Report Overview
Visitedpublic
2026-02-01 21:03:38
Submit Tags
URL
eth-genesis.org/
Finishing URL
ethgenesis.org/
IP / ASN
67.199.248.12
Title
Ethereum Genesis Airdrop
Suspicious - Suspicious Javascript code
Detections
urlquery
2
Network Intrusion Detection
2
Threat Detection Systems
1
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
cdn.tailwindcss.com | 117330 | 2017-07-20 | 2018-07-09 | 2026-01-26 | 820 B | 816 kB |  104.26.2.143 |   |
static.cloudflareinsights.com | 4073 | 2019-08-30 | 2019-09-24 | 2026-01-25 | 506 B | 20 kB | 104.16.80.73 | |
ipapi.co | 7936 | 2016-04-19 | 2017-01-31 | 2026-01-28 | 429 B | 2.5 kB | 104.26.8.44 | |
api.telegram.org | 206724 | 2003-12-15 | 2015-06-25 | 2026-01-30 | 1.1 kB | 1.2 kB |  149.154.166.110 |  |
fonts.gstatic.com | unknown | 2008-02-11 | 2014-04-02 | 2026-01-25 | 2.1 kB | 103 kB | 142.250.74.3 | |
ethgenesis.org 2 alert(s) on this Host | unknown | 2026-01-19 | 2026-02-01 | 2026-02-01 | 5.4 kB | 1.7 MB | 104.26.1.114 |  |
eth-genesis.org | unknown | 2026-01-22 | 2026-02-01 | 2026-02-01 | 484 B | 5.7 kB | 67.199.248.12 | |
api.coingecko.com | 442226 | 2014-03-26 | 2018-05-18 | 2026-01-29 | 483 B | 1.3 kB | 104.20.41.132 | |
fonts.googleapis.com | 313 | 2005-01-25 | 2012-05-23 | 2026-01-25 | 479 B | 11 kB | 142.250.178.106 |
Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Vercel (PaaS)
Vercel is a cloud platform for static frontends and serverless functions.Nginx:1.18.0 (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Tailwind CSS (UI frameworks)
Tailwind is a utility-first CSS framework.Cloudflare Browser Insights (Analytics, RUM)
Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | Client IP | 149.154.166.110 | ET HUNTING Observed Telegram API Domain (api .telegram .org in TLS SNI) | |
| low | Client IP | 149.154.166.110 | ET HUNTING Observed Telegram API Domain (api .telegram .org in TLS SNI) |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| YARAhub by abuse.ch | ethgenesis.org/assets/index-CAaLwE-f.js | malware | Detects file containing Telegram Bot API |
Telegram Bot detected (1)
URL
ethgenesis.org/assets/index-CAaLwE-f.js
IP / ASN
104.26.1.114
Token
8099872639:AAFN6r6f7x8BYTGu2Rvah2TXDeOWco3HU_g
Bot Overview
User ID8099872639
UsernameHelloworld007sbot
First NameHello world
Last NameN/A
Chat Info
Chat ID1806072212
Chat Typeprivate
TitleN/A
User Count2
Admins0
Pending Msgs0
JavaScript (7)
No JavaScripts
HTTP Transactions (24)
| URL | IP | Response | Size |
|---|