{"report_id":"a3f7ca16-0815-466a-ae91-f2a9bce96549","version":6,"status":"done","tags":[],"date":"2026-05-14T18:49:38Z","url":{"schema":"http","addr":"case-491291.com","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"case-491291.com/","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"title":"Coinbase","dom":{"size":5613,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (3116)","md5":"a371df2dd63b9b0e61b2e85498e8edcf","sha1":"8b25219bfecb4921ab435af1eee8e53f0af2494c","sha256":"a52afcaa8edbbd839fd609c0c5adcce943c91e8b04fd300b72e6fa1c5fadc030","sha512":"60fb4d4c4d0efdc36a99cc9e2d0b2db98c7f344043cd4b7d0129694ea98c257fa3dd211e46e116ca6a009d025ee7750ec71415e2ed924346d13e7ca5e03672d3","ssdeep":"96:zfNfAB8zQnF9ANEE+2Frg6aJTsqMWLnXO9XAW9XAp9XAA9XAz9XAXq7bglF6A4:zfNfAB8zQnFotONgq1Ln+919y93909qe","tlshash":"bcc191532091a97f33d345547062be4fe098f213d36b9a4a35bc01e46fc7da188eb369","dom_hash":"domhash75156bc1f55f2defe5acb037ede6909b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"case-491291.com","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-18T18:49:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"case-491291.com","ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2026-05-14","domain_rank":0,"first_seen":"2026-05-14T18:49:39.696596Z","last_seen":"2026-05-14T18:49:39.696596Z","alert_count":0,"request_count":9,"received_data":493845,"sent_data":4270,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"case-491291.com/assets/index-BaUvKYO-.js","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"36631406c6aef31c51d3f8e4e6b4cbae","sha1":"030efbd01d869bed2a6b93e555a0cf79c05f5b32","sha256":"d4962cd84e4057e6f119b01337ceccfcd13ceed150aefbb75ce9c8ed0cf99e2b","sha512":"baeff1caaaaa9f7ed0525118c1264a3595763c39291c508283552a564a42dbb524b04bdbe6f2d8a9d8ab95ec8aab66ccc5dcf7c571c0063343224f42fa9af59d","ssdeep":"6144:7c+e8dYGPCjnvrVK5uFXnn8nM350yrC1zcIa/:YMwK5KLmcn","tlshash":"10445de871a5f562af6346b1006f150b733d18679c0d4870b160fdae3ab1885a2bbfdd","size":277871,"data":"","first_seen":"2026-05-14T18:49:44.369785Z","last_seen":"2026-05-14T18:50:59.967329Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"case-491291.com/assets/Coinbase_Text-Bold-web-1.32-C8vjQzr5.woff2","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.377Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /assets/Coinbase_Text-Bold-web-1.32-C8vjQzr5.woff2 HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/assets/index-Cb83uGf0.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:17 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 40800\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nConnection: keep-alive\r\nETag: \"6a05e79f-9f60\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":40800,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 40800, version 1.2097","md5":"ca5a08f097453f17ba8c89cc2ce98420","sha1":"bbefef62277dada2f89b41c2f3c204549427a7f8","sha256":"4be5d627063e3eb06725a3b6a863da38d65085a6cf7d3622e4f5da483c587f52","sha512":"6b6990ad1221364ad0ab5ada39d4d455ac2a9e3ab0699f4b0b24998e667456388ed5625f6c859ce5f0234a42c9871271713a5d7880e17c9dd12e27214dc2bb4c","ssdeep":"768:neSQ1/4HyYog0CaHPjKob5FskTaJnagf+rDm5AN6yncWD7Eq:eSQ1AdojJb5XQp+HeE1cQ4q","tlshash":"b703027632ec15bcd766272f48a8333de75e82aca7ca20cc159d5ea06e0ecd4a15563c","first_seen":"2026-05-02T15:31:56.234839Z","last_seen":"2026-05-14T18:50:59.974262Z","times_seen":3,"resource_available":false,"data":null}},"time_used":327,"timings":{"blocked":108,"dns":0,"connect":0,"send":0,"wait":106,"receive":53,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-14T18:49:16.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:16 GMT\r\nContent-Type: text/html\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6a05e79f-559\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1369,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"0273261a4d62199045e85faab95300ed","sha1":"f04023303983a04dfb6261e9a9f4943d803a5053","sha256":"0526a32e2f29055c7ee0349dc409788c6b185c43517763cb83056b0764f867f2","sha512":"179b72f209dd15cc7df2621be22694b99ac44ca96180e986f928a1665211d23573c943c09951cd1b783c48f7495f76f4dedf122bfb2ddb2675974b62e71ee594","ssdeep":"","tlshash":"5b215a538264d854a374816429f2f40ccf62a187f3645c4e798d61ee0fc6b91caf77b6","first_seen":"2026-05-14T18:49:44.36299Z","last_seen":"2026-05-14T18:50:59.970608Z","times_seen":2,"resource_available":true,"data":null}},"time_used":302,"timings":{"blocked":124,"dns":6,"connect":54,"send":0,"wait":54,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/assets/index-BaUvKYO-.js","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /assets/index-BaUvKYO-.js HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:17 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 277871\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nConnection: keep-alive\r\nETag: \"6a05e79f-43d6f\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":277871,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (43384)","md5":"36631406c6aef31c51d3f8e4e6b4cbae","sha1":"030efbd01d869bed2a6b93e555a0cf79c05f5b32","sha256":"d4962cd84e4057e6f119b01337ceccfcd13ceed150aefbb75ce9c8ed0cf99e2b","sha512":"baeff1caaaaa9f7ed0525118c1264a3595763c39291c508283552a564a42dbb524b04bdbe6f2d8a9d8ab95ec8aab66ccc5dcf7c571c0063343224f42fa9af59d","ssdeep":"6144:7c+e8dYGPCjnvrVK5uFXnn8nM350yrC1zcIa/:YMwK5KLmcn","tlshash":"10445de871a5f562af6346b1006f150b733d18679c0d4870b160fdae3ab1885a2bbfdd","first_seen":"2026-05-14T18:49:44.369785Z","last_seen":"2026-05-14T18:50:59.967329Z","times_seen":2,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":169,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/coinbase-logo.png","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.345Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /coinbase-logo.png HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-16T23:15:02.360454Z","times_seen":15302914,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/assets/Coinbase_Display-Bold-web-1.32-CuFc90yF.woff2","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.369Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /assets/Coinbase_Display-Bold-web-1.32-CuFc90yF.woff2 HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/assets/index-Cb83uGf0.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:17 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 38648\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nConnection: keep-alive\r\nETag: \"6a05e79f-96f8\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38648,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 38648, version 1.2097","md5":"54cecc055d89882e7d9b7bd5e0fe792d","sha1":"260252722c8c217a512b08eb228b0867dc7ca16e","sha256":"aebdaa8561b78eeb8630f7c8e336d8f898cfa269afcef808066d5308d5f02945","sha512":"579a706103a47da46cba02a7ffe00345ac0fca56c74200d8e21be06cbf3d2cf2e4902e2ee02792be8aac959ab89a56b410b185d0e89fa3e7db54af311ca4c759","ssdeep":"768:pRJEgtKj/5UreUy9VyMqlE/0NZ1mcxuBDF1lQznuuVh:pRJEgtKj/5FUyVB/+nMD6znu2","tlshash":"6803f1fb8f95f9b892a577b361833480ec95b4c5932ba4761fee703ebc5204194b3451","first_seen":"2025-07-26T05:48:35.426161Z","last_seen":"2026-05-14T18:50:59.973538Z","times_seen":6,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":46,"dns":0,"connect":0,"send":0,"wait":54,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/assets/Coinbase_Text-Regular-web-1.32-BJ1-X6Dz.woff2","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.373Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /assets/Coinbase_Text-Regular-web-1.32-BJ1-X6Dz.woff2 HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/assets/index-Cb83uGf0.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:17 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 39128\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nConnection: keep-alive\r\nETag: \"6a05e79f-98d8\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":39128,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 39128, version 1.2097","md5":"d65a3b1d9255924adbeeabac46787723","sha1":"2f5d6025d09e81ac0a6583f050560013f2b3fcce","sha256":"b2943cf448795751c6a309662c5237904fcb74e31507271deb64437350274b8d","sha512":"5e993defeb28e2a1332a02a017fd096a2b5a5d7d9d5294959e5bd8da51ccdf6b5bbc1b568126a89c350c43029d0e43da49fe14d47f85c6f2e45e87eb2d28e455","ssdeep":"768:r9ukWoIxmQnMtkdq0wReJL2N29X+bbzkoWy2ptCC8m5e5mFLEVy3:r9u7xmxtkAzReJiFbE42bCC8ceUFLEVQ","tlshash":"1f03022fc4b1f3e9a0d05cb96a3733d9e8ef1654318bb75138ae1ee5f8d69061209135","first_seen":"2023-04-22T15:10:15Z","last_seen":"2026-05-14T18:50:59.968226Z","times_seen":537,"resource_available":false,"data":null}},"time_used":345,"timings":{"blocked":118,"dns":1,"connect":53,"send":0,"wait":106,"receive":2,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/coinbase-logo.png","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.648Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /coinbase-logo.png HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:17 GMT\r\nContent-Type: image/png\r\nContent-Length: 26573\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nConnection: keep-alive\r\nETag: \"6a05e79f-67cd\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":26573,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1527 x 1551, 8-bit colormap, non-interlaced","md5":"95bd209861b42f50e2ffbb9d6067b8e3","sha1":"7a555eefb94a41346d57a041961fef5d43a3db99","sha256":"17b118bd27dfab516bfd00425cfb1b03cafa1131a89d169b239b902df176bb66","sha512":"74047d5f866e4b4b95012484b656c699e399a136e77d34c5f541874737ea52c301eda16f1011d1552fc14c315d8c31447bdc9c2019a6ce893d3a7a2b9130850f","ssdeep":"768:TTK9zCqaYnt6KjokcO8o15Zmx85j2TD1condanO:ponYKjoEF1eSj8xHnd/","tlshash":"3ec2e093a797b270d294999afddaeafe5b527cd47847870815cf200806dec2e8301b7d","first_seen":"2023-12-07T04:39:19Z","last_seen":"2026-05-14T18:50:59.969663Z","times_seen":37,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":53,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/assets/index-Cb83uGf0.css","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /assets/index-Cb83uGf0.css HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:17 GMT\r\nContent-Type: text/css\r\nContent-Length: 40816\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nConnection: keep-alive\r\nETag: \"6a05e79f-9f70\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":40816,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (40749)","md5":"6eeb528ba4d1887770bed3ffdc536a69","sha1":"3f2af4b7190678b3e12281d9f1b6f5257b58beca","sha256":"55cb6738c0e28951b06e2e1903c2f2f97bb32b8244184b1ab56135845f17dd73","sha512":"107227b977ad21f420401c85f1b2bce41736d1230fdfa6c7ff77203ab9085357683fe558b147c1501dd45a2c1daeb9ec52804b12f1db88522ea5bd3bb10aaa45","ssdeep":"384:uk4jI8etXWpnKZ3CaU6X0epzwS1O2TDwlwrwMwzd1WuYtxG1E4:msrtXWpnKZ3CaU6XI0eQVu","tlshash":"63039525f3a0fa3bbc27e865679cb58db20428368d1297fdf9227e1049c77f36551a08","first_seen":"2026-05-14T18:49:44.393536Z","last_seen":"2026-05-14T18:50:59.971397Z","times_seen":2,"resource_available":false,"data":null}},"time_used":396,"timings":{"blocked":116,"dns":1,"connect":53,"send":0,"wait":107,"receive":54,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"case-491291.com/coinbase-logo.png","fqdn":"case-491291.com","domain":"case-491291.com","tld":"com"},"ip":{"addr":"176.125.243.223","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://case-491291.com/","date":"2026-05-14T18:49:17.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"case-491291.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 May 2026 14:20:13 GMT","end":"Wed, 12 Aug 2026 14:20:12 GMT"},"fingerprint":{"sha1":"D5:64:2C:10:01:EF:AD:4B:1A:4E:74:4E:5D:A9:0E:E3:F9:C7:44:22","sha256":"4C:AF:7F:5C:97:D7:A7:83:C8:F7:07:7A:9C:88:78:56:26:58:26:43:38:5D:A5:F1:D0:3B:31:86:DE:6C:AF:8F"}}},"request":{"raw":"GET /coinbase-logo.png HTTP/1.1\r\nHost: case-491291.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://case-491291.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 14 May 2026 18:49:17 GMT\r\nContent-Type: image/png\r\nContent-Length: 26573\r\nLast-Modified: Thu, 14 May 2026 15:17:51 GMT\r\nConnection: keep-alive\r\nETag: \"6a05e79f-67cd\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":26573,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1527 x 1551, 8-bit colormap, non-interlaced","md5":"95bd209861b42f50e2ffbb9d6067b8e3","sha1":"7a555eefb94a41346d57a041961fef5d43a3db99","sha256":"17b118bd27dfab516bfd00425cfb1b03cafa1131a89d169b239b902df176bb66","sha512":"74047d5f866e4b4b95012484b656c699e399a136e77d34c5f541874737ea52c301eda16f1011d1552fc14c315d8c31447bdc9c2019a6ce893d3a7a2b9130850f","ssdeep":"768:TTK9zCqaYnt6KjokcO8o15Zmx85j2TD1condanO:ponYKjoEF1eSj8xHnd/","tlshash":"3ec2e093a797b270d294999afddaeafe5b527cd47847870815cf200806dec2e8301b7d","first_seen":"2023-12-07T04:39:19Z","last_seen":"2026-05-14T18:50:59.969663Z","times_seen":37,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":53,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}