{"report_id":"c5d23af7-338e-4c3a-af32-2b103cd57aff","version":6,"status":"done","tags":[],"date":"2026-02-06T21:39:01Z","url":{"schema":"https","addr":"teleggram.cc/","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"104.21.35.27","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"teleggram.cc/","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"title":"Telegram","dom":{"size":3329,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (445)","md5":"f50e24d657be0696df482319b271959c","sha1":"4cbb5dcffae566f18939960c6b91a450e4253378","sha256":"6dc9aba0a7692f8c98cb0da56f2ccc53879c4dd62d51b20e1edbaa1de98674b1","sha512":"3fcff26f347311ab787469e4ed556ab6708679cb83fb571e79f0c947fd6a1a509986d9fdc219b6db23828c47d3b03d4e07213091ea740c1f7a57f326902282f1","ssdeep":"","tlshash":"26613493db08884a7361832a99e2f08cc216d809dba97c51f8d945af49d5ff1c5f32ad","dom_hash":"domhash0f31abafeaf2029a3dea65104db1780c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"teleggram.cc/","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"104.21.35.27","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-13T21:39:01Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-02-06","alert":"Hunting_JS_WebAssembly","trigger":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"telez.sbs","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-16","domain_rank":0,"first_seen":"2026-02-06T21:05:49.77856Z","last_seen":"2026-02-06T21:05:49.778561Z","alert_count":0,"request_count":2,"received_data":4051,"sent_data":886,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"teleggram.cc","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-27","domain_rank":0,"first_seen":"2026-02-06T21:11:30.207148Z","last_seen":"2026-02-06T21:11:30.207148Z","alert_count":94,"request_count":30,"received_data":4166703,"sent_data":14647,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"teleggram.cc/main.d2ce003bc27e5757e049.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"903ce36c6981bd38527ddbfd67d5a809","sha1":"a3476547879bd41241ecde9b52bb1f588df92b70","sha256":"d38587c5fd6b4e8e2cb4a7c717602b299f560d210d347b063575c44a7fb3790b","sha512":"ec3f1eee28722e59e28bec7268c8b21aef4a8f95a6fde3dcb88f69d3cd3121af0e6fd1b97e1092aee9b8b3cee329f269e2fa8900a25b72bf997f9b1bd4dcf6a7","ssdeep":"6144:q5kB0yKCHOVdcyrtzTlPbNqmw+/0GBC9sWB8bJv7LwB9+hYIlrhNYKEwkI+d+xp5:nxHOsyTNb/at6x1zxpw2JxMFi","tlshash":"4075e79135e52d1b42a7f8fa6a0bd9e732658003385cbc8078fd32241fdc6ac95f6769","size":1598603,"data":"","first_seen":"2026-02-06T21:05:53.957101Z","last_seen":"2026-02-06T21:39:03.980838Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_lib_rlottie_RLottie_ts.475a4b6c4efa7f95cec9.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"36a689bc70f81286fce141fba316b553","sha1":"3b574e7d0bfbb24d53ed7df86bc506871bac0d79","sha256":"4238f5d92aeeaa9af723ce4a4fc7a869fe45821d165fb50643a77f6f5c5601fa","sha512":"55edcabf50455105fa39eb715ace4dc5cd754f46ad18bd1e296eb6dff0f39931eecfc874255995bdba090590027e4979054282982015a8c501e4aa5bd8ce9a7e","ssdeep":"384:xOWs6d8c8iUTywfkVo8QseyDW4w5djBNsZiZgmbyyPWs6d8XALrUc+Brhhx:xOWs6r8P2U6eoWBdjrsZiuhyPWs6eVn","tlshash":"c4b2554e67f72c299123b0a91f0f86926624c0073819e9997e6c32a46fdd078d2f8f75","size":25259,"data":"","first_seen":"2025-12-20T06:25:37.676238Z","last_seen":"2026-02-06T21:39:03.9797Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/compatTest.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"da7800ea928a021f2539ab41e6f2323e","sha1":"0141da1dc85ca8f34212f3dde2fac9bf61f5adb7","sha256":"15c24ec2b4cb94f24e66750f09e7071e5659e20a5ed926f69f565e20a81027cf","sha512":"228ca1c1f1ff8de139ebcfa7b084bc40d467a56ddccd103cf02a3fa26ba8c1b4d1961904511198e2fb6797837414bb3c09fc9f0902c3874f2467f279d526f0a9","ssdeep":"","tlshash":"fa5125190db5726150796167fb1bb2433a294133050cfb64a620cf393eb285bc19fde9","size":2544,"data":"","first_seen":"2024-06-30T22:36:50Z","last_seen":"2026-05-26T00:02:54.912318Z","times_seen":14075,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/redirect.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad4d9c4c2150044f28af9393101585d2","sha1":"2c39bb9654fc656a0179e6ad53bb47ef95b82c31","sha256":"1a40ff47daa344d5b0886a8f56f15ffc241c1bb04f0e342f3d2035999f4b7a50","sha512":"3c7159ebc28c7714c7ba4f008c02bc8b1e5efdc147200c4c4a96bb0d6d17a80c4d75f6286b46deb160266b6234614c4b3abe88d79ca8dbf53076baf771f102f1","ssdeep":"192:rAuJ0anxfeb+UnI+xpVIDhsWCEnSfYrHemsADN9Y:snxpgsjESxb","tlshash":"a212b70669b71431507b60be2b5766193331e003b40dcd343bbce7946f8db99aad2bc9","size":9413,"data":"","first_seen":"2026-02-06T21:05:53.953044Z","last_seen":"2026-02-06T21:39:03.976923Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"teleggram.cc/src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-a9a1\"\r\nexpires: Sat, 07 Feb 2026 09:11:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1646\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gRz0G4KcJksMQJvv%2BfN6bAMnecdE72chGwbZD465o2J4FwG61IzwpiEJtCVm0kSLaPDRq%2BV8V06CiXtRkIdLDP9%2FDzhd66btFd7UNQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1fa8ab1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43425,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (573)","md5":"39cea3339b6d415c70caa47bdaa0aea6","sha1":"f147bc291c160bc5d77d2f4acc7319da2d5abe4b","sha256":"6add3ad1b88e9e9a9b1ed162fcbb3caef0c26b0e3a493050632565b31be54753","sha512":"55936fe8fadb795dfec98c7d2dcc5f2d3ac1fa51ef5593105430df33f50a9f75fc24cd2b7b0f08ba1e0816401b3374f2f6963b487d20b9b996fd0a6fd2a7023d","ssdeep":"768:1HOVdq1vykITtL3TlrTr5AAMb0evEyVPkE0qorw+/mPrh4UGToPYx:1HOVdq1vyfTtL3TlrTr5AAMbVvEyeE0T","tlshash":"191362627a1232374bd5c3ba225dc6c7035b96733f2e58d034ae731483e6e9895f19a3","first_seen":"2026-02-06T21:05:53.934972Z","last_seen":"2026-02-06T21:39:03.970407Z","times_seen":8,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"telez.sbs/api/index/config","fqdn":"telez.sbs","domain":"telez.