3UeOAdVXl1q+u6XVLVAcgYZ6M2pQyoe0othm6F99YdwZV1SXEfOeT/I0P97bn2:xLq+nm029Y+lOeT/xx2","tlshash":"ff52afa6349e9a7d0a73cf146749abe40c1c7a86f0842bd4041ec3ba8cc76537ed6f95","first_seen":"2025-12-01T23:19:21.958062Z","last_seen":"2026-02-07T12:42:58.697677Z","times_seen":3,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-r6NuSn2j.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.601Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-r6NuSn2j.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-a162\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=a1db4c23095879999db8534de8817259; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":41314,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (13647)","md5":"3ad2cd91e856f781e703eb2a63e830df","sha1":"08593f8dad6af766afc9e2b1b8328d698c5371bf","sha256":"4290941c58f092ba752927fe090e36735309b0e558e83e969585839a78052f30","sha512":"ea8e0bfff6baa0d14d207d2b034a0e80512b086b24732df24f8d0ee2f04e69e7bfdd86989514ee980d232c33cc351271f4bfc3bad6ef5ff1e107f0f0f119882e","ssdeep":"768:qucwrBq2PZK0X9Lxt492u4zHoa71meNik2O5Zsyx7FE3rupT2dAVKWLAcwySUVzT:qdEjfBCy88Z/zcDkgVi5l","tlshash":"f7032a9bf7c5707203ea61e4906b0806f3295e24b44d84b4b558accb3dea50a47bbf7d","first_seen":"2025-12-01T23:19:21.959224Z","last_seen":"2026-02-07T12:42:58.698984Z","times_seen":3,"resource_available":true,"data":null}},"time_used":350,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":350,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Drq0_EwN.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Drq0_EwN.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-8ab\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2219,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2218)","md5":"a5c2b2a95b7d5a4f4656217d1ea017f1","sha1":"a104f0fb764ef3b2d01a9dd2251571ccdfe44c1b","sha256":"2930bbec9f7ac6136bf2de040ca06705f916b5dfb5fd7fceacda3429d80b4fb9","sha512":"ecd509517b351b0e243cf73dc377ba4cc3f3402640fe521d5fa0013af005fcf30356fc6310b7814a958959c22d8039c33b45f21b069372ef2b53dac0833f214a","ssdeep":"","tlshash":"b74169c915f94a74db5a029390240d23bc790e84a01784d5e77d0c4963446ddb7aba0a","first_seen":"2025-12-01T23:19:21.971239Z","last_seen":"2026-02-07T12:42:58.700425Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Dvp8bhAg.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Dvp8bhAg.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-fcd4b\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1035595,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (64809)","md5":"b02c8a239ed9a6008f3007e75f67a3eb","sha1":"9f330c503a7bb7eb08ed30f58ffbb432c2b57b45","sha256":"8fd49cec50ac30d2b29ee100f95e989764d51ab3193216229585201da3b6cf51","sha512":"6668dcd2d1b6eeb99e20c6f4f59128964a0d4fd2d66482ad22c6e137b5c85a09c3d711057680b1a3d9a21c9212b888356b58bee0471c834f3ddb7b53b93375ef","ssdeep":"24576:D2tDKr/PxixoLReFYyStgRoIVcAvOt9/LJEPIFpbAvslL/uuvuul1IGkogO/Fs:D2tDq/5EoLReFYyStgiIVcAmt9/LOPsU","tlshash":"e92509e87654742583a331b404bf180f6237681da40e8578fa5ad4da6cfd88a673bf7c","first_seen":"2025-12-01T23:19:21.922007Z","last_seen":"2026-02-07T12:42:58.689537Z","times_seen":3,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getFundReport","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"POST /v9.data/getFundReport HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nAuthorization: \r\nContent-Length: 24\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":24,"data":"{\"lang\":\"en\",\"token\":\"\"}"}},"response":{"raw":"HTTP/2 401 Unauthorized\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: SITE_TOTAL_ID=ec3f964b568926c73a16e8dce238f3cf; Path=/; Max-Age=259200000; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"401","status_text":"Unauthorized","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"37e28a20705ce86feaa1877376d462a8","sha1":"62c706399ef46b3cabfc92f7ca711490562e524a","sha256":"c997ad8953770099107ff85b8a4f8767d537447910fdb6ba44adf6fb94e3e709","sha512":"de49b7af146f7fb6bcc741be86dd98090956a10417eb17ce0ea75ea2acb190262ad1530e7dcdc4c7c29d94b9f27c8a6574868675e3f2cd5a7e74c29ca02deeeb","ssdeep":"","tlshash":"f5a022cc200e0c0a0822c220a20882883b8cc0b30a828b328c0c2f30a0cc0b0b033c3e","first_seen":"2026-02-07T12:42:58.702991Z","last_seen":"2026-02-07T12:42:58.702991Z","times_seen":1,"resource_available":false,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-DgFTm5nu.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-DgFTm5nu.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-d02\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3330,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3329)","md5":"b63c3691fcc1f5c9c755d7662ffa85ae","sha1":"c73991adf98a0414d481fe3ab1d9b8ccf619b982","sha256":"f2105ddd9ced8aa0e1a7e758ffaac29c25cfd6caaa7e7a4bc22d39b696bb21ee","sha512":"8a65176da3b9744eb0f72fb80a80884e4a0f5dfa0e339604d57cfb74ef44b748f0d57d75be7f0a90f9fd0a2ed367fc7f777f27eb7965d6b9077318d4c07fe514","ssdeep":"","tlshash":"e961aed5a393a13b9e37b599e7d783d8b27ed9608c02c29bb105a0604bcf6fd02e3514","first_seen":"2025-10-12T13:19:13.071807Z","last_seen":"2026-06-06T05:09:04.574395Z","times_seen":56,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/market/quotationData","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"POST /market/quotationData HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nAuthorization: \r\nContent-Length: 24\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":24,"data":"{\"lang\":\"en\",\"token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: SITE_TOTAL_ID=bdc9c4edfe1b1b26b2b0af2d1ed81341; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6660,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c61d686547572c6d575baab7ac9d4802","sha1":"d3766958965e67cf599f8728afb23b8c3709cf23","sha256":"4da71ae9b4a0e65d21d0f95b7575dd07312f140162123148e8e58bc29a2aa7a9","sha512":"75b3fabb3979f0519194c6c2f1041888cba5adae002899d181103b99f299a988fbd040208efd52f48aaca1f06d4abbdb87ba725bad0fb245baeacfde3a51aa29","ssdeep":"96:kpB/PtSZ0CpzofZmTyYHP1Bb056uO/DFtwnq99kmF/mokbQXkRVtqQRqs04EwdyL:Ke0mWYHtdbFW6yHQXsXM7","tlshash":"15d15b01724b8e5fe0b66dc29b962df061ddb00918c20f8567dfc7b940e4eab764b729","first_seen":"2026-02-07T12:42:58.70788Z","last_seen":"2026-02-07T12:42:58.70788Z","times_seen":1,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-kmAcbwOH.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-kmAcbwOH.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-739\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1849,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1848)","md5":"b28bcb3fec298fb15c2b0e0972e2cc0c","sha1":"ebbbeb942ba22d28970c3850edb46aa9a2d9f290","sha256":"f8a7a140f2d90089f5b81ae163edac26223b462c1647dde35e2d5c6a07ff125e","sha512":"98628234186fb17c6101d8106339c36c14c27eab8580fcc05524d86e154106e6217c8e2e5220311ace9387aa625470a93a9f53a46c5047438738496c3db75548","ssdeep":"","tlshash":"73314251f8d8b13063938dc8912a58a1d688076b967ce2e2f07b2d501b7169da478f1c","first_seen":"2025-12-01T23:19:21.94353Z","last_seen":"2026-02-07T12:42:58.709412Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index.vue_vue_type_script_setup_true_lang-J3dTgPJj.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index.vue_vue_type_script_setup_true_lang-J3dTgPJj.