{"report_id":"ba4fe6ec-920e-4270-b835-1b9807e67106","version":6,"status":"done","tags":[],"date":"2026-02-14T15:09:17Z","url":{"schema":"https","addr":"fixedfloat-app.com","fqdn":"fixedfloat-app.com","domain":"fixedfloat-app.com","tld":"com"},"ip":{"addr":"92.118.230.103","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"fixedfloat-app.com/","fqdn":"fixedfloat-app.com","domain":"fixedfloat-app.com","tld":"com"},"title":"FixedFloat - Instant Cryptocurrency Exchange \u0026 Swap Service | ff.io","dom":{"size":11763,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (398)","md5":"931825dbd568d6b8035ea7aec93270fc","sha1":"51807607b57d9955677150d24c89f19b64eb66b8","sha256":"32d84c1d3081362bd1fa17e2cf5058985edfd9c383751c954232cd8708c6525b","sha512":"d92de0f480eb93df78aa2bdd5a5ad9a786d62a657a4d4e415b92209e959b1663cba278b7fa5adc13c917f3a2a90b8ee28f749df680cbdf3993a7433bde77b35b","ssdeep":"192:xo+ONohCufCtavd1KFqvw9TR1+klwM+8ATDIUhrZF626yJJTIRZvLW5JusdAd:xo+VqFsPGNbmAd","tlshash":"e532b80b75a23071a593a02527b653cbd718a0cbd711cde93bdc8268cf95a4488b7bdf","dom_hash":"domhash4682968706bcc3ecf3d4f110e8e1fb36","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"fixedfloat-app.com","fqdn":"fixedfloat-app.com","domain":"fixedfloat-app.com","tld":"com"},"ip":{"addr":"92.118.230.103","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-21T15:09:17Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"fixedfloat-app.com","ip":{"addr":"92.118.230.103","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"United States","country_code":"US"},"domain_registered":"2026-01-21","domain_rank":0,"first_seen":"2026-02-13T21:35:03.525098Z","last_seen":"2026-02-13T21:35:03.525098Z","alert_count":6,"request_count":3,"received_data":29307,"sent_data":1392,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fixedfloat-app.com/apple_images_180x180.png","fqdn":"fixedfloat-app.com","domain":"fixedfloat-app.com","tld":"com"},"ip":{"addr":"92.118.230.103","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fixedfloat-app.com/","date":"2026-02-14T15:08:56.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fixedfloat-app.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 11:08:20 GMT","end":"Tue, 05 May 2026 11:08:19 GMT"},"fingerprint":{"sha1":"41:49:FC:BD:74:8B:82:64:C7:AA:C6:7E:F9:35:AB:A1:84:DF:A5:E8","sha256":"8B:8C:C0:6A:AF:1A:DF:AB:F3:2A:8D:16:36:25:30:BD:72:8E:79:83:5D:BA:DC:1C:FD:F9:B0:AC:96:5B:9B:6E"}}},"request":{"raw":"GET /apple_images_180x180.png HTTP/1.1\r\nHost: fixedfloat-app.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fixedfloat-app.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.1\r\nDate: Sat, 14 Feb 2026 15:08:56 GMT\r\nContent-Type: image/png\r\nLast-Modified: Tue, 01 Jul 2025 08:39:34 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"68639ec6-3e64\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15972,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced","md5":"55a56916ae9ad44cdb0f8c591c1a8a97","sha1":"2c9448961b1d839208c569d6a9fa919cd4785b80","sha256":"658c757766ce851f8cf591119d018a5269f1b4af7441bb9ca9aaa50c7b0ad604","sha512":"e6a3a58cdcaae9a0bd89a8adf26b06ad9c18957dec43464b54aed221f4dd5abdc89492726d78c8e2846b75f8888933029efee0f433f0ad6b57c4efa50f8c2000","ssdeep":"384:g1+U1qDmMnJ/LNDPoCmoxyxfE6H6PjGB68ka7bAkEnCdX:g4U5Mn/7rL+fE6sGB3w+dX","tlshash":"ee72d1b7e548ca79fd8433299d8b49108ed0c1e38f39655caf50c0b04cddf257a76a88","first_seen":"2025-08-31T00:05:50.329682Z","last_seen":"2026-06-05T02:33:51.297034Z","times_seen":56,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fixedfloat-app.com/favicon-16x16.png","fqdn":"fixedfloat-app.com","domain":"fixedfloat-app.com","tld":"com"},"ip":{"addr":"92.118.230.103","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fixedfloat-app.com/","date":"2026-02-14T15:08:56.