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:40.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"telez.sbs","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 16 Jan 2026 07:09:24 GMT","end":"Thu, 16 Apr 2026 08:08:09 GMT"},"fingerprint":{"sha1":"FA:35:31:E2:2B:E1:E5:39:B3:ED:37:B2:F7:BD:97:78:D1:14:A1:3D","sha256":"ED:AD:E6:7D:C8:F7:35:45:71:E6:07:AD:4B:40:28:84:EE:13:63:D1:57:12:58:D5:7C:BE:FC:AE:10:2D:CA:E3"}}},"request":{"raw":"GET /api/index/config HTTP/1.1\r\nHost: telez.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://teleggram.cc/\r\nOrigin: https://teleggram.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:41 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Authorization, Sec-Fetch-Mode, DNT, X-Mx-ReqToken, Keep-Alive, User-Agent, If-Match, If-None-Match, If-Unmodified-Since, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type, Accept-Language, Origin, Accept-Encoding, Access-Token, token, version\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, post\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HX%2FIpU5IgKVjd4dW3yA9RWbj%2BGrFRM6d4%2Fc%2FKRvNJnYYW1dJnqpZcrSbPsvu8zg6xx%2FqgXTqVoGZgFR2gp74tk3mw92sz6c%3D\"}]}\r\ncf-ray: 9c9dcbbd7c57568e-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1857,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"763648035f983e78c1fa37cd8d0e9e16","sha1":"0a0f12a868e445cf894c85f5b1b6301bd132dcb4","sha256":"e1886751a8f2eddd41ebe5720ce53143c78628e7f548ff2ae2cd535ac837893b","sha512":"5e998d23dda600c24610efc5d319d4ef6ebe81f0633d68867a34ae72973de30113e7410fd1bf263ad94663d9be32a3694668454057d2f0d9813af094112456d8","ssdeep":"","tlshash":"9d318247c60a223257c743b6311e194bb271805ea3127a0d1dec622e03ea92de3f388a","first_seen":"2026-02-06T21:05:53.946812Z","last_seen":"2026-02-06T21:39:03.971038Z","times_seen":8,"resource_available":false,"data":null}},"time_used":1024,"timings":{"blocked":51,"dns":22,"connect":1,"send":0,"wait":919,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/icon-192x192.png","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:41.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /icon-192x192.png HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:41 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Mon, 30 Sep 2024 11:14:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fa8828-bf3\"\r\nexpires: Sun, 08 Mar 2026 21:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1650\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LVft8DBATHXZ21YrHYmY8iX%2BP71mMvw62pgq967J2pbIv0Vd8nvKGaCQl59ZcyJblHtJ0w2sZ7e8cUSRTIxA36j7c9h0IuCsoUKiNg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbbfdc2eb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3059,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"1a1650d2c76bfc1ac484646c19e495b9","sha1":"fe58d66042ce9241226f5da9370230285ff604fc","sha256":"6e587a62c9d7a97f25265ab5eb29d101ad2e36810042a4116d2dd29da96b0bf8","sha512":"79c5c9278959bc94f66434779bebc1b46c055655f0bc58aa375f179c227e7ac0e52dea196764719d42aadcf98e4fd3b5a4488f2db977edde430aa3df733c03bc","ssdeep":"","tlshash":"bd514cd3253318e8e2dbfd7ace62041f656691ce5638ec120568de720c8985dc070caa","first_seen":"2023-05-16T22:57:55Z","last_seen":"2026-05-26T06:27:48.38838Z","times_seen":16315,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:44.026Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-b146\"\r\nexpires: Sat, 07 Feb 2026 09:11:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1649\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pV%2FAP9gUxhaeyA0Sy7WdWndAZ2OESbC%2BXzWMYipKpg6Pibz40FzqLvIOp4U9RDl7I2%2BBLETbI2K6kZqj7DT0PoIIBe16kOwyO8vPCQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd12fefb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45382,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1205)","md5":"e059660b1f376fd03f7741b0a7be21dc","sha1":"1e45fe3df6264f3b5ba06ff997eeb27088e6e5b2","sha256":"56050615aaf9af647c0888245f83357f4ce8288eb2e3947745bd40b38a61e915","sha512":"9f6353b8dbbc6ccfb9309b28fe2f0d5270b4e6efad5eae68b12efb5b0d31d98c4e3ffbaadb15c2ed2dfc55ff9054bf6565a8b006da248db68fe3f0c86fddefec","ssdeep":"768:/wxVeciROMmuoyDGzoWs6/zRoP8DwpF00DiTCV/RsoKCdoEM+ERE/:/keNRG/zoWlzRo9F00u2V/RsoFnMLU","tlshash":"c21385c837f62d161173f89756cb9dd26218c0033569e84cba6c37b85f8e52c92f97a1","first_seen":"2026-02-06T21:05:53.940315Z","last_seen":"2026-02-06T21:39:03.972727Z","times_seen":8,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /rlottie-wasm.51d175377b5332e82d64.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1d14c\"\r\nexpires: Sat, 07 Feb 2026 09:11:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1645\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F54CxUmFNutlYtdMeFPRZmMUCfWDhboN%2Buddm71bsiSjp2pGAqQadD%2FDn0%2FbrbSbA5JabC9Q8UEu1C80xKAkSIpVnpiOMo0FJTN5bg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd22b20b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":119116,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (312)","md5":"dee0b5a2f2d8533ccc49b6949d2f942d","sha1":"d71623fb971b85bac16ba1b243d04dfb3ef516db","sha256":"0ef3fc6b7fe94349a8ebb2eeae0b8464d5250931bd70e96fa9b6e182d8a1bd9f","sha512":"796682e315b9723ec3080639b31782e2590f25765301839fe1054786e9c0f9b71259766f3d201b5068129ebc67641754f7dbcbb0bfdd5013289e192ddcb9f8e7","ssdeep":"3072:RVxTCNZ6iFBsU3Jjh9DagCScYte4iiRaE:RVxxdScYte4ii9","tlshash":"6ac3514c6cf720a69623717d9b5f5109b6b9a803161dce00bd5cc2a0af94d3c9af9fd8","first_seen":"2023-03-13T11:21:32Z","last_seen":"2026-02-06T21:39:03.973374Z","times_seen":456,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-02-06","alert":"Hunting_JS_WebAssembly","trigger":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:44.