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-bba\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3002,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (3001)","md5":"fcc1764361391ccf8f1cd11fbbd378c3","sha1":"62757084d94f088587dffc3945092c8e5ec86ba9","sha256":"3dc6e4fb198e018c2d07218357ad2e49981de1e274630e9ac3d075f7a9e56c21","sha512":"3a7e4671f29e1745006f50095a24ba2670683b05bc3a464cccf8d04eba4bcd7d322566f0547a400ef9fbd73993768c79d167ce3a76f2c59e33a3ba7d0ff4ac5b","ssdeep":"","tlshash":"4751a41efc09c5bad2364c706454010a211c3fefa03791a5b6ee9e1937d2d68b38d738","first_seen":"2025-12-01T23:19:21.919924Z","last_seen":"2026-02-07T12:42:58.710231Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/ais-BW5wgNRd.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/ais-BW5wgNRd.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-154a\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5450,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (5449)","md5":"9ecb605a1082e7894f60519127b10768","sha1":"d7a7d94492cdb2ef434a4254b874fde356cbecdf","sha256":"54b47dcf0f3b81a6c089d24b4f9301cea065e3071956c632ac6e15d17707c8d9","sha512":"a7d6e8b101e095341f3c3d314944dfedae7b6e4f3207ed27c1c4babcb92ffa543c92da4733bc8b1a8c30b0f1f5315478413437b155d211cea8e96361ad14ac18","ssdeep":"96:/oU1A9h6cSKkMW0gf5GN5B/8M/qIhqqv2cFHZckwpiWG4qqLISs1IsTbmZrT/NV:u9h6xMLT5B/8FWd205ckwgWG4qjSyvSz","tlshash":"bdb18e0ad52de0bfc04406fb6d0be89645f52202691875ceaf0e19b7b7857a229f91cf","first_seen":"2025-12-01T23:19:21.950126Z","last_seen":"2026-02-07T12:42:58.674023Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BZZ6p9iq.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.632Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BZZ6p9iq.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-2078\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=8e61a75404f634a8e3c29306f3ff769a; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8312,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8311)","md5":"bd41523f8f4bfccc1e19791f5555d36c","sha1":"faa4453578c3050451fff6c48db4cb782b3bc0f0","sha256":"bda1b81f75656e1fe99da40f065b252c5010114df0b16f8c8668d4ab6afe7ecd","sha512":"fe04f19a24832c6f5bdc7f1e03a7018a74530ebefdf291a2f1ab82ab31a1c203c6bf74afb8ea29432f8a7441ca5ae984474e997852346eaeb17b4b8cdb437a09","ssdeep":"192:z5CvilGnMlkdQ8n8QCtJJOmW6/qgmrQc8GkwWHRWFUn:lCvMlcQ8ndCjJOmW/gmrQcXkwWHRW6n","tlshash":"b402d7c5b0a6a6724fab1895f1e78150a56d1b4ca01bd4d0f02f9c003befed0a679f6d","first_seen":"2025-12-01T23:19:21.925886Z","last_seen":"2026-02-07T12:42:58.710989Z","times_seen":3,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BZZ6p9iq.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BZZ6p9iq.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-CQO3CuJB.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-2078\"\r\nexpires: Sun, 08 Feb 2026 00:42:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8312,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8311)","md5":"bd41523f8f4bfccc1e19791f5555d36c","sha1":"faa4453578c3050451fff6c48db4cb782b3bc0f0","sha256":"bda1b81f75656e1fe99da40f065b252c5010114df0b16f8c8668d4ab6afe7ecd","sha512":"fe04f19a24832c6f5bdc7f1e03a7018a74530ebefdf291a2f1ab82ab31a1c203c6bf74afb8ea29432f8a7441ca5ae984474e997852346eaeb17b4b8cdb437a09","ssdeep":"192:z5CvilGnMlkdQ8n8QCtJJOmW6/qgmrQc8GkwWHRWFUn:lCvMlcQ8ndCjJOmW/gmrQcXkwWHRW6n","tlshash":"b402d7c5b0a6a6724fab1895f1e78150a56d1b4ca01bd4d0f02f9c003befed0a679f6d","first_seen":"2025-12-01T23:19:21.925886Z","last_seen":"2026-02-07T12:42:58.710989Z","times_seen":3,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D1Zb-YHa.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-D1Zb-YHa.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-14c2\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=2a21378a65472dcae44ee0430ce1cb31; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5314,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (5313)","md5":"ae1f250613153f2e0a969b885b98bd3a","sha1":"b78ddbf16de272ce51bf6fd9c6d9128693f18cba","sha256":"51f2ca19528e8f694b5d867151cc5389b11ac5926135eb836f6144fe208fb842","sha512":"9b33677473641e3bb076f77c54ded795c49e04f1abb54c8724ea23b643e9fd82620bddfbe9b64dc0155abefccb501663b2c3824cd7443359a8c5fc5ac0baa247","ssdeep":"96:yUp3uBiu4sRa+NxbDIe40iXPSJfgs2x4QtAs9W9nTtGCFywQG/LNkOb+CIKO2O:yMuBiu4MxbD+LX2fgnx4QtURlh/LNkOo","tlshash":"58b10948f438e57ae73a8e8498554950a31a6bd6e234c0d0b0fe3d161fc1da576b9b18","first_seen":"2025-12-01T23:19:22.000486Z","last_seen":"2026-02-07T12:42:58.711723Z","times_seen":3,"resource_available":true,"data":null}},"time_used":346,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":346,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D5VEIFl7.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-D5VEIFl7.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-fb1\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=db99a4fe2849e6ef2b0c2b66c6476cca; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4017,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (4016)","md5":"6af6953ad10e8c1f3bf28362d073a87e","sha1":"3fbc6d21e264db2d02e576f2e762ce9934924236","sha256":"52dfcc523ffcc1ca90603e466e9e785a408659a8b57aa67f45932c824e6ab055","sha512":"b002a8cba37c927487f0a5da97b0ff7632eb1a16dc4c4c6c43c382a608698305fe797a11bc595ed4c4b4c2b00bd0d2139ae7c66308a3ffffd7bb03095d020888","ssdeep":"","tlshash":"fd81c687f4a1ba36876fe5ed40890ca064394b0cf45c8ae5783e0f592a492a0d71ef1d","first_seen":"2025-12-01T23:19:21.941275Z","last_seen":"2026-02-07T12:42:58.712333Z","times_seen":3,"resource_available":true,"data":null}},"time_used":360,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":360,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-CQO3CuJB.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.630Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-CQO3CuJB.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-1879\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=1ce96a27e7c62e26f64981698b6c26f2; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6265,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (6256)","md5":"131631c16ba14469a6834d72b862cfba","sha1":"a9c3ff5b9e1a55a86ed7873fc0fbf76bffca7063","sha256":"3d6c3116d4e3073a04f81edd25b9b389d191b953e3da1a79cbac4b8373061b93","sha512":"c93395d084e6d70d6d9c53dd64a6906a12359582a4b8091fd088b5f6ed3044a93f3d10335ca317234f775b961fc158faa9488766e650bf43ff3ffc0df8748b13","ssdeep":"192:zdB80Edgjt66Wbte7+HoH1ZwJY/N2aVfV8QLVPgwy:zdB8ojt66utUjzr8Qx4","tlshash":"acd1a606b478adfbe66b98313a914010a01d579dc214eeb0f2bd0f112feaee9635c71d","first_seen":"2025-12-01T23:19:21.928839Z","last_seen":"2026-02-07T12:42:58.68428Z","times_seen":3,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-r6NuSn2j.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-r6NuSn2j.