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fixedfloat-app.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 11:08:20 GMT","end":"Tue, 05 May 2026 11:08:19 GMT"},"fingerprint":{"sha1":"41:49:FC:BD:74:8B:82:64:C7:AA:C6:7E:F9:35:AB:A1:84:DF:A5:E8","sha256":"8B:8C:C0:6A:AF:1A:DF:AB:F3:2A:8D:16:36:25:30:BD:72:8E:79:83:5D:BA:DC:1C:FD:F9:B0:AC:96:5B:9B:6E"}}},"request":{"raw":"GET /favicon-16x16.png HTTP/1.1\r\nHost: fixedfloat-app.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fixedfloat-app.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.1\r\nDate: Sat, 14 Feb 2026 15:08:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 802\r\nLast-Modified: Tue, 01 Jul 2025 08:39:34 GMT\r\nConnection: keep-alive\r\nETag: \"68639ec6-322\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":802,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced","md5":"79b9e5a6a0be665a78265cb5546e2a3b","sha1":"8ef1a75870d0fad544e53ff4af9f15b55577e6d5","sha256":"3fd65ba39ddbe670c31d3de88170b4343e39db1575b1483b28150baa223633a0","sha512":"0499fdf5da9fd7385058aed6dfd96a0a2ae518c1a8756a128e9dffbaef5b901750bb79af9c795837694e44910665dae086aed3b4a51ebb3518986828dc17a96c","ssdeep":"","tlshash":"1b0175ebc0b8cc29ea0b23158a2f2167d87bc3166757011c684be6955ec8bccd894ed6","first_seen":"2025-08-31T00:05:50.306962Z","last_seen":"2026-06-05T02:33:51.298103Z","times_seen":41,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":-1,"dns":1,"connect":19,"send":0,"wait":20,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fixedfloat-app.com/","fqdn":"fixedfloat-app.com","domain":"fixedfloat-app.com","tld":"com"},"ip":{"addr":"92.118.230.103","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-14T15:08:55.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fixedfloat-app.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 11:08:20 GMT","end":"Tue, 05 May 2026 11:08:19 GMT"},"fingerprint":{"sha1":"41:49:FC:BD:74:8B:82:64:C7:AA:C6:7E:F9:35:AB:A1:84:DF:A5:E8","sha256":"8B:8C:C0:6A:AF:1A:DF:AB:F3:2A:8D:16:36:25:30:BD:72:8E:79:83:5D:BA:DC:1C:FD:F9:B0:AC:96:5B:9B:6E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: fixedfloat-app.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.1\r\nDate: Sat, 14 Feb 2026 15:08:55 GMT\r\nContent-Type: text/html; charset=utf-8\r\nLast-Modified: Mon, 02 Feb 2026 11:29:03 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69808a7f-2e04\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11780,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (398)","md5":"378723bd180000a15fedaf762f4489b3","sha1":"429bcd228dcb3215d4d259a9915694e190d86750","sha256":"366584a198972f5ddf4e0d2c34141316fab763e23127c95feb5b714584a5d82f","sha512":"fa4cb1dc32f58ad096cbe49c817cfbb0c2ced608bf48c2a6cf55f196293fb3cf8ebed04890998e4dc53ec0fb9d7b3a815443a0e474b884368df7c0e32af8b018","ssdeep":"192:vDfONohCufCtavd1KFqvw9TR1+klwM+8ATDIUhrZF626yJATIRZvLW5JusdAh:vDfVqFsoGNbmAh","tlshash":"2432b70b75a23071a593a02527b653cbd718a1cbc711cde93bdc8168cf95a4489bbbcf","first_seen":"2026-02-13T21:35:07.384285Z","last_seen":"2026-02-14T15:09:17.680806Z","times_seen":2,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":121,"dns":74,"connect":21,"send":0,"wait":22,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"fixedfloat-app.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}