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-b146\"\r\nexpires: Sat, 07 Feb 2026 09:11:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1649\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FQAAkLAcnYjGwlzQtbxiF%2Bv64DLPO4CyhXD3mTs2sPkwdRQxT7JW%2BmhKpjNWRK5bXwEF%2FttDnrqWFQwHNCZVzWh9x%2FmMuR4i1%2BpRJg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd14846b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":45382,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1205)","md5":"e059660b1f376fd03f7741b0a7be21dc","sha1":"1e45fe3df6264f3b5ba06ff997eeb27088e6e5b2","sha256":"56050615aaf9af647c0888245f83357f4ce8288eb2e3947745bd40b38a61e915","sha512":"9f6353b8dbbc6ccfb9309b28fe2f0d5270b4e6efad5eae68b12efb5b0d31d98c4e3ffbaadb15c2ed2dfc55ff9054bf6565a8b006da248db68fe3f0c86fddefec","ssdeep":"768:/wxVeciROMmuoyDGzoWs6/zRoP8DwpF00DiTCV/RsoKCdoEM+ERE/:/keNRG/zoWlzRo9F00u2V/RsoFnMLU","tlshash":"c21385c837f62d161173f89756cb9dd26218c0033569e84cba6c37b85f8e52c92f97a1","first_seen":"2026-02-06T21:05:53.940315Z","last_seen":"2026-02-06T21:39:03.972727Z","times_seen":8,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-40305\"\r\nexpires: Sat, 07 Feb 2026 09:11:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1647\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2Q%2BuMGgKxdgr6V4YV1%2FYXEBtsKRuQeuQn1AdTvG%2BwqeT3ECeBN5pRLv88kaZW1a26%2BdDEBfMo2nCAeaAVZXRfaKCCFMDrqBXrDN4Ow%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1b9b1b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":262917,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"c45bd2047e2c8ff555e1b201bc9bf002","sha1":"ac50d9ee170c2f026ae8822b2b46cac84e239271","sha256":"58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3","sha512":"727619c82b8b5fef6772c6b400435c0a5e8f8f4654ef9c13c21a85dee316708a86a8212f5fdb8e62c7e67c75f358aab9cdccc9b721197371dfd6b75a82b7bee1","ssdeep":"6144:GQzezxKzOzzMz4z3T6vR3miT9mRYW6Tymw+g6sE7ROxZ9pI8w+EkHJVNzt7I:rsE7ROxZ9pI8w+ECJVc","tlshash":"5a44a580efad1502422130698c5d47cc5a7ca03b54d9896e7e9ce6e83fac83db5b6f74","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.973969Z","times_seen":430,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /rlottie-wasm.51d175377b5332e82d64.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1d14c\"\r\nexpires: Sat, 07 Feb 2026 09:11:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1645\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Wadg7As8Jij1xt8389quDznsS1Vi%2FgIsKsHG6wE8zjD11dXQXDGn%2BsC84pGRTPc56ygjsOv%2F0CAnVAbpFIjRIvM4K72g5ArMsmmv3Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd22af6b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":119116,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (312)","md5":"dee0b5a2f2d8533ccc49b6949d2f942d","sha1":"d71623fb971b85bac16ba1b243d04dfb3ef516db","sha256":"0ef3fc6b7fe94349a8ebb2eeae0b8464d5250931bd70e96fa9b6e182d8a1bd9f","sha512":"796682e315b9723ec3080639b31782e2590f25765301839fe1054786e9c0f9b71259766f3d201b5068129ebc67641754f7dbcbb0bfdd5013289e192ddcb9f8e7","ssdeep":"3072:RVxTCNZ6iFBsU3Jjh9DagCScYte4iiRaE:RVxxdScYte4ii9","tlshash":"6ac3514c6cf720a69623717d9b5f5109b6b9a803161dce00bd5cc2a0af94d3c9af9fd8","first_seen":"2023-03-13T11:21:32Z","last_seen":"2026-02-06T21:39:03.973374Z","times_seen":456,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-02-06","alert":"Hunting_JS_WebAssembly","trigger":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/main.d2ce003bc27e5757e049.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:40.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /main.d2ce003bc27e5757e049.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:40 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 16 Jan 2026 08:36:51 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6969f8a3-18648b\"\r\nexpires: Sat, 07 Feb 2026 09:11:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1652\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RaUpHzd4NuAhODsUuyy651z6gZbWjsMPrb0Okx4KfOqjQRHYkTK04KXtCHX0YUhsNFQP3vGG82pAtnZ891Iph4dFjZWWOOPqLcDYPw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbbcb9bcb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1598603,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (321)","md5":"3f54c56bf2ed3eae620bb430d343cd88","sha1":"e5753e1e529b6e7d2b59b02569f3906483fdaa0d","sha256":"b6dc390123007dff10eb3e892b7a614e4d7236961b2cd48bde71f33d3e51e8dc","sha512":"f510326a5d5dbe0d4246c823e7971c4067a1ca56a96f30965a2720457454e2acf60ccd87e2ebee04f1b2325bda0a29eddb534a134fed672e1996ce6edd95237b","ssdeep":"6144:q5kB0yKCHOVdcyrtzTlPbNqmw+/0GBC9sWB8bJv7LwB9+hYIlrhNYKEwkIC:nxHOsyTNb/at6x16","tlshash":"b225b59135e52d1f42a6e8fa7a0bd8e732654113384cbc8078fd32241fdc69c99fa769","first_seen":"2026-02-06T21:05:53.949528Z","last_seen":"2026-02-06T21:39:03.974553Z","times_seen":8,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1b649\"\r\nexpires: Sat, 07 Feb 2026 09:11:15 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1648\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i1KwgSQENTVXQhqn15M8aeAo92dRlC0mdEVHTlGA%2F%2FGFYBiCgSzpwwl1rsWbIaF1KX4sciuMYHv4j9mWkrXabLsxuJMXty4UeD4cWw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd18915b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":112201,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"abfd10612afcd4832510fed36e0cb359","sha1":"9efac7841a02c0f42b759cfb1031450ef3f03a1f","sha256":"59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6","sha512":"47bfa40abd96eeaa4eb77df545a791332cf9e13984f1308c91af0c40e4b7aff77f326815e72f6ae583806530d7a39c956ac6953efdf7f5f03ba0972ec67643c9","ssdeep":"1536:mqixWUY94HnezpiFzFLzzov27gIGMVkzqjpn6zk:H+7Y94HekF5z8u7gIGMxj/","tlshash":"05b3b44516f3225b181260b5e78f70b5a2a6a11f5347c8983c9f43847f9173e82febe9","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.975237Z","times_seen":434,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-40305\"\r\nexpires: Sat, 07 Feb 2026 09:11:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1647\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pnjk7C6O1qfp51YynXXADOS3ezzIXBrYRH3%2FQr2ayslO%2BnM2a1QUapFn54gWx1PbKZmjmMNJ3CntxqXnp%2BXbCIUA7%2Fxj3EUMdOWURw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1b9b6b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":262917,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"c45bd2047e2c8ff555e1b201bc9bf002","sha1":"ac50d9ee170c2f026ae8822b2b46cac84e239271","sha256":"58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3","sha512":"727619c82b8b5fef6772c6b400435c0a5e8f8f4654ef9c13c21a85dee316708a86a8212f5fdb8e62c7e67c75f358aab9cdccc9b721197371dfd6b75a82b7bee1","ssdeep":"6144:GQzezxKzOzzMz4z3T6vR3miT9mRYW6Tymw+g6sE7ROxZ9pI8w+EkHJVNzt7I:rsE7ROxZ9pI8w+ECJVc","tlshash":"5a44a580efad1502422130698c5d47cc5a7ca03b54d9896e7e9ce6e83fac83db5b6f74","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.973969Z","times_seen":430,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-06T21:38:39.730Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:40 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:14 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Kic7wkbdKedzkXe%2BAvdTgRWDUUQdHtAEFFad%2FKoRgIztbBV29gi1EuHo5TFpcJMZqxIrl6r5eZC1so9CauMjpqmp%2Bc0wqZDpd47bSg%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9c9dcbb6ae882efa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3306,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (445)","md5":"2b47d3a016c1a3aeea9906cba868e75e","sha1":"7171d31c10e1fd7dd53855fe351de54da34619b6","sha256":"3fcdc7522e6492e5e3b77166c5a8a80b514a44d16b8293fb9703e9ecaf52d3b7","sha512":"a0df5598573f2745f40cff3622508c098eacbbe1269376e54867d6f8112fec7bf770ba3d8512752208a67000f5f2261260bfa032928547bd862cfd7dc805b254","ssdeep":"","tlshash":"5f613293cb08884a6361832a99e3f0c8c216d809dae57c51f5cd55ab4dd1ff1c5f326c","first_seen":"2026-02-06T21:05:53.938192Z","last_seen":"2026-02-06T21:39:03.975699Z","times_seen":8,"resource_available":false,"data":null}},"time_used":911,"timings":{"blocked":55,"dns":41,"connect":1,"send":0,"wait":796,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/notification.mp3","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:41.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /notification.mp3 HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: audio\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\ndate: Fri, 06 Feb 2026 21:38:41 GMT\r\ncontent-type: audio/mpeg\r\ncontent-length: 10880\r\nserver: cloudflare\r\nlast-modified: Mon, 30 Sep 2024 11:14:48 GMT\r\netag: \"66fa8828-2a80\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 1650\r\ncontent-range: bytes 0-10879/10880\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BEd%2Fl3hTOc75b6gyuGj95N1%2BLn2sLlcozJLtYlrALMBgYmP%2FT8bj787n5%2BHcMlrnxesjNT0Ce2XpSdKhKvI6UXrkky7ZsSs36ZiKVg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbbe7fb1b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10880,"size_decoded":0,"mime_type":"audio/mpeg","magic":"Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo","md5":"eba09b6a457792c52fc610b5f9f974b3","sha1":"95e6e0f7648e28ea21bc434054ea59aba3a35aea","sha256":"86093551f5a7f68c7dcac947bd8dc54c6a79dd9a5d83f7e40116d640eb28c7d6","sha512":"9dfc5ff830c9ed75c9923528c31e1361fa36500d76a209cd475984e5585a644c8aff1600bf02a658ef363436a51988ff1e63aa7606e541dc4a7b3449c5be4852","ssdeep":"192:RuQQeX7rYX/WUUIk8DLh+2BHpZqlXCYP69tuORf6tVQRa/nwNQBv5JC:RRYeUUEDLk2VClyaV0aZ5g","tlshash":"37226b18af11056ef4866bf0b3939b8dc42d26c37a26d4cdd3a5d7e369430e2a7d500d","first_seen":"2023-05-16T22:57:55Z","last_seen":"2026-05-26T06:27:48.37927Z","times_seen":16673,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1b649\"\r\nexpires: Sat, 07 Feb 2026 09:11:15 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1648\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=izeWMsDt%2BXNoncKLw75iO8Xzf%2FIJNp2Pt5irJX3FoGeLwjHc%2BwNcxdWhbPOo0eINzs4aKLMrFzoUi%2BTjvT20Go5MuV0e9MGWDKq3tQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd18910b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":112201,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"abfd10612afcd4832510fed36e0cb359","sha1":"9efac7841a02c0f42b759cfb1031450ef3f03a1f","sha256":"59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6","sha512":"47bfa40abd96eeaa4eb77df545a791332cf9e13984f1308c91af0c40e4b7aff77f326815e72f6ae583806530d7a39c956ac6953efdf7f5f03ba0972ec67643c9","ssdeep":"1536:mqixWUY94HnezpiFzFLzzov27gIGMVkzqjpn6zk:H+7Y94HekF5z8u7gIGMxj/","tlshash":"05b3b44516f3225b181260b5e78f70b5a2a6a11f5347c8983c9f43847f9173e82febe9","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.975237Z","times_seen":434,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/redirect.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:40.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /redirect.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:40 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 16 Jan 2026 08:36:51 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6969f8a3-24c5\"\r\nexpires: Sat, 07 Feb 2026 09:11:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1652\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Kawyb2kvMrJbgK%2BnL%2FQK028iTUmM9qLsuY%2B%2Fiv6OKSnTSV%2BGqrSmGCQ0n%2FptF8kXOE1IyKGVc0IApMeUKPpMCTdY%2BFtMvANGN9GDng%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbbcb9b6b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9413,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"ad4d9c4c2150044f28af9393101585d2","sha1":"2c39bb9654fc656a0179e6ad53bb47ef95b82c31","sha256":"1a40ff47daa344d5b0886a8f56f15ffc241c1bb04f0e342f3d2035999f4b7a50","sha512":"3c7159ebc28c7714c7ba4f008c02bc8b1e5efdc147200c4c4a96bb0d6d17a80c4d75f6286b46deb160266b6234614c4b3abe88d79ca8dbf53076baf771f102f1","ssdeep":"192:rAuJ0anxfeb+UnI+xpVIDhsWCEnSfYrHemsADN9Y:snxpgsjESxb","tlshash":"a212b70669b71431507b60be2b5766193331e003b40dcd343bbce7946f8db99aad2bc9","first_seen":"2026-02-06T21:05:53.953044Z","last_seen":"2026-02-06T21:39:03.976923Z","times_seen":8,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"telez.sbs/api/index/visit/teleggram.cc","fqdn":"telez.sbs","domain":"telez.