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-a162\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":41314,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (13647)","md5":"3ad2cd91e856f781e703eb2a63e830df","sha1":"08593f8dad6af766afc9e2b1b8328d698c5371bf","sha256":"4290941c58f092ba752927fe090e36735309b0e558e83e969585839a78052f30","sha512":"ea8e0bfff6baa0d14d207d2b034a0e80512b086b24732df24f8d0ee2f04e69e7bfdd86989514ee980d232c33cc351271f4bfc3bad6ef5ff1e107f0f0f119882e","ssdeep":"768:qucwrBq2PZK0X9Lxt492u4zHoa71meNik2O5Zsyx7FE3rupT2dAVKWLAcwySUVzT:qdEjfBCy88Z/zcDkgVi5l","tlshash":"f7032a9bf7c5707203ea61e4906b0806f3295e24b44d84b4b558accb3dea50a47bbf7d","first_seen":"2025-12-01T23:19:21.959224Z","last_seen":"2026-02-07T12:42:58.698984Z","times_seen":3,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/logo-B68Co_53.png","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/logo-B68Co_53.png HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-f66a\"\r\nexpires: Mon, 09 Mar 2026 12:42:30 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":63082,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"52f30bc61bc59c22cf2bb6ada2f5de66","sha1":"02b2ea7f986182600fe6562124c0eb6a6017bd9a","sha256":"a997c092daaf0ff209304217b405f5970f53df0145bb4482c8e751f6c7934f5f","sha512":"4819065b89156f893888ba13cb963e730b069d964407e2b0e7b510d7c916e77c2b393e35ef6024ce2e6c66f1c9d13879b9c544b76e7aa4f759148ac1ede123e3","ssdeep":"768:vWbRZd+u2r4i0x9FT4hNx85aqc82Mrj2hKwuV70zt+gmmVL080HGgu1B4OTwbX:vWbRque4NxTTM85cXgL5APmFmz1BPTMX","tlshash":"a753f1983fa26182c447d7f0971ba3182cb6bd573f6560854dd15204d2b7eaceb84bd3","first_seen":"2025-12-01T23:19:21.982343Z","last_seen":"2026-02-07T12:42:58.691614Z","times_seen":3,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getAsset","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"OPTIONS /v9.data/getAsset HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type\r\nReferer: https://krakenapp.vip/\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: authorization,content-type\r\nset-cookie: SITE_TOTAL_ID=6d0104c4be471f460666a966a92092f3; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":1138,"timings":{"blocked":447,"dns":78,"connect":189,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-B7Anyui2.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-B7Anyui2.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-ca3\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3235,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3234)","md5":"9f08a2a335cd5f9c8affcc44439ebbf0","sha1":"5cba5a03ef962d70e7d34920222799d37bc9aa62","sha256":"bcfc98166c7b2bd438e7e2e10482bcc18fa9f521e19d69e5573a2b21b456f43c","sha512":"cafef9d9f9e63efe793fe472d9e6ef733deaa3aabd54ee2c3881ab09c78ab482772dd111dc27f29eda2d03c7616236457626d0520a775ffeb5d38606e8eaab80","ssdeep":"","tlshash":"d561ab36a374a17b9f02f67dbb5a6adcf128e7715d01b3a5b281201888c7bfc1532917","first_seen":"2025-06-06T06:09:24.90208Z","last_seen":"2026-06-06T05:09:04.57504Z","times_seen":61,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-kmAcbwOH.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.595Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-kmAcbwOH.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-739\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=8617c94a466a25cf92579de62269e654; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1849,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1848)","md5":"b28bcb3fec298fb15c2b0e0972e2cc0c","sha1":"ebbbeb942ba22d28970c3850edb46aa9a2d9f290","sha256":"f8a7a140f2d90089f5b81ae163edac26223b462c1647dde35e2d5c6a07ff125e","sha512":"98628234186fb17c6101d8106339c36c14c27eab8580fcc05524d86e154106e6217c8e2e5220311ace9387aa625470a93a9f53a46c5047438738496c3db75548","ssdeep":"","tlshash":"73314251f8d8b13063938dc8912a58a1d688076b967ce2e2f07b2d501b7169da478f1c","first_seen":"2025-12-01T23:19:21.94353Z","last_seen":"2026-02-07T12:42:58.709412Z","times_seen":3,"resource_available":true,"data":null}},"time_used":347,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":347,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/wallets-DLBFDD61.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.600Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/wallets-DLBFDD61.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 819\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-333\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=6de7ff15e188f0e6f7c2144e4373496f; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":819,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (818)","md5":"280d2116d713ea8b563b788ce612b6bd","sha1":"22ab0ca4ccdfe0963cd5417bd970b79d5c456703","sha256":"253de8d6d23dda031534bf1079668e6164e429dcfda96a46ca9e108faac1a5dd","sha512":"441c63d9a04c9891bb8296766f163a6b6d4b66384beba1c5d9c2ee05fa1681c4286f58e6c754e544d0b912b2be8f4a2ae4b0482e1c216b65760cc9ac70a4de7b","ssdeep":"","tlshash":"4d01c5b421324e670aac935ce16ae301cc3133cf71fc68b83187d10844db320d767682","first_seen":"2025-12-01T23:19:22.042822Z","last_seen":"2026-02-07T12:42:58.713591Z","times_seen":3,"resource_available":true,"data":null}},"time_used":345,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":345,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/logo.png","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 01 Dec 2025 06:57:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d3c3f-f66a\"\r\nexpires: Mon, 09 Mar 2026 12:42:30 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":63082,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"52f30bc61bc59c22cf2bb6ada2f5de66","sha1":"02b2ea7f986182600fe6562124c0eb6a6017bd9a","sha256":"a997c092daaf0ff209304217b405f5970f53df0145bb4482c8e751f6c7934f5f","sha512":"4819065b89156f893888ba13cb963e730b069d964407e2b0e7b510d7c916e77c2b393e35ef6024ce2e6c66f1c9d13879b9c544b76e7aa4f759148ac1ede123e3","ssdeep":"768:vWbRZd+u2r4i0x9FT4hNx85aqc82Mrj2hKwuV70zt+gmmVL080HGgu1B4OTwbX:vWbRque4NxTTM85cXgL5APmFmz1BPTMX","tlshash":"a753f1983fa26182c447d7f0971ba3182cb6bd573f6560854dd15204d2b7eaceb84bd3","first_seen":"2025-12-01T23:19:21.982343Z","last_seen":"2026-02-07T12:42:58.691614Z","times_seen":3,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/use-tab-status-BC_CKPC2.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/use-tab-status-BC_CKPC2.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 189\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-bd\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":189,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"06c853da49a948e06a9e8740510dc99f","sha1":"cee57901b1328094a400e97836f0ea19fdde4082","sha256":"c8c6eb64012ff871d40686e5f1f16862607b63a10dc0df106558fc2b763dc26f","sha512":"2ed06db795bff4af1ddc31cfe6fa9736a604bcf64cbd2161b7aa41be984fd1a1f683d4ec1af96e181e6e5434db67e8f915ca8321f8fab53d9fbe5ca35bf4cd7d","ssdeep":"","tlshash":"4cc0809f4c506374d53c568d753c25310b531727357574f1a02d0d56632b5d412ff907","first_seen":"2025-12-01T23:19:22.011334Z","last_seen":"2026-02-07T12:42:58.714974Z","times_seen":3,"resource_available":true,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getAsset","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"POST /v9.data/getAsset HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nAuthorization: \r\nContent-Length: 24\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":24,"data":"{\"lang\":\"en\",\"token\":\"\"}"}},"response":{"raw":"HTTP/2 401 Unauthorized\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: SITE_TOTAL_ID=e257051085259d6405aecf139e9c985b; Path=/; Max-Age=259200000; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"401","status_text":"Unauthorized","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"37e28a20705ce86feaa1877376d462a8","sha1":"62c706399ef46b3cabfc92f7ca711490562e524a","sha256":"c997ad8953770099107ff85b8a4f8767d537447910fdb6ba44adf6fb94e3e709","sha512":"de49b7af146f7fb6bcc741be86dd98090956a10417eb17ce0ea75ea2acb190262ad1530e7dcdc4c7c29d94b9f27c8a6574868675e3f2cd5a7e74c29ca02deeeb","ssdeep":"","tlshash":"f5a022cc200e0c0a0822c220a20882883b8cc0b30a828b328c0c2f30a0cc0b0b033c3e","first_seen":"2026-02-07T12:42:58.702991Z","last_seen":"2026-02-07T12:42:58.702991Z","times_seen":1,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":246,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getInit","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"OPTIONS /v9.data/getInit HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type\r\nReferer: https://krakenapp.vip/\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: authorization,content-type\r\nset-cookie: SITE_TOTAL_ID=5835ca40a8503b71565a1790a6c627e1; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":230,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/use-id-BHfrFxY_.