{"report_id":"c4c1d296-1848-4032-ad2a-1c52144a6eb1","version":6,"status":"done","tags":[],"date":"2026-04-10T14:40:06Z","url":{"schema":"http","addr":"ledger-wallet.to","fqdn":"ledger-wallet.to","domain":"ledger-wallet.to","tld":"to"},"ip":{"addr":"158.94.209.181","port":0,"asn":786,"as":"Jisc Services Limited","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"ledger-wallet.to/","fqdn":"ledger-wallet.to","domain":"ledger-wallet.to","tld":"to"},"title":"The Case for Cold Storage in 2026 — Cipher Weekly","dom":{"size":6575,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (479)","md5":"702dd1178717ca058aee9a3aba3e842c","sha1":"e2e6976d8afecbb8c058e3540fbd4dcc2155464f","sha256":"c7a1e6a689f3c790b1558a87f1cb653b2f7d96c5caecce394f8a0a9229e4c5a6","sha512":"92930953103c500d05bbd3320b0b3cdf1a265c70d9948e15c907eecac330009bd616ab918403acd11b60de0c1194bd4f1728b23593ee9e6812f570ce9174e92d","ssdeep":"192:Qi1/OV6wBraTgjK8Xhf4cUckEYJ5CEnsRR/hiDSau:X1SAzXnsRFhiDSau","tlshash":"35d1291363851238829702a4799b73e49b59455fc20183b8be9e899ccfdc174c7fb78e","dom_hash":"domhash6d395ceeaf619232a3607682922b5858","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ledger-wallet.to","fqdn":"ledger-wallet.to","domain":"ledger-wallet.to","tld":"to"},"ip":{"addr":"158.94.209.181","port":0,"asn":786,"as":"Jisc Services Limited","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-15T14:40:06Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-10","alert":"Phishing Block","trigger":"ledger-wallet.to","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ledger-wallet.to","ip":{"addr":"158.94.209.181","port":443,"asn":786,"as":"Jisc Services Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-04-10T13:49:38.119629Z","last_seen":"2026-04-10T13:49:38.119629Z","alert_count":2,"request_count":2,"received_data":13754,"sent_data":924,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ledger-wallet.to/","fqdn":"ledger-wallet.to","domain":"ledger-wallet.to","tld":"to"},"ip":{"addr":"158.94.209.181","port":443,"asn":786,"as":"Jisc Services Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-10T14:39:45.063Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger-wallet.to","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 14:28:29 GMT","end":"Tue, 07 Jul 2026 14:28:28 GMT"},"fingerprint":{"sha1":"2A:6B:11:81:02:17:68:82:ED:0E:97:F6:B6:82:C2:B4:9F:B5:5E:D9","sha256":"D2:82:57:8C:CB:16:21:99:BB:63:69:E0:40:6C:E5:ED:1D:14:AB:82:59:D0:A2:5B:D3:FE:CB:98:77:95:1E:90"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ledger-wallet.to\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 10 Apr 2026 14:39:45 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":6674,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (479), with CRLF line terminators","md5":"d2dbb0f105d72fa566e3c8bd3bec98b4","sha1":"4e0f911a386032983170a5af5217cd2e65712f06","sha256":"3d62bb2ccd05ecf09821134b3fafc3a38390f6d67c6cc8ae72b80bebd80d3920","sha512":"2c9d34e0afc867c7fa2bc5564819270f21c04a24cfc0951a67ea22562a24f4654efdbef2d588353cbe3cb3316a31d7740acc730117a8388b804b208aa8e86353","ssdeep":"96:tzdCkLBv7edh57L0cwpinNj020lDC38BFf88DsuXokE1uzcVXOYGC5HIdFhnAdVc:tgdMHVUkFjDE71RQ/wiHSfO","tlshash":"25d1f8132385223942b30278fd57a3e8df45015ed20143b8be9e865a9ffd12487b7b8d","first_seen":"2026-04-10T13:49:42.131045Z","last_seen":"2026-04-10T14:40:06.529634Z","times_seen":2,"resource_available":true,"data":null}},"time_used":452,"timings":{"blocked":193,"dns":46,"connect":69,"send":0,"wait":66,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-10","alert":"Phishing Block","trigger":"ledger-wallet.to","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-wallet.to/favicon.ico","fqdn":"ledger-wallet.to","domain":"ledger-wallet.to","tld":"to"},"ip":{"addr":"158.94.209.181","port":443,"asn":786,"as":"Jisc Services Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger-wallet.to/","date":"2026-04-10T14:39:45.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger-wallet.to","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 14:28:29 GMT","end":"Tue, 07 Jul 2026 14:28:28 GMT"},"fingerprint":{"sha1":"2A:6B:11:81:02:17:68:82:ED:0E:97:F6:B6:82:C2:B4:9F:B5:5E:D9","sha256":"D2:82:57:8C:CB:16:21:99:BB:63:69:E0:40:6C:E5:ED:1D:14:AB:82:59:D0:A2:5B:D3:FE:CB:98:77:95:1E:90"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ledger-wallet.to\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-wallet.to/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 10 Apr 2026 14:39:45 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":6674,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (479), with CRLF line terminators","md5":"d2dbb0f105d72fa566e3c8bd3bec98b4","sha1":"4e0f911a386032983170a5af5217cd2e65712f06","sha256":"3d62bb2ccd05ecf09821134b3fafc3a38390f6d67c6cc8ae72b80bebd80d3920","sha512":"2c9d34e0afc867c7fa2bc5564819270f21c04a24cfc0951a67ea22562a24f4654efdbef2d588353cbe3cb3316a31d7740acc730117a8388b804b208aa8e86353","ssdeep":"96:tzdCkLBv7edh57L0cwpinNj020lDC38BFf88DsuXokE1uzcVXOYGC5HIdFhnAdVc:tgdMHVUkFjDE71RQ/wiHSfO","tlshash":"25d1f8132385223942b30278fd57a3e8df45015ed20143b8be9e865a9ffd12487b7b8d","first_seen":"2026-04-10T13:49:42.131045Z","last_seen":"2026-04-10T14:40:06.529634Z","times_seen":2,"resource_available":true,"data":null}},"time_used":64,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-10","alert":"Phishing Block","trigger":"ledger-wallet.to","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}