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:40.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"telez.sbs","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 16 Jan 2026 07:09:24 GMT","end":"Thu, 16 Apr 2026 08:08:09 GMT"},"fingerprint":{"sha1":"FA:35:31:E2:2B:E1:E5:39:B3:ED:37:B2:F7:BD:97:78:D1:14:A1:3D","sha256":"ED:AD:E6:7D:C8:F7:35:45:71:E6:07:AD:4B:40:28:84:EE:13:63:D1:57:12:58:D5:7C:BE:FC:AE:10:2D:CA:E3"}}},"request":{"raw":"GET /api/index/visit/teleggram.cc HTTP/1.1\r\nHost: telez.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://teleggram.cc/\r\nOrigin: https://teleggram.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:41 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Authorization, Sec-Fetch-Mode, DNT, X-Mx-ReqToken, Keep-Alive, User-Agent, If-Match, If-None-Match, If-Unmodified-Since, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type, Accept-Language, Origin, Accept-Encoding, Access-Token, token, version\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, post\r\naccess-control-max-age: 1728000\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6EHQi7A7est37QU%2F7yWynK9opY8ULZ%2BuVs8Gc6zF0wisSRsYPA2E6CfSzUlwpng8PIDgwQT095wA1ZQ9p6oaLlegtk4J2sM%3D\"}]}\r\ncf-ray: 9c9dcbbd7c56568e-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":58,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6ada16e1a6c0a70a88ae98ae0a1114ac","sha1":"0fd58cd69c70a0293844293770a43bdf0e189729","sha256":"64e15b986bee20361b896663b9de6f12a2ff79fb23044cf792050b275c0111d9","sha512":"6a9e5704e6cd8f88957025ecd41a244f42c96e2207d907008ef4062e7481b83b02d8954d4e4784cc4740400570a43f9f77f172d1dac5fb328064e560820395f1","ssdeep":"","tlshash":"88a002591c2e7823160109ad415b454c10bb55b41d100724ac8d93905e580ba1702521","first_seen":"2025-12-20T06:25:37.664409Z","last_seen":"2026-03-14T22:07:10.425383Z","times_seen":11,"resource_available":false,"data":null}},"time_used":987,"timings":{"blocked":52,"dns":24,"connect":1,"send":0,"wait":881,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:44.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-b146\"\r\nexpires: Sat, 07 Feb 2026 09:11:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1649\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Fd%2FXBeefnVTRq6qRJ7C8HoWiqjvQrmtiYtQYSx1oGmqxkJ5CQrdbJdFIlbk5DNYaAT4S8SsRAnNLlNFBVCSPywfatvIM%2B6%2B2oOHYDw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd12802b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":45382,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1205)","md5":"e059660b1f376fd03f7741b0a7be21dc","sha1":"1e45fe3df6264f3b5ba06ff997eeb27088e6e5b2","sha256":"56050615aaf9af647c0888245f83357f4ce8288eb2e3947745bd40b38a61e915","sha512":"9f6353b8dbbc6ccfb9309b28fe2f0d5270b4e6efad5eae68b12efb5b0d31d98c4e3ffbaadb15c2ed2dfc55ff9054bf6565a8b006da248db68fe3f0c86fddefec","ssdeep":"768:/wxVeciROMmuoyDGzoWs6/zRoP8DwpF00DiTCV/RsoKCdoEM+ERE/:/keNRG/zoWlzRo9F00u2V/RsoFnMLU","tlshash":"c21385c837f62d161173f89756cb9dd26218c0033569e84cba6c37b85f8e52c92f97a1","first_seen":"2026-02-06T21:05:53.940315Z","last_seen":"2026-02-06T21:39:03.972727Z","times_seen":8,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-a9a1\"\r\nexpires: Sat, 07 Feb 2026 09:11:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1646\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=S%2F%2B2ECHQmRLFVwNHAcooFhrun5QT8PWV%2F4nIJRLJv6g7O%2B8Pr8ZgC2cr9JBKBs2w7ndcN%2FZdaE6mDpFMpDbzLdjrVfrql11CJ25KLw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1fa64b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43425,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (573)","md5":"39cea3339b6d415c70caa47bdaa0aea6","sha1":"f147bc291c160bc5d77d2f4acc7319da2d5abe4b","sha256":"6add3ad1b88e9e9a9b1ed162fcbb3caef0c26b0e3a493050632565b31be54753","sha512":"55936fe8fadb795dfec98c7d2dcc5f2d3ac1fa51ef5593105430df33f50a9f75fc24cd2b7b0f08ba1e0816401b3374f2f6963b487d20b9b996fd0a6fd2a7023d","ssdeep":"768:1HOVdq1vykITtL3TlrTr5AAMb0evEyVPkE0qorw+/mPrh4UGToPYx:1HOVdq1vyfTtL3TlrTr5AAMbVvEyeE0T","tlshash":"191362627a1232374bd5c3ba225dc6c7035b96733f2e58d034ae731483e6e9895f19a3","first_seen":"2026-02-06T21:05:53.934972Z","last_seen":"2026-02-06T21:39:03.970407Z","times_seen":8,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-a9a1\"\r\nexpires: Sat, 07 Feb 2026 09:11:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1646\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SxsdZ%2FkZgHJ27GZCqSJvB497ofVF9%2FIxg2UjZ8GbJ8sPYBqN%2FT5otSUNIlvbF5RDQe7UOzdBsinaKu8lcifPuey8SDBzz%2FfWlbfd6g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1fa67b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43425,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (573)","md5":"39cea3339b6d415c70caa47bdaa0aea6","sha1":"f147bc291c160bc5d77d2f4acc7319da2d5abe4b","sha256":"6add3ad1b88e9e9a9b1ed162fcbb3caef0c26b0e3a493050632565b31be54753","sha512":"55936fe8fadb795dfec98c7d2dcc5f2d3ac1fa51ef5593105430df33f50a9f75fc24cd2b7b0f08ba1e0816401b3374f2f6963b487d20b9b996fd0a6fd2a7023d","ssdeep":"768:1HOVdq1vykITtL3TlrTr5AAMb0evEyVPkE0qorw+/mPrh4UGToPYx:1HOVdq1vyfTtL3TlrTr5AAMbVvEyeE0T","tlshash":"191362627a1232374bd5c3ba225dc6c7035b96733f2e58d034ae731483e6e9895f19a3","first_seen":"2026-02-06T21:05:53.934972Z","last_seen":"2026-02-06T21:39:03.970407Z","times_seen":8,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_config_ts-src_util_schedulers_ts.1f15112ae7a0fe407b07.