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.604Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/use-id-BHfrFxY_.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 152\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-98\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=4150ab590f6b884061da8ede208ee231; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":152,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"b0312b9077100084cfae74e0e6dd6a84","sha1":"e09fc1a2e257eddc98c9093dfe91dd625f40f22c","sha256":"c5a23e5408122c3409a7e4215c64bd6d8d35a6e513727f574aa26878626a30d2","sha512":"15ff3cabb66f090851c3f82ab56803dc501c800e8ba1e3d4aaa93430e9b319aacd69ab4d5234f6d936001741b0b25b9a568d98670985e5693c83d35ec320ba76","ssdeep":"","tlshash":"1ac02b4d749820f0260e0cd5e23a066ac12b7c18532a99f4f1780b1707f536a47faf83","first_seen":"2025-12-01T23:19:21.917527Z","last_seen":"2026-02-07T12:42:58.715646Z","times_seen":3,"resource_available":true,"data":null}},"time_used":358,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":358,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index.vue_vue_type_script_setup_true_lang-J3dTgPJj.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.606Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index.vue_vue_type_script_setup_true_lang-J3dTgPJj.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-bba\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=c850c08d5fae29bdaba002ec28a452a7; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3002,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (3001)","md5":"fcc1764361391ccf8f1cd11fbbd378c3","sha1":"62757084d94f088587dffc3945092c8e5ec86ba9","sha256":"3dc6e4fb198e018c2d07218357ad2e49981de1e274630e9ac3d075f7a9e56c21","sha512":"3a7e4671f29e1745006f50095a24ba2670683b05bc3a464cccf8d04eba4bcd7d322566f0547a400ef9fbd73993768c79d167ce3a76f2c59e33a3ba7d0ff4ac5b","ssdeep":"","tlshash":"4751a41efc09c5bad2364c706454010a211c3fefa03791a5b6ee9e1937d2d68b38d738","first_seen":"2025-12-01T23:19:21.919924Z","last_seen":"2026-02-07T12:42:58.710231Z","times_seen":3,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":357,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D-SViGEz.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-D-SViGEz.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-5fe\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1534,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1533)","md5":"a0855b4d6990a0a1e5efe858e4c877cd","sha1":"7cf367272a9a544d1d55fbb92568cee181a0d925","sha256":"c145a373971ce4b91ca00b99cb0b0fa91062e51e5a87f96d72b08f364c96a74e","sha512":"302464811dce015e97d3dc35d99e96579a985962c0554542d325f81899d82335a4cfe99e6f4b1c7f0b7b1b959de2e02cd287f3f3b326aad5f8a8d26211154218","ssdeep":"","tlshash":"59310e123898d6382b87d1c811188541ea2d2b0f987912fee6a27c28d7ae1897421f5b","first_seen":"2025-12-01T23:19:22.002815Z","last_seen":"2026-02-07T12:42:58.716274Z","times_seen":3,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D1Zb-YHa.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.076Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-D1Zb-YHa.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-14c2\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5314,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (5313)","md5":"ae1f250613153f2e0a969b885b98bd3a","sha1":"b78ddbf16de272ce51bf6fd9c6d9128693f18cba","sha256":"51f2ca19528e8f694b5d867151cc5389b11ac5926135eb836f6144fe208fb842","sha512":"9b33677473641e3bb076f77c54ded795c49e04f1abb54c8724ea23b643e9fd82620bddfbe9b64dc0155abefccb501663b2c3824cd7443359a8c5fc5ac0baa247","ssdeep":"96:yUp3uBiu4sRa+NxbDIe40iXPSJfgs2x4QtAs9W9nTtGCFywQG/LNkOb+CIKO2O:yMuBiu4MxbD+LX2fgnx4QtURlh/LNkOo","tlshash":"58b10948f438e57ae73a8e8498554950a31a6bd6e234c0d0b0fe3d161fc1da576b9b18","first_seen":"2025-12-01T23:19:22.000486Z","last_seen":"2026-02-07T12:42:58.711723Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D5VEIFl7.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-D5VEIFl7.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-fb1\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4017,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (4016)","md5":"6af6953ad10e8c1f3bf28362d073a87e","sha1":"3fbc6d21e264db2d02e576f2e762ce9934924236","sha256":"52dfcc523ffcc1ca90603e466e9e785a408659a8b57aa67f45932c824e6ab055","sha512":"b002a8cba37c927487f0a5da97b0ff7632eb1a16dc4c4c6c43c382a608698305fe797a11bc595ed4c4b4c2b00bd0d2139ae7c66308a3ffffd7bb03095d020888","ssdeep":"","tlshash":"fd81c687f4a1ba36876fe5ed40890ca064394b0cf45c8ae5783e0f592a492a0d71ef1d","first_seen":"2025-12-01T23:19:21.941275Z","last_seen":"2026-02-07T12:42:58.712333Z","times_seen":3,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/shadow-Dconu6fW.png","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.597Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/shadow-Dconu6fW.png HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-vcVTU6o1.css\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-cbc2\"\r\nexpires: Mon, 09 Mar 2026 12:42:30 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":52162,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 326 x 342, 8-bit/color RGBA, non-interlaced","md5":"72ff65ec84e3c4db03c5f3290be4281e","sha1":"8f190606206dfc4342f9f0f2e07f2407d49174b2","sha256":"0a1ff2fb35f22dc7a3c559738f0f24da13e0deac9f60ce3d6c7f6dfee37a6b58","sha512":"8981117b19c6a8737a1f3d18e540878e5eee80040a3c695139cf137ce1bfd48c0503db5ccd0d89a0d039775a107a5a25619bc2df45379011d32cf08d6f59dec7","ssdeep":"768:iyBhWIDXp3IJHSdd72j6dWhlpOWGNwSvZ3fCKcrlHHA9IWYWgTms/KwGvmvYujJz:i2XJIVwhVS/HW3vlqVHHpXCwGvUjc9e","tlshash":"5933025e85250bfedd2de5bc76cb789dfb70cbb15489010b8823a5376fcb5180a1a44a","first_seen":"2025-12-01T23:19:21.994393Z","last_seen":"2026-02-07T12:42:58.716951Z","times_seen":3,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Div440YE.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Div440YE.