{"report_id":"c9e9d75c-c7c5-4cd5-b3fa-ef3929411845","version":6,"status":"done","tags":[],"date":"2026-03-22T17:12:59Z","url":{"schema":"https","addr":"api.aedigitaltether.com/upload/img/699ea6ae7d77.webp","fqdn":"api.aedigitaltether.com","domain":"aedigitaltether.com","tld":"com"},"ip":{"addr":"104.21.46.252","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"api.aedigitaltether.com/upload/img/699ea6ae7d77.webp","fqdn":"api.aedigitaltether.com","domain":"aedigitaltether.com","tld":"com"},"title":"699ea6ae7d77.webp (WEBP Image, 408 × 464 pixels)","dom":{"size":510,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (509), with no line terminators","md5":"2148a2b3028b58bcba26708d28291197","sha1":"ef230fa74679b3e842c7ada315bdee769302a579","sha256":"62fff8afbb4c66588d78debf3adb9891f02f4ccb38a2047f24d06f6b36717d5a","sha512":"26e8a4a6f60508e9888ea07d9c81383e72337b6ce05bcae88b0d3c7456ea4bfdb1fa91a025ee9f9ca412b1d573e1e62ba659a5b1e5d0476f02ba5e32a6bf0dbd","ssdeep":"","tlshash":"cbf09eab6601b417f33552c3f64572c9e8c9d009c3bb1445bac901c696c739cc4d5e96","dom_hash":"domhash3b196952ed6768234b7eb261590428d7","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"api.aedigitaltether.com/upload/img/699ea6ae7d77.webp","fqdn":"api.aedigitaltether.com","domain":"aedigitaltether.com","tld":"com"},"ip":{"addr":"104.21.46.252","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-26T17:12:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"api.aedigitaltether.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"api.aedigitaltether.com","ip":{"addr":"172.67.143.101","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":2,"received_data":111229,"sent_data":1001,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"api.aedigitaltether.com/upload/img/699ea6ae7d77.webp","fqdn":"api.aedigitaltether.com","domain":"aedigitaltether.com","tld":"com"},"ip":{"addr":"172.67.143.101","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-22T17:12:37.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aedigitaltether.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 00:50:43 GMT","end":"Tue, 26 May 2026 00:50:42 GMT"},"fingerprint":{"sha1":"11:35:08:38:AD:8A:89:37:84:77:CC:34:ED:92:9A:41:D1:52:08:D9","sha256":"1E:3E:67:8F:27:30:97:F7:2F:3C:E6:85:98:B6:3B:35:3E:9D:AC:4F:0E:15:C9:3B:30:47:94:99:F6:F1:83:F9"}}},"request":{"raw":"GET /upload/img/699ea6ae7d77.webp HTTP/1.1\r\nHost: api.aedigitaltether.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Mar 2026 17:12:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 105534\r\nserver: cloudflare\r\nlast-modified: Wed, 25 Feb 2026 07:37:18 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"699ea6ae-19c3e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y9RsAoKN%2BFxkKK%2FK68ETb8zY1mk%2BDwDMg4MsBNH0X6ADAq163QeKLzCEqCUZqvm6WqodB0PTenqUU7TVymfQ4eJefHZ3gGenronXM1zJSuGXD65QK2WM\"}]}\r\ncf-ray: 9e06d284c9caea60-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":105534,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2f4d3fea45f25d0bd12a354c6a5895dd","sha1":"9ed90ba4c53fadfe257a80f4bb6f6c56eecb9e29","sha256":"eb6e9715b525f8c7a144bfa24ec8c36a4312da4f4d7b3894c5595aa6fd422e90","sha512":"f80c3b9900d33c389be2ad593bd170feaccfb4c087db8b64169e522e6e90f3e396265dbcc42edf8cf3111061e68a87f87a32ed5876ef3caa592ab3595037d170","ssdeep":"1536:/yEXaNS3fO7MpNMemHYnBMu4t70XMfW4Kazr6khcYPSeD2XI4i5EVJZkPf9fE:/yEGS3FTQ+B4elG6yXD244i5AZ8e","tlshash":"0aa3127f31ecc0aa6fc3bb3caa0c1bbd4598142aa44435e74dca694d8b45c9bf4e5354","first_seen":"2026-03-22T17:13:03.712152Z","last_seen":"2026-03-22T17:13:03.712152Z","times_seen":1,"resource_available":false,"data":null}},"time_used":387,"timings":{"blocked":56,"dns":29,"connect":8,"send":0,"wait":259,"receive":12,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"api.aedigitaltether.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.aedigitaltether.com/favicon.ico","fqdn":"api.aedigitaltether.com","domain":"aedigitaltether.com","tld":"com"},"ip":{"addr":"172.67.143.101","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://api.aedigitaltether.com/upload/img/699ea6ae7d77.webp","date":"2026-03-22T17:12:38.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aedigitaltether.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 00:50:43 GMT","end":"Tue, 26 May 2026 00:50:42 GMT"},"fingerprint":{"sha1":"11:35:08:38:AD:8A:89:37:84:77:CC:34:ED:92:9A:41:D1:52:08:D9","sha256":"1E:3E:67:8F:27:30:97:F7:2F:3C:E6:85:98:B6:3B:35:3E:9D:AC:4F:0E:15:C9:3B:30:47:94:99:F6:F1:83:F9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: api.aedigitaltether.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://api.aedigitaltether.com/upload/img/699ea6ae7d77.webp\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 22 Mar 2026 17:12:39 GMT\r\ncontent-type: image/x-icon\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XsEMsfS5d6nCfLrzYyXlPCHjotf7AYUiGWSxqziOCl%2F60ul8%2BlVwQFApUq4R7xh7hjjsBOsmb6lT2CrR%2FU60GqsvRFLrHTY0VII0a6sYVNJ25X31h50X\"}]}\r\nlast-modified: Mon, 08 Dec 2025 02:02:10 GMT\r\npriority: u=6,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"693631a2-10be\"\r\ncf-ray: 9e06d28b5f0a75c3-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"5ef602106ff86d3f848d1c587cd8dee2","sha1":"7d3f4a83d19702cf9ccae46d9eac9d8021d0fa15","sha256":"b33fdf4b3658410bbba8cf05720431d2bd1ce1e0ee7fc1cd04b4e85f4dc5b619","sha512":"8ef084b145e7582ff35496737241d46d4ae53006628bda7c359f7c38d24b919634662f795fcfc114cd4157c28399856dd69ab220491d4bc55dfe596735a567e5","ssdeep":"48:HfkWdlxPbe//wtBjf2bjqjOFm6aSP5lRpdhX7POxhg7avqnpqfjzitFp:Hf+IX0qjihtpdhLUq7+qnpqffiDp","tlshash":"e99173c6970e05c8f06971fa76774ea6e30eb90731b40bb5e8271243452e5ce1eabb07","first_seen":"2023-07-20T13:50:33Z","last_seen":"2026-06-13T02:02:41.920935Z","times_seen":1301,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":263,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-22","alert":"Sinkholed","trigger":"api.aedigitaltether.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}