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-a9a1\"\r\nexpires: Sat, 07 Feb 2026 09:11:17 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1646\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DzifkcC1DEkiqCTV4PNaKc6Ablw1KOgFz3d93ZZzkk9rNLr2k3qAKeQ%2BUD%2BBYVKVcamFQQP98ckHszVn%2BjBatD0DJVcu5PVGhj6ALw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1fa7bb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":43425,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (573)","md5":"39cea3339b6d415c70caa47bdaa0aea6","sha1":"f147bc291c160bc5d77d2f4acc7319da2d5abe4b","sha256":"6add3ad1b88e9e9a9b1ed162fcbb3caef0c26b0e3a493050632565b31be54753","sha512":"55936fe8fadb795dfec98c7d2dcc5f2d3ac1fa51ef5593105430df33f50a9f75fc24cd2b7b0f08ba1e0816401b3374f2f6963b487d20b9b996fd0a6fd2a7023d","ssdeep":"768:1HOVdq1vykITtL3TlrTr5AAMb0evEyVPkE0qorw+/mPrh4UGToPYx:1HOVdq1vyfTtL3TlrTr5AAMbVvEyeE0T","tlshash":"191362627a1232374bd5c3ba225dc6c7035b96733f2e58d034ae731483e6e9895f19a3","first_seen":"2026-02-06T21:05:53.934972Z","last_seen":"2026-02-06T21:39:03.970407Z","times_seen":8,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/main.1b6dcd3f4e53c5acfd25.css","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:40.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /main.1b6dcd3f4e53c5acfd25.css HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:40 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 12:33:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f62c04-23c1f\"\r\nexpires: Sat, 07 Feb 2026 09:11:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1652\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ww2sdxY%2Be394IsIUp60eoaW1tZMM6pA9uZNOByi0o76pKlvRRTvoY2jGi%2F6KhtBZjI6U2p4y6ATINkjz6N78G95nGsr9cYb2K7jW2Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbbcb9c1b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":146463,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (792)","md5":"2c3e0d7807d04d5bf481a7668bae6eac","sha1":"ad7d40062d0a1d43df0aea4b69d3c21631dda87d","sha256":"cd7676c9ba5e32d72d44b7083ebb8f8e9ac81d44ca64371daea2a130b8e10f16","sha512":"471a6effbf02dba9cb95da53147316f6d299f50a7905fd49d1b02432bffcc0ac300ba16b9ca359fe7b7cd0a91dc961bc0c862667f25e484dd564d79b9609ac77","ssdeep":"1536:I+pizCGs0Gaf4EgYDbNlDAehOp5lnDDNJTI8bYMjSsOtIuCtO4RH7Z:+s0Gaf4EgYDbNlDAehQlnDrpF","tlshash":"30e3a650e9f40d60762bc1bd72c6d6d8ab7c90819d0ace6ebad6309c4fcd3e911d2789","first_seen":"2025-12-20T06:25:37.660979Z","last_seen":"2026-02-06T21:39:03.978075Z","times_seen":10,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/compatTest.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:40.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /compatTest.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:40 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 30 Sep 2024 11:14:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66fa8828-9f0\"\r\nexpires: Sat, 07 Feb 2026 09:11:08 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1652\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l%2FBDtx16OGRSR%2BVI73bcexKjLfvFAi7UFdy%2BzN646S14Ae%2BGWFnyLqF%2BA%2F1O%2Bou4R%2FN4xpmUeS0iW5OFZwCEujqhfiz22MGkQ7YDrQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbbcb9c4b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2544,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (413)","md5":"da7800ea928a021f2539ab41e6f2323e","sha1":"0141da1dc85ca8f34212f3dde2fac9bf61f5adb7","sha256":"15c24ec2b4cb94f24e66750f09e7071e5659e20a5ed926f69f565e20a81027cf","sha512":"228ca1c1f1ff8de139ebcfa7b084bc40d467a56ddccd103cf02a3fa26ba8c1b4d1961904511198e2fb6797837414bb3c09fc9f0902c3874f2467f279d526f0a9","ssdeep":"","tlshash":"fa5125190db5726150796167fb1bb2433a294133050cfb64a620cf393eb285bc19fde9","first_seen":"2024-06-30T22:36:50Z","last_seen":"2026-05-26T00:02:54.912318Z","times_seen":14075,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/favicon.svg","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:41.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /favicon.svg HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:41 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Mon, 30 Sep 2024 11:14:48 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 1651\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NWn98pDygAiY6pJqfklaJAByUeNDj4%2FjWzmSk3yGuAKcZ%2Fl0FKHBQRnzEmQBhCZ3KuDNDBurGgNI88kjWTrWrJb2AMGFzhzWq5hDQw%3D%3D\"}]}\r\netag: W/\"66fa8828-37c\"\r\ncontent-encoding: br\r\ncf-ray: 9c9dcbbfdc33b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":892,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d9ee2d4b0edd9f8ba2fb7242162c2c47","sha1":"398522893cf2cdefb5176f11bc67eab31c2d7382","sha256":"a462f1c5333e16b48335054493cfd1d0a13a96847b4b9ffe2cf24403e6e86010","sha512":"e404678e96fe6f6d1fe6c1390e4a64d90844a2d8903f84f1a34b23137593da5ba04112d9504b8bf480b392b294830a363344c5767e3bb5b7a3cb6f5df2a3aa45","ssdeep":"","tlshash":"97114493d060e71ad4c9e16bef61fca0116720cee5b745d485d95a34500fcdbfc08668","first_seen":"2023-05-09T00:01:39Z","last_seen":"2026-05-26T06:27:48.3819Z","times_seen":13899,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_lib_rlottie_RLottie_ts.475a4b6c4efa7f95cec9.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:43.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_lib_rlottie_RLottie_ts.475a4b6c4efa7f95cec9.