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-bae\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2990,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2989)","md5":"40a4ce855c993ab6deda562ef185a31d","sha1":"94c693d54ed81b51c0d3dbf307a8cef48c11332e","sha256":"7ceda96568f8fbf8cd5956e301ca6ab01ab904738d653abcf333097342b673a6","sha512":"676c7278ed7c359bbdb13d26e68f4cb3e7a0f3a5fc362c35fb1aa7a7dcf20fddc5f74f2e68cdf21e8286481f8022fd44a6f6d2db2a743c469d9542d66f42aa0b","ssdeep":"","tlshash":"f251bd306b48402106f7c68ad2907d4d532dfad1d98a27deb61b9f9d58c77c238b6392","first_seen":"2025-12-01T23:19:21.988317Z","last_seen":"2026-02-07T12:42:58.717575Z","times_seen":3,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/uploads/20230311/92f9d15be55070c0f267e7b9609211da.png","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"GET /uploads/20230311/92f9d15be55070c0f267e7b9609211da.png HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 953\r\nlast-modified: Fri, 10 Mar 2023 16:05:00 GMT\r\netag: \"640b552c-3b9\"\r\nexpires: Mon, 09 Mar 2026 12:42:31 GMT\r\ncache-control: max-age=2592000\r\nset-cookie: SITE_TOTAL_ID=5d43f603777ded88e89e8dad9e81a238; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"92f9d15be55070c0f267e7b9609211da","sha1":"d25e8395244487e169b16cb9508e434ea1ea61dd","sha256":"0e7d0965ce52308846834de79ad8305ea31542444a1ba54888843fc0214418f4","sha512":"d39d1087b689cf8f8d543a282dfc802e0e996ddbdb0553b7376958b0be63dd8f6230451cc3cd3df7d63748ab2165e8e82433c35d4131a7a2c137445ecfeee95b","ssdeep":"","tlshash":"e91188a14b659e01632bcd7fcb2a0142b20b22efb465d716a88f533d0795d871059f85","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-08T08:00:48.021356Z","times_seen":1509,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/uploads/20230311/1d8873b15ce7e65a262d1788f19912ef.png","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"GET /uploads/20230311/1d8873b15ce7e65a262d1788f19912ef.png HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 1008\r\nlast-modified: Fri, 10 Mar 2023 16:01:26 GMT\r\netag: \"640b5456-3f0\"\r\nexpires: Mon, 09 Mar 2026 12:42:31 GMT\r\ncache-control: max-age=2592000\r\nset-cookie: SITE_TOTAL_ID=d3c4fc93501d708e9e9008e8518df924; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1008,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit colormap, non-interlaced","md5":"1d8873b15ce7e65a262d1788f19912ef","sha1":"ef5b427eafdcd42ba4e2a785a49bbfb13fb0c1e0","sha256":"93d103ab945f2972cbdd53050d239c6b9df3d430e9343a21143e805b280e3967","sha512":"1d09a7cf6e12da2a6a2d7a16cba54408f3a90dd58acef01b268b37c3f0545b0541aca6725b894862af1de877dd6c7d2ab9cec94baa7584536e9011e6c5553dcb","ssdeep":"","tlshash":"5a11c461b9beb91ac362083381c121b0ca066c3b4120f2e7cc08b210a23c00ad7c782e","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-07T20:45:48.005901Z","times_seen":354,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-CsxycG0o.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-CsxycG0o.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-CQO3CuJB.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-7b3\"\r\nexpires: Sun, 08 Feb 2026 00:42:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1971,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1970)","md5":"0fad9904b3dc0453bae24f4517e63d53","sha1":"739339012ee2030b759c44667b84b4f0c78b98ec","sha256":"0e3435633c2f6019e125544b6bf822c581054964b765b493e515b2e782d0c01e","sha512":"2ff00e3bba41729b3a20bc02fc241040e574537fa81c8fc8e13fd3a95e9ab17e29c29482a8f7698c038a6aae7d2ac3ddae81269437231ca5af20fc243ea07c1c","ssdeep":"","tlshash":"0c41537d78c41074ebbb9ccc90620912f61b5729023498f1e0aa5d2c2b2b549e17be35","first_seen":"2025-12-01T23:19:21.924025Z","last_seen":"2026-02-07T12:42:58.72014Z","times_seen":3,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-PDUcnBp8.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.572Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-PDUcnBp8.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-c22\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3106,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3105)","md5":"ef19b6e6f625f089ef9145df80f939f5","sha1":"2f47a1d3d5c9e38ce9a1cf75a6ef98d7625dafb6","sha256":"4cbf8b6ab9c85c2600d45aaadd0779dedc85fb54f51c5794cd4b3f1d42f29695","sha512":"41d1bcfa800edb3b24307d6b2667cca26f8636a572b7949e76773a81b304706fd9aec76281581bd077bfd6a1b507451d725ef55999407ee4121e2416cb3d2828","ssdeep":"","tlshash":"8a512690d1cd50388fc2b5e587da8bd7aa3b7451ab41c1b0b276040eafc77b4158bf29","first_seen":"2025-12-01T23:19:22.055851Z","last_seen":"2026-02-07T12:42:58.720758Z","times_seen":3,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/pureFunctionsAny.generated-BXiNt-Wh.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/pureFunctionsAny.generated-BXiNt-Wh.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-2930d\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":168717,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (43840)","md5":"0ae1152a8ed242138ce5106d5d9c7c80","sha1":"3d820f8051d6eb69210a26cacd73a393eabb85b9","sha256":"2986575ad331967ad2f576aba9b4b64b088888e3c7aaf97f3d4e5c0ccd4062d0","sha512":"8b8d53714b8a766a2a272a32bd68ddb32f2332cb939ce32abf88661c7e9a840c85a43a5e370e5b505a8c8769520d1359cb11a33659e17f1ce1447674e8ca0f2d","ssdeep":"3072:TgTCsnOmrarfhntbTr3VPJxIL98IXS28Bak+Hg:TwnOTtbPhJxSrihaJHg","tlshash":"67f309c872e1f06353e334a154bf550af27a6c58b8095864f115a0fa7df1946a2bff38","first_seen":"2025-12-01T23:19:22.0442Z","last_seen":"2026-02-07T12:42:58.721383Z","times_seen":3,"resource_available":true,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getInit","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.335Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"POST /v9.data/getInit HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nAuthorization: \r\nContent-Length: 24\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":24,"data":"{\"lang\":\"en\",\"token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nset-cookie: SITE_TOTAL_ID=5363b84cb1ceaf800f5e227fa85c4563; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":225,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1cc3f6bf9d3c6b3c997ed94f08f24eb0","sha1":"c9b9679bc03c66a536a916499794c676590dbd72","sha256":"f02bbf0d49d4221b3371935b78170b4c8103b04fd5fd3ed5cb03ce09e575f425","sha512":"10291b5642d8ec4cd6e548011628d202b778b9ceeb5be8bdbb5fc5ce7c7a62a0dab0d2d82472c6091eac36213e064ce0662894b2107d816e5efe6dc467e53371","ssdeep":"","tlshash":"a0d023fd52af01638f002d44ac0d279fef8811256c45d27adf4d49b801640f4b31c837","first_seen":"2026-02-07T12:42:58.722059Z","last_seen":"2026-02-07T12:42:58.722059Z","times_seen":1,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-CsxycG0o.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.632Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-CsxycG0o.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-7b3\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=9e5907531a1c37d0e3899c254eb2a1c9; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1971,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1970)","md5":"0fad9904b3dc0453bae24f4517e63d53","sha1":"739339012ee2030b759c44667b84b4f0c78b98ec","sha256":"0e3435633c2f6019e125544b6bf822c581054964b765b493e515b2e782d0c01e","sha512":"2ff00e3bba41729b3a20bc02fc241040e574537fa81c8fc8e13fd3a95e9ab17e29c29482a8f7698c038a6aae7d2ac3ddae81269437231ca5af20fc243ea07c1c","ssdeep":"","tlshash":"0c41537d78c41074ebbb9ccc90620912f61b5729023498f1e0aa5d2c2b2b549e17be35","first_seen":"2025-12-01T23:19:21.924025Z","last_seen":"2026-02-07T12:42:58.72014Z","times_seen":3,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Drq0_EwN.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Drq0_EwN.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-8ab\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=d6eeab16fb1e7e53d55f224a55582f9d; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2219,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2218)","md5":"a5c2b2a95b7d5a4f4656217d1ea017f1","sha1":"a104f0fb764ef3b2d01a9dd2251571ccdfe44c1b","sha256":"2930bbec9f7ac6136bf2de040ca06705f916b5dfb5fd7fceacda3429d80b4fb9","sha512":"ecd509517b351b0e243cf73dc377ba4cc3f3402640fe521d5fa0013af005fcf30356fc6310b7814a958959c22d8039c33b45f21b069372ef2b53dac0833f214a","ssdeep":"","tlshash":"b74169c915f94a74db5a029390240d23bc790e84a01784d5e77d0c4963446ddb7aba0a","first_seen":"2025-12-01T23:19:21.971239Z","last_seen":"2026-02-07T12:42:58.700425Z","times_seen":3,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D-SViGEz.