{"report_id":"ab7b6d75-0355-4267-bc2c-8a9cd7898c15","version":0,"status":"done","tags":[],"date":"2026-06-28T16:17:38Z","url":{"schema":"https","addr":"leatherbtc-app.live/","fqdn":"leatherbtc-app.live","domain":"leatherbtc-app.live","tld":"live"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.leatherbtc-app.live/","fqdn":"www.leatherbtc-app.live","domain":"leatherbtc-app.live","tld":"live"},"title":"Leather Desktop — The Bitcoin wallet for everyone","dom":{"size":2588616,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (34769)","md5":"adc9a641de9881645ca7595b3840441f","sha1":"4934def5984fdbf0d0eb9c63c485733d5719b162","sha256":"13cf1982fda0cbe710660a6bb84a1f294a8c3ff8d6643f3fd900195a043ca52f","sha512":"7e4e8199c34b99fc0f0b356a4ba591d481404241598cd67160fdcb27697663045b395dac79c5ac3e3b27e92b69cb857f25b5adc185537f9c2126ed53f098937c","ssdeep":"49152:kZFEsOPmEs4dDEsWnUEs0pJEseXKEszOieQ34NN:F","tlshash":"9bc51235201d297f2c174ae5e2943b2dee7c76c3e80680edbedd05a26bc6d94d92394c","dom_hash":"domhashb42a163972563660dcc8f70dfd839cf5","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"leatherbtc-app.live/","fqdn":"leatherbtc-app.live","domain":"leatherbtc-app.live","tld":"live"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-02T16:17:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"leatherbtc-app.live","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-28T13:37:21.210999Z","last_seen":"2026-06-28T13:37:21.210999Z","alert_count":0,"request_count":1,"received_data":355,"sent_data":488,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.leatherbtc-app.live","ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-28T13:37:21.212387Z","last_seen":"2026-06-28T13:37:21.212387Z","alert_count":0,"request_count":1,"received_data":2589114,"sent_data":492,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.leatherbtc-app.live/","fqdn":"www.leatherbtc-app.live","domain":"leatherbtc-app.live","tld":"live"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"33286ff94f986f04221b64404ceb6782","sha1":"cf7598dec50b861e625e19d7473ed2df9152b300","sha256":"c81402569b6fd2536c584d3c88d1bb5e9081d8ce8d499d8a26c0dc70ca6144cc","sha512":"e9790418a63c51047798573ea4d9bfff60a00ff7e1bef6b42e51bc8cb989b2ef53752600ac97f7eb7c6770b4372fd0c436ae3da8ea9dd6ba72a033ecf549d353","ssdeep":"","tlshash":"bd015927222233707cd9d5dca8b6d98e39bb500ae40a0090a08e844c1834bc544f7bdc","size":843,"data":"","first_seen":"2026-06-08T13:08:16.104529Z","last_seen":"2026-06-28T18:33:32.018517Z","times_seen":200,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"leatherbtc-app.live/","fqdn":"leatherbtc-app.live","domain":"leatherbtc-app.live","tld":"live"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T16:17:13.059Z","timestamp":1782663433059,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"leatherbtc-app.live","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 03:27:41 GMT","end":"Fri, 18 Sep 2026 03:27:40 GMT"},"fingerprint":{"sha1":"47:31:0C:82:DC:7F:1C:52:41:B5:65:A9:F5:FE:AC:57:0B:75:62:1A","sha256":"C5:9C:DB:42:5F:91:A5:3E:A6:FF:8D:A9:9B:1E:9D:9A:5C:A3:F9:6C:D5:A7:6D:77:0B:8C:F6:80:DE:74:22:CE"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: leatherbtc-app.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 308 \r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/html\r\ndate: Sun, 28 Jun 2026 16:17:13 GMT\r\nlocation: https://www.leatherbtc-app.live/\r\nrefresh: 0;url=https://www.leatherbtc-app.live/\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-id: arn1::w2xkj-1782663433322-59107d921f1b\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"308","status_text":"","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T00:32:18.388813Z","times_seen":16809459,"resource_available":true,"data":null}},"time_used":249,"timings":{"blocked":-1,"dns":204,"connect":1,"send":0,"wait":12,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.leatherbtc-app.live/","fqdn":"www.leatherbtc-app.live","domain":"leatherbtc-app.live","tld":"live"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T16:17:13.365Z","timestamp":1782663433365,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.leatherbtc-app.live","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Jun 2026 03:27:43 GMT","end":"Fri, 18 Sep 2026 03:27:42 GMT"},"fingerprint":{"sha1":"12:6F:E4:B7:FD:F0:48:F2:47:4E:88:67:94:7A:D7:66:20:C1:E3:C6","sha256":"F7:51:34:E8:23:01:0F:E4:23:5A:AA:66:84:E3:40:12:7E:92:21:ED:81:D2:31:0E:46:AE:FE:BB:6D:8B:48:4C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.leatherbtc-app.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccess-control-allow-origin: *\r\nage: 642762\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Sun, 28 Jun 2026 16:17:13 GMT\r\netag: W/\"1ec0a42c53924afdb43b4258460350f6\"\r\nlast-modified: Sun, 21 Jun 2026 05:44:30 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::zp74n-1782663433477-30ca004233bb\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2588630,"size_decoded":727294,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (34769)","md5":"062848d6bd08d970135982145dfd9c9b","sha1":"aeb25b2775a53c281f98de6038034f87e208b627","sha256":"1fec0383fb9bd27d74be5f74a8d25496e66797e2d6f320ffe1d244f5408d4caf","sha512":"e09cccfd823df433f1e5c2df90df24e575afb464764c011cac99c49845e59fcbece41ddf2cf157396df7034a972cf53b9626ad089bd2407cc6b31112ad592aa3","ssdeep":"12288:UVyvnXBJreWx2fWVW5AsVyvX2BDreWy2fWVW5AxVyvvVBlreW/2fWVW5AmVyvHUC:7ZFEeW5AOPmEeW5A4dDEeW5AWs","tlshash":"cb2523b4146d19af18958cd1e1542b2eefac3fa3a801c2ee1fdd19c367dcc48d912a8d","first_seen":"2026-06-28T13:37:25.826732Z","last_seen":"2026-06-28T16:17:39.62821Z","times_seen":4,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":-1,"dns":76,"connect":1,"send":0,"wait":11,"receive":0,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}