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-62ab\"\r\nexpires: Sat, 07 Feb 2026 09:11:13 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1650\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=35Xs8kdFGzICbTs36xZ4ehs1zxiy4wt6pNkUm%2FdNwUjYQ%2BTpXkoWpm0GUXUVgv7CE7CYvuRoRC677BKweuT9ylJ0HCsadLoD51VawA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd0ff68b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25259,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (312)","md5":"36a689bc70f81286fce141fba316b553","sha1":"3b574e7d0bfbb24d53ed7df86bc506871bac0d79","sha256":"4238f5d92aeeaa9af723ce4a4fc7a869fe45821d165fb50643a77f6f5c5601fa","sha512":"55edcabf50455105fa39eb715ace4dc5cd754f46ad18bd1e296eb6dff0f39931eecfc874255995bdba090590027e4979054282982015a8c501e4aa5bd8ce9a7e","ssdeep":"384:xOWs6d8c8iUTywfkVo8QseyDW4w5djBNsZiZgmbyyPWs6d8XALrUc+Brhhx:xOWs6r8P2U6eoWBdjrsZiuhyPWs6eVn","tlshash":"c4b2554e67f72c299123b0a91f0f86926624c0073819e9997e6c32a46fdd078d2f8f75","first_seen":"2025-12-20T06:25:37.676238Z","last_seen":"2026-02-06T21:39:03.9797Z","times_seen":10,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-40305\"\r\nexpires: Sat, 07 Feb 2026 09:11:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1647\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F8TD%2BGphlMtmOI2yIklVJZ43O3Tx2Vl4IzJP0sgDf5%2Fsk8G3Ky9Z5UPDgSF2rG2JUPoyvZsZ0Hdgfx5jaluDv%2Fuf4Ley%2BTucF47ogA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1b9c4b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":262917,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"c45bd2047e2c8ff555e1b201bc9bf002","sha1":"ac50d9ee170c2f026ae8822b2b46cac84e239271","sha256":"58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3","sha512":"727619c82b8b5fef6772c6b400435c0a5e8f8f4654ef9c13c21a85dee316708a86a8212f5fdb8e62c7e67c75f358aab9cdccc9b721197371dfd6b75a82b7bee1","ssdeep":"6144:GQzezxKzOzzMz4z3T6vR3miT9mRYW6Tymw+g6sE7ROxZ9pI8w+EkHJVNzt7I:rsE7ROxZ9pI8w+ECJVc","tlshash":"5a44a580efad1502422130698c5d47cc5a7ca03b54d9896e7e9ce6e83fac83db5b6f74","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.973969Z","times_seen":430,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /rlottie-wasm.51d175377b5332e82d64.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1d14c\"\r\nexpires: Sat, 07 Feb 2026 09:11:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1645\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wtFnOy6e5YEvMAZYbocq29prCAlEaSeLv%2B74Njx187Nr%2BS0tDSOnB3K62fvTXJdNDslZITHaHtVVq3lusaEY%2FYoQ9TKzRQIlXgK%2FlA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd21adcb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":119116,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (312)","md5":"dee0b5a2f2d8533ccc49b6949d2f942d","sha1":"d71623fb971b85bac16ba1b243d04dfb3ef516db","sha256":"0ef3fc6b7fe94349a8ebb2eeae0b8464d5250931bd70e96fa9b6e182d8a1bd9f","sha512":"796682e315b9723ec3080639b31782e2590f25765301839fe1054786e9c0f9b71259766f3d201b5068129ebc67641754f7dbcbb0bfdd5013289e192ddcb9f8e7","ssdeep":"3072:RVxTCNZ6iFBsU3Jjh9DagCScYte4iiRaE:RVxxdScYte4ii9","tlshash":"6ac3514c6cf720a69623717d9b5f5109b6b9a803161dce00bd5cc2a0af94d3c9af9fd8","first_seen":"2023-03-13T11:21:32Z","last_seen":"2026-02-06T21:39:03.973374Z","times_seen":456,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-02-06","alert":"Hunting_JS_WebAssembly","trigger":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /rlottie-wasm.51d175377b5332e82d64.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1d14c\"\r\nexpires: Sat, 07 Feb 2026 09:11:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1645\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sPHG9QYNzzddJeCRc0N62a%2BrWCazQ1LGS0jItzmbcDOxYi8bNUzlDtkAlbi4yoMckgwsAkwtU9apCfsseHlqFf2LJlgHBZrk7cuOUw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd22b1bb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":119116,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (312)","md5":"dee0b5a2f2d8533ccc49b6949d2f942d","sha1":"d71623fb971b85bac16ba1b243d04dfb3ef516db","sha256":"0ef3fc6b7fe94349a8ebb2eeae0b8464d5250931bd70e96fa9b6e182d8a1bd9f","sha512":"796682e315b9723ec3080639b31782e2590f25765301839fe1054786e9c0f9b71259766f3d201b5068129ebc67641754f7dbcbb0bfdd5013289e192ddcb9f8e7","ssdeep":"3072:RVxTCNZ6iFBsU3Jjh9DagCScYte4iiRaE:RVxxdScYte4ii9","tlshash":"6ac3514c6cf720a69623717d9b5f5109b6b9a803161dce00bd5cc2a0af94d3c9af9fd8","first_seen":"2023-03-13T11:21:32Z","last_seen":"2026-02-06T21:39:03.973374Z","times_seen":456,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-02-06","alert":"Hunting_JS_WebAssembly","trigger":"teleggram.cc/rlottie-wasm.51d175377b5332e82d64.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1b649\"\r\nexpires: Sat, 07 Feb 2026 09:11:15 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1648\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EEg9sEjOdYe%2F9g93EDXE4YTT%2B7j1w4%2B83hJMUVT9B5RfELcifYL638E5nWaKpG91FmxIzXigg9G7SlOiClbyW64ubhJK%2FZFnCSMtMw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd178edb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":112201,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"abfd10612afcd4832510fed36e0cb359","sha1":"9efac7841a02c0f42b759cfb1031450ef3f03a1f","sha256":"59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6","sha512":"47bfa40abd96eeaa4eb77df545a791332cf9e13984f1308c91af0c40e4b7aff77f326815e72f6ae583806530d7a39c956ac6953efdf7f5f03ba0972ec67643c9","ssdeep":"1536:mqixWUY94HnezpiFzFLzzov27gIGMVkzqjpn6zk:H+7Y94HekF5z8u7gIGMxj/","tlshash":"05b3b44516f3225b181260b5e78f70b5a2a6a11f5347c8983c9f43847f9173e82febe9","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.975237Z","times_seen":434,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:41.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/main.1b6dcd3f4e53c5acfd25.