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-D-SViGEz.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-5fe\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=b39c52711afe32a381612540c9f4ac5d; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1534,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1533)","md5":"a0855b4d6990a0a1e5efe858e4c877cd","sha1":"7cf367272a9a544d1d55fbb92568cee181a0d925","sha256":"c145a373971ce4b91ca00b99cb0b0fa91062e51e5a87f96d72b08f364c96a74e","sha512":"302464811dce015e97d3dc35d99e96579a985962c0554542d325f81899d82335a4cfe99e6f4b1c7f0b7b1b959de2e02cd287f3f3b326aad5f8a8d26211154218","ssdeep":"","tlshash":"59310e123898d6382b87d1c811188541ea2d2b0f987912fee6a27c28d7ae1897421f5b","first_seen":"2025-12-01T23:19:22.002815Z","last_seen":"2026-02-07T12:42:58.716274Z","times_seen":3,"resource_available":true,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/useWeb3-mQiMsCIL.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/useWeb3-mQiMsCIL.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-60c\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1548,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1547)","md5":"8504d9947cb1bc32ebc9c950e57296d8","sha1":"1794ce649d40de82da96913d25552faf6ba759c9","sha256":"792cb99bdaf87005f0a51844460d5d32ff33acfbbbdf4d3cf69357c20735b5fb","sha512":"70e711b9d19e223131ec67d31dd99ac52df216bd76a009ad2b8da30423328124ca1158b7f9ac60ba0eeaa1168d9df79163030b01a58b6ce3446c47c1c948c16e","ssdeep":"","tlshash":"a831000e31445670a37c0c9ef8ac21e017311b55392de8ddac2c4d533698e5e83bb6aa","first_seen":"2025-12-01T23:19:21.980195Z","last_seen":"2026-02-07T12:42:58.723393Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BKZudewD.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BKZudewD.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-1d26\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7462,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (7461)","md5":"5b4c0f606f604ddf72dc1deb18aaea7b","sha1":"97b14e2c6f8d90743a14f55fcb7bcd65de5b9eab","sha256":"a8003a03bcdb8b6dd7d3a777ad87552e8b8ff9afc1adc518b1d36114d016892f","sha512":"b00d0fb7e1cc1ff5bb2263f7b8428f764df3991c484618c8b7c325d8b4dafc165a15a0d28ab0b1ff2b8ef4e1101f9127705d6597612e654b89e0f2a25e16ab24","ssdeep":"192:vFnh54k2/4e1sjzv38AOYf+GVGoVv25cyZzNv5ibn:vPC4e1sjzk4f7GaemyBNhiT","tlshash":"75f1b8256b57406cd62ecde04544624019dd23ed3129c493e8deae28da57ef8be3f2e1","first_seen":"2025-12-01T23:19:22.041153Z","last_seen":"2026-02-07T12:42:58.688501Z","times_seen":3,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/v9.data/getFundReport","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.637Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"OPTIONS /v9.data/getFundReport HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type\r\nReferer: https://krakenapp.vip/\r\nOrigin: https://krakenapp.vip\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://krakenapp.vip\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: authorization,content-type\r\nset-cookie: SITE_TOTAL_ID=f483e0131d0f085a20384f833160c726; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":1173,"timings":{"blocked":463,"dns":80,"connect":197,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-D-A-V2Q_.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-D-A-V2Q_.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\ncontent-length: 785\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-311\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":785,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (784)","md5":"7a02680c7a38fc4ed5c607059b027bb0","sha1":"79e1bbd924b842337a990bf87273d60accd61b1b","sha256":"8387a057bcb51ab5c7faa248f2fcd1267182637ac0edfa29857e1779ff9c78dc","sha512":"db080323884a3c96655d06e60d8d4f8f5a271e62d47d7c89175a0ff1df76152a1c6fa743135d6312e789f824482c56bb1a78272db50b96afb04a6e1a4113c457","ssdeep":"","tlshash":"7201a19f5370d43aae233d75fbe776f8a03ac9414d0e85a873c0504e088b6f63316215","first_seen":"2024-08-19T20:20:38.833284Z","last_seen":"2026-06-01T14:38:29.753808Z","times_seen":39,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":186,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/pureFunctionsAny.generated-BXiNt-Wh.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/pureFunctionsAny.generated-BXiNt-Wh.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-2930d\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=cf0cb751582a7b5e779f890b0f48de06; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":168717,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (43840)","md5":"0ae1152a8ed242138ce5106d5d9c7c80","sha1":"3d820f8051d6eb69210a26cacd73a393eabb85b9","sha256":"2986575ad331967ad2f576aba9b4b64b088888e3c7aaf97f3d4e5c0ccd4062d0","sha512":"8b8d53714b8a766a2a272a32bd68ddb32f2332cb939ce32abf88661c7e9a840c85a43a5e370e5b505a8c8769520d1359cb11a33659e17f1ce1447674e8ca0f2d","ssdeep":"3072:TgTCsnOmrarfhntbTr3VPJxIL98IXS28Bak+Hg:TwnOTtbPhJxSrihaJHg","tlshash":"67f309c872e1f06353e334a154bf550af27a6c58b8095864f115a0fa7df1946a2bff38","first_seen":"2025-12-01T23:19:22.0442Z","last_seen":"2026-02-07T12:42:58.721383Z","times_seen":3,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":357,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/useWeb3-mQiMsCIL.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/useWeb3-mQiMsCIL.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-60c\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=651fa2303e203e972f5f8d32ff20f207; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1548,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1547)","md5":"8504d9947cb1bc32ebc9c950e57296d8","sha1":"1794ce649d40de82da96913d25552faf6ba759c9","sha256":"792cb99bdaf87005f0a51844460d5d32ff33acfbbbdf4d3cf69357c20735b5fb","sha512":"70e711b9d19e223131ec67d31dd99ac52df216bd76a009ad2b8da30423328124ca1158b7f9ac60ba0eeaa1168d9df79163030b01a58b6ce3446c47c1c948c16e","ssdeep":"","tlshash":"a831000e31445670a37c0c9ef8ac21e017311b55392de8ddac2c4d533698e5e83bb6aa","first_seen":"2025-12-01T23:19:21.980195Z","last_seen":"2026-02-07T12:42:58.723393Z","times_seen":3,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":357,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/use-tab-status-BC_CKPC2.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/use-tab-status-BC_CKPC2.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 189\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-bd\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=65421a458cfa5b8195fa04fbc616c07d; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":189,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"06c853da49a948e06a9e8740510dc99f","sha1":"cee57901b1328094a400e97836f0ea19fdde4082","sha256":"c8c6eb64012ff871d40686e5f1f16862607b63a10dc0df106558fc2b763dc26f","sha512":"2ed06db795bff4af1ddc31cfe6fa9736a604bcf64cbd2161b7aa41be984fd1a1f683d4ec1af96e181e6e5434db67e8f915ca8321f8fab53d9fbe5ca35bf4cd7d","ssdeep":"","tlshash":"4cc0809f4c506374d53c568d753c25310b531727357574f1a02d0d56632b5d412ff907","first_seen":"2025-12-01T23:19:22.011334Z","last_seen":"2026-02-07T12:42:58.714974Z","times_seen":3,"resource_available":true,"data":null}},"time_used":355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/wallets-DLBFDD61.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/wallets-DLBFDD61.