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:41 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 11016\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\netag: \"68f60d9a-2b08\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\naccept-ranges: bytes\r\nage: 1650\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7hYo2qdfuTCgEv02YFfbC5Z7vlSZ8UlvS8FffjmiJU%2ByPfr5JmIgYuNhkKl0Pp6woCGA1wLzWcUOKbnIpzqDZCMBlF9FUlGbd15XDQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbbe5f42b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11016,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11016, version 1.0","md5":"15fa3062f8929bd3b05fdca5259db412","sha1":"6ff06a34f68ad0324ddec1bbe4d453c959178b36","sha256":"5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479","sha512":"07e96d7520b4ede158e77bef10a01a33cd8be7d263fe6900f89c023e65e4a63570e8a442dec2e96030fb563b25610005a748d48f9330fd31eb91b37d1003d376","ssdeep":"192:Tysuo7z1NVoTUYAKVOO7YVxRwHQUXFI5xoBwH9f4d9QFmOfiS:TvdvVoTSjOYR4QUVIgBwpFLaS","tlshash":"6e32af8071ff1c50ff85c2f69be68efa2c2b1895c619016f5240b476397525e9c294bb","first_seen":"2023-04-05T09:25:54Z","last_seen":"2026-05-26T14:25:38.488474Z","times_seen":33733,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/","date":"2026-02-06T21:38:44.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/\r\nSec-Fetch-Dest: worker\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 05 Nov 2025 04:17:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"690acfc8-b146\"\r\nexpires: Sat, 07 Feb 2026 09:11:14 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1649\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3HdRn%2BXMwU7V4ALVRwNVUOrP533OBQQKWcmSU2yA0bbJU22ok%2BUfjGIhxTa4QDAucTmBv8XYHzWeY7xspcLZSEikFCwPAgo5osLXrw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1280eb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":45382,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1205)","md5":"e059660b1f376fd03f7741b0a7be21dc","sha1":"1e45fe3df6264f3b5ba06ff997eeb27088e6e5b2","sha256":"56050615aaf9af647c0888245f83357f4ce8288eb2e3947745bd40b38a61e915","sha512":"9f6353b8dbbc6ccfb9309b28fe2f0d5270b4e6efad5eae68b12efb5b0d31d98c4e3ffbaadb15c2ed2dfc55ff9054bf6565a8b006da248db68fe3f0c86fddefec","ssdeep":"768:/wxVeciROMmuoyDGzoWs6/zRoP8DwpF00DiTCV/RsoKCdoEM+ERE/:/keNRG/zoWlzRo9F00u2V/RsoFnMLU","tlshash":"c21385c837f62d161173f89756cb9dd26218c0033569e84cba6c37b85f8e52c92f97a1","first_seen":"2026-02-06T21:05:53.940315Z","last_seen":"2026-02-06T21:39:03.972727Z","times_seen":8,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_pako_dist_pako_inflate_js.5f75bdcaf063c6c088d2.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-1b649\"\r\nexpires: Sat, 07 Feb 2026 09:11:15 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1648\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=435rYZ8u6F1MF%2FCFJEf0px4YG9%2BLUJLDt1NhPxEJtbFktCU4BGOPMy25z2rDjL2SmSLgJjuq1rHIJl6XGKbrrghLhLJibe0aPPYBgA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd18914b1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":112201,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"abfd10612afcd4832510fed36e0cb359","sha1":"9efac7841a02c0f42b759cfb1031450ef3f03a1f","sha256":"59aadb6a5951b1b0873cf4d18aa71b1e73328f2cfa445c1752eb80566d6aeca6","sha512":"47bfa40abd96eeaa4eb77df545a791332cf9e13984f1308c91af0c40e4b7aff77f326815e72f6ae583806530d7a39c956ac6953efdf7f5f03ba0972ec67643c9","ssdeep":"1536:mqixWUY94HnezpiFzFLzzov27gIGMVkzqjpn6zk:H+7Y94HekF5z8u7gIGMxj/","tlshash":"05b3b44516f3225b181260b5e78f70b5a2a6a11f5347c8983c9f43847f9173e82febe9","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.975237Z","times_seen":434,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"teleggram.cc/vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js","fqdn":"teleggram.cc","domain":"teleggram.cc","tld":"cc"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js","date":"2026-02-06T21:38:44.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teleggram.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 06:10:34 GMT","end":"Mon, 27 Apr 2026 07:09:21 GMT"},"fingerprint":{"sha1":"F1:86:8F:3F:D9:7E:A9:0A:F2:4E:C0:8D:CF:C7:7B:BC:2D:21:79:8B","sha256":"42:53:B4:75:14:2E:1A:B7:F3:F5:08:8C:28:9E:DF:21:75:F6:1C:E8:D7:1B:E6:3A:03:D2:AC:02:6E:F3:B5:51"}}},"request":{"raw":"GET /vendors-node_modules_mp4box_dist_mp4box_all_js.ae4c1ac754ab954b0df3.js HTTP/1.1\r\nHost: teleggram.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://teleggram.cc/src_lib_mediaWorker_index_worker_ts.a59801639a83a1085083.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 06 Feb 2026 21:38:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Oct 2025 10:23:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f60d9a-40305\"\r\nexpires: Sat, 07 Feb 2026 09:11:16 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 1647\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0HUUBcprBkoVHVbezMaU7u1GDJZrXJRjYzqBug9j2FHSL7zfQWIYaJ%2BopkRDL5T6FE2NE2q0tGALBgRZmwQRlo4Em5cy%2Bt7LOtbsqg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c9dcbd1b9acb1b8-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":262917,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"c45bd2047e2c8ff555e1b201bc9bf002","sha1":"ac50d9ee170c2f026ae8822b2b46cac84e239271","sha256":"58f4991b5416c845769562384e27842d7e9170970c6200aba5b10f6fe82a29d3","sha512":"727619c82b8b5fef6772c6b400435c0a5e8f8f4654ef9c13c21a85dee316708a86a8212f5fdb8e62c7e67c75f358aab9cdccc9b721197371dfd6b75a82b7bee1","ssdeep":"6144:GQzezxKzOzzMz4z3T6vR3miT9mRYW6Tymw+g6sE7ROxZ9pI8w+EkHJVNzt7I:rsE7ROxZ9pI8w+ECJVc","tlshash":"5a44a580efad1502422130698c5d47cc5a7ca03b54d9896e7e9ce6e83fac83db5b6f74","first_seen":"2023-07-27T09:32:35Z","last_seen":"2026-02-06T21:39:03.973969Z","times_seen":430,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-06","alert":"Phishing Block","trigger":"teleggram.cc","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"teleggram.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}