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 819\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-333\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":819,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (818)","md5":"280d2116d713ea8b563b788ce612b6bd","sha1":"22ab0ca4ccdfe0963cd5417bd970b79d5c456703","sha256":"253de8d6d23dda031534bf1079668e6164e429dcfda96a46ca9e108faac1a5dd","sha512":"441c63d9a04c9891bb8296766f163a6b6d4b66384beba1c5d9c2ee05fa1681c4286f58e6c754e544d0b912b2be8f4a2ae4b0482e1c216b65760cc9ac70a4de7b","ssdeep":"","tlshash":"4d01c5b421324e670aac935ce16ae301cc3133cf71fc68b83187d10844db320d767682","first_seen":"2025-12-01T23:19:22.042822Z","last_seen":"2026-02-07T12:42:58.713591Z","times_seen":3,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/use-id-BHfrFxY_.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/use-id-BHfrFxY_.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 152\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-98\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":152,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"b0312b9077100084cfae74e0e6dd6a84","sha1":"e09fc1a2e257eddc98c9093dfe91dd625f40f22c","sha256":"c5a23e5408122c3409a7e4215c64bd6d8d35a6e513727f574aa26878626a30d2","sha512":"15ff3cabb66f090851c3f82ab56803dc501c800e8ba1e3d4aaa93430e9b319aacd69ab4d5234f6d936001741b0b25b9a568d98670985e5693c83d35ec320ba76","ssdeep":"","tlshash":"1ac02b4d749820f0260e0cd5e23a066ac12b7c18532a99f4f1780b1707f536a47faf83","first_seen":"2025-12-01T23:19:21.917527Z","last_seen":"2026-02-07T12:42:58.715646Z","times_seen":3,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BK94yxQ0.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BK94yxQ0.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-1079\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4217,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4216)","md5":"31f439e6a7ddb1bff2416ff717e78df6","sha1":"04c084b7f9183ae7baa12e93fbe4e912326c0519","sha256":"fbff4b7cae7fe4ad45406bcafee05b1baa2499881e93a0d8bac05ceb973b13c8","sha512":"b6ee7a6ad8493c173e3afe762143be99a5bb06f48fd59996e561b304860740f83d40191e32a2183dc34c0fd7d200a1a0f896eafe8edb7c9c084e4f7c3700092b","ssdeep":"48:3Yr3BB353bk7cfPG8mypWe9YVeLe5BC4ZQlf4JMkJMbD3p/M4rU7Imf2:orjp2APG9yweSoe5cMJMkJMXp/MRI","tlshash":"76916bc69ee4ba75df02a9fe5b45d0e8f3a8d730ce039361f31058964ac7ab61702535","first_seen":"2025-05-03T15:25:53.026413Z","last_seen":"2026-06-06T05:09:04.557Z","times_seen":31,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-DW_Drp4i.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-DW_Drp4i.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-641\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1601,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1600)","md5":"f8edf12c707c2d5e6be6bd994a852c07","sha1":"da0ba8d27a7dfea0541b897492689b2008fd5cda","sha256":"dc0e125c90a22f959276e32adc4cdbbf63f0a7c849660146686c49ef714b2937","sha512":"f74cad18a325eac4bf33e09275b3614cff2a98d3602fb54f05fcb3fda3d2838a6bfbce9de201da9e424f74909def788cd7b2de29d589eb25a93b319d5157bc03","ssdeep":"","tlshash":"11313d857a21e1747f99f86a2f1b95dcf43eda52ce11c1e1b982811048cb3f22f26254","first_seen":"2025-12-01T23:19:21.957083Z","last_seen":"2026-02-07T12:42:58.725548Z","times_seen":3,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BjWVbkQK.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BjWVbkQK.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-67c\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=f1c4796a7d073cc5587c3462d7ca6e05; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1660,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1659)","md5":"d0ab9e834a2825bc9c50d600dba7ee44","sha1":"89326f1dc3d62cac003daa11c8164edb2305e78f","sha256":"5b5e9ac94128d3e66aec992dc270dc67752fa0240ac5ce955d23268f0397df17","sha512":"9946c70998dca1b2bef8955bd847cc1314e49415bab8c34744823cb322f18d452e2ab390d52b3bb992cdaef41ebe081962e0500a6b2abf43767c78f5348cbd3b","ssdeep":"","tlshash":"49314249bac1e035d34fe0c0505554919208ef2ae66990f4e077ef942fad185b96872c","first_seen":"2025-12-01T23:19:21.952226Z","last_seen":"2026-02-07T12:42:58.726148Z","times_seen":3,"resource_available":true,"data":null}},"time_used":348,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":348,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BjWVbkQK.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:30.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BjWVbkQK.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-BLcXRUH3.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:30 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-67c\"\r\nexpires: Sun, 08 Feb 2026 00:42:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1660,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1659)","md5":"d0ab9e834a2825bc9c50d600dba7ee44","sha1":"89326f1dc3d62cac003daa11c8164edb2305e78f","sha256":"5b5e9ac94128d3e66aec992dc270dc67752fa0240ac5ce955d23268f0397df17","sha512":"9946c70998dca1b2bef8955bd847cc1314e49415bab8c34744823cb322f18d452e2ab390d52b3bb992cdaef41ebe081962e0500a6b2abf43767c78f5348cbd3b","ssdeep":"","tlshash":"49314249bac1e035d34fe0c0505554919208ef2ae66990f4e077ef942fad185b96872c","first_seen":"2025-12-01T23:19:21.952226Z","last_seen":"2026-02-07T12:42:58.726148Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-Dhqj5NJ4.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-Dhqj5NJ4.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-5dbe\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=1ece8cee10aa0edc9eac0dfaf5dfaa37; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23998,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (23316)","md5":"25b64ef85ac3d254db35bda802093ffe","sha1":"80d6ff3fb94600ab874039c7d3e8234ea6e6271f","sha256":"e2cb64fa927b66d08f0021034682f2d20b65ad4d00eb568335921703df35b666","sha512":"44c8b3380e2510db1bc26a7e91107d82103065f2743376c2644d0214cead88c45a194731e3f339a9b4a10bacef5ba1f27ac3abab4fe5a8c5c185486d8756616e","ssdeep":"384:WSQpH0b5ds/DYzKRorOXTLs2t1V3mDz2Y2b6qrZosS3FJf2p7zKY2BWybnF/rVKU:WSu3DYzKRorOXTLs2t11jY2+qrZoL3rX","tlshash":"16b29195df18c89c2a31e24a2d89a4d47a5d6f238ea841262cbdff1d35e0f740539b38","first_seen":"2025-12-01T23:19:21.95452Z","last_seen":"2026-02-07T12:42:58.694835Z","times_seen":3,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-B5uP-BwP.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.633Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-B5uP-BwP.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://krakenapp.vip/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-70e\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nset-cookie: SITE_TOTAL_ID=88c3b7c24c4cc094634b4577e2e53747; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1806,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1805)","md5":"5e51fb02fe826f159e3877c122dd42f6","sha1":"6ab1993e857064941528f05f5c1e17ed8bbf7b08","sha256":"349b42088e3873c1db2e4cd5bb3d3995706ae35eb187be1271f216def12dc460","sha512":"93979bed8702e4160c539eff5f7be07a2ba755509bdbaddbf124313bff354fd4bbc111a63c0739bc2c186dc0947bfea4ab860eb4137e4043facae6b95d925b30","ssdeep":"","tlshash":"5031a74b1dc852b21c47c4fde15ae052e9ad250c7ca041e0c098be2b615ffc4eeabe1c","first_seen":"2025-12-01T23:19:21.955867Z","last_seen":"2026-02-07T12:42:58.726775Z","times_seen":3,"resource_available":true,"data":null}},"time_used":358,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":358,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-BUEieANg.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.564Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-BUEieANg.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-791\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1937,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1936)","md5":"8bcea6122f4da3a390e585a9cb955364","sha1":"5893fbd2b4bcf471737e4191cc04c2d28bfb0b17","sha256":"fd42d3f7845b3e4e864d1824382953519bea03bd4b8f249ba6e8b0ed6fccd74c","sha512":"a58954ada7927f6c872feb176f7ef01eaf3ab24e0165d18a458117bccbe4bf058d777ddca5147cd16d2bd25cf9d83bcff5232de3c924490db6766944d00f1593","ssdeep":"","tlshash":"7041d4726594713dff06f0e4936776d8a238f423d902c19ab30453188ac7ff566b226e","first_seen":"2025-04-17T21:25:00.096293Z","last_seen":"2026-06-04T15:28:13.452587Z","times_seen":93,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-C5wQvquC.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:29.581Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-C5wQvquC.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:29 GMT\r\ncontent-type: text/css\r\ncontent-length: 922\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\netag: \"692d543b-39a\"\r\nexpires: Sun, 08 Feb 2026 00:42:29 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":922,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (921)","md5":"1bc453ec250f1ba46d48d43307306e2b","sha1":"0d9eefc8fb6ed5033bf50aeb36394710fbc42e2b","sha256":"a6cc73037577336c90a1df89f9fc69f6ddab7dc38f1a23382d37259aec9e628a","sha512":"d39cd66717b7a002661ef077fbf94af7fcf9e785e381c0bf3569ca3f856d21266f471588e06e5282e31d37737cc56af26222b0420c6273853f402ca8e3ba4508","ssdeep":"","tlshash":"0511b635e112a16309bfc45f34aaca9c4ba4eea1c9458310b10a60283ccf8933df4fca","first_seen":"2025-12-01T23:19:22.036269Z","last_seen":"2026-02-07T12:42:58.728208Z","times_seen":3,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-B0XF0RGJ.css","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-B0XF0RGJ.css HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-470\"\r\nexpires: Sun, 08 Feb 2026 00:42:31 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1136,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1135)","md5":"c1fbb5ff2639ea1e5ebb67413b63214b","sha1":"a68a31ed8a16aeb95838e9658b44d3b9b17bb014","sha256":"67107ff8623e632a63fecc07238cd4256be6a68ffa7eaaf69092cc89c2f50d1a","sha512":"1d87140cb9dd216fba1bd9402b66e6d27e595e5101a33350bf0435fd0a4fd3f22fe42b8700cd6e1c5f2b28b9992b2427ad42316a68cf09f8b657081ab7c7c730","ssdeep":"","tlshash":"3c21be717e9c0911b87fd8c1aa20bbd800656295c2458b3dad7bb7609dc72d7ba72305","first_seen":"2025-12-01T23:19:22.05483Z","last_seen":"2026-02-07T12:42:58.729498Z","times_seen":3,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.zzladmin.com/uploads/20230311/db1f13e46508474023e51dac9b924272.png","fqdn":"api.zzladmin.com","domain":"zzladmin.com","tld":"com"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:31.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad.zzladmin.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 31 Jan 2026 13:48:00 GMT","end":"Fri, 01 May 2026 13:47:59 GMT"},"fingerprint":{"sha1":"42:4F:28:25:BA:9E:C0:2B:5F:E1:E0:5D:FF:94:C9:0A:32:ED:E2:73","sha256":"36:F1:51:A8:B4:E2:BE:8F:E5:86:5C:B4:A2:9E:58:B9:40:7A:BA:4D:28:75:6B:AC:C5:BB:06:C1:8B:BE:D2:70"}}},"request":{"raw":"GET /uploads/20230311/db1f13e46508474023e51dac9b924272.png HTTP/1.1\r\nHost: api.zzladmin.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 957\r\nlast-modified: Fri, 10 Mar 2023 16:05:30 GMT\r\netag: \"640b554a-3bd\"\r\nexpires: Mon, 09 Mar 2026 12:42:31 GMT\r\ncache-control: max-age=2592000\r\nset-cookie: SITE_TOTAL_ID=710e29dad33b8c070dcf6370438b2c8c; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":957,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 97 x 96, 8-bit colormap, non-interlaced","md5":"db1f13e46508474023e51dac9b924272","sha1":"976aea7b350c3d301a1bcc9350fa9b54bff9c8af","sha256":"50b7635088e72a9f004283284a8d63488fa127afa53e157393ca38bb55db1ff2","sha512":"08f80512e3edb58c31435f259a6d27f0ce55186594e94b3d5883245788edf4b503cae6f5361876896658070c159de7d4ea5457b0bdda11df6673f02e7c598181","ssdeep":"","tlshash":"c511b7abf5cceccad1b1414f118a4490e550cdb0147da74eea127e1bb839ab02d04f1a","first_seen":"2023-05-07T19:16:40Z","last_seen":"2026-06-06T23:47:44.179662Z","times_seen":510,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":181,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/assets/index-B5uP-BwP.js","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenapp.vip/","date":"2026-02-07T12:42:32.297Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET /assets/index-B5uP-BwP.js HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenapp.vip/assets/index-CQO3CuJB.js\r\nCookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-70e\"\r\nexpires: Sun, 08 Feb 2026 00:42:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1806,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1805)","md5":"5e51fb02fe826f159e3877c122dd42f6","sha1":"6ab1993e857064941528f05f5c1e17ed8bbf7b08","sha256":"349b42088e3873c1db2e4cd5bb3d3995706ae35eb187be1271f216def12dc460","sha512":"93979bed8702e4160c539eff5f7be07a2ba755509bdbaddbf124313bff354fd4bbc111a63c0739bc2c186dc0947bfea4ab860eb4137e4043facae6b95d925b30","ssdeep":"","tlshash":"5031a74b1dc852b21c47c4fde15ae052e9ad250c7ca041e0c098be2b615ffc4eeabe1c","first_seen":"2025-12-01T23:19:21.955867Z","last_seen":"2026-02-07T12:42:58.726775Z","times_seen":3,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenapp.vip/","fqdn":"krakenapp.vip","domain":"krakenapp.vip","tld":"vip"},"ip":{"addr":"141.11.142.88","port":443,"asn":63902,"as":"SHINE TELECOM CO., LTD.","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-07T12:42:26.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krakenapp.vip","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 13:48:15 GMT","end":"Tue, 05 May 2026 13:48:14 GMT"},"fingerprint":{"sha1":"C8:1A:37:65:B2:1F:1E:15:F7:9F:B8:0B:5E:FE:F9:B3:3A:D3:4B:E8","sha256":"E3:C1:D4:D9:46:26:B3:50:83:27:3D:F3:38:E5:B6:D4:81:C3:A7:EB:9F:AC:51:F1:9D:DF:91:F0:30:B8:D5:DB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: krakenapp.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 12:42:27 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 01 Dec 2025 08:39:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"692d543b-764\"\r\nset-cookie: SITE_TOTAL_ID=f700697df4b7b63a73e0f0ab47502f3a; Path=/; Max-Age=259200000; HttpOnly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1892,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF, CR, LF line terminators","md5":"5e1d1b0c5ce3c7cd6d1ec43823680d8d","sha1":"874062d3af63d3e31654d6d1f9ed49383d2140ff","sha256":"c97cd6a59e2267231c992917e189aaa70d09784c313127bcaedc1439838eb176","sha512":"f37905b71aab5a9060375292912c19e8f233fa85dc3fe3cda92301aae70fda7a183f1273a3c44343afda0726f3d7bef2cfab7c5dff60500806681488fbca7997","ssdeep":"","tlshash":"1841ee8645c32826033446a46fe3f418cf32e59bea09a94478dd986f8fe3f8185d7277","first_seen":"2025-12-01T23:19:22.039911Z","last_seen":"2026-02-07T12:42:58.730926Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1111,"timings":{"blocked":463,"dns":83,"connect":186,"send":0,"wait":185,"receive":0,"ssl":192},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"krakenapp.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}