{"report_id":"ca20f8e1-75b6-4306-ac6e-5128478dd136","version":6,"status":"done","tags":[],"date":"2026-03-01T02:47:54Z","url":{"schema":"http","addr":"sendbnb.site","fqdn":"sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.sendbnb.site/","fqdn":"www.sendbnb.site","domain":"sendbnb.site","tld":"site"},"title":"Transfer Trust Wallet","dom":{"size":5090,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (392)","md5":"701effd5b20fe7f0068290727d8e299c","sha1":"c23cadc33f0c2ec99624d47ff86a7ebfdd97dbb9","sha256":"433eb2eb14614796a11c50c89051268aa8d5f6eda5e2a9e4e25b48b6be401f9b","sha512":"b46e83ed996d018c21559e2180735f8aa0a8d17aac387a9c82ab821656598427cda60682d50398ee09dee67bf64e00e383911db2d7621bef8934f6fa5b4ba8df","ssdeep":"96:bdvWqO3uuau9WCWaJ9mkow/LqA36ReekLIfkgIfkmvEqMOCMP5tDsj:bdvWq8uuau9WCWaJAkow/LeEL515tDsj","tlshash":"c8b1c626f4f21faab00382ea6ee6713faa64e507c20f995cb5dc51a11fc7c499d67108","dom_hash":"domhash7b4b5f6959d8ba367764222c1d23af69","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"sendbnb.site","fqdn":"sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-05T02:47:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"www.sendbnb.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"sendbnb.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-02-22T22:32:51.303032Z","alert_count":0,"request_count":1,"received_data":760963,"sent_data":445,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.sendbnb.site","ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-02-21","domain_rank":0,"first_seen":"2026-03-01T02:47:54.843372Z","last_seen":"2026-03-01T02:47:54.843372Z","alert_count":4,"request_count":4,"received_data":47089,"sent_data":1768,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}]},{"fqdn":"sendbnb.site","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-02-21","domain_rank":0,"first_seen":"2026-03-01T02:47:54.842283Z","last_seen":"2026-03-01T02:47:54.842283Z","alert_count":1,"request_count":1,"received_data":5468,"sent_data":481,"comment":"","tags":null,"fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.sendbnb.site/","fqdn":"www.sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"4436be55e435cdb4ce98fb721a4df4b1","sha1":"80be671b3a4a1cf8a12217a5ff787935373605df","sha256":"b420646d06a9bb2ebfd720cd33e1f35f7b7fd470a7d59b08f5271183ccded372","sha512":"c31b409f5eb10c447d267733eeecaa909e0c4ed2b17a46f7d81d1105edfbed7a0e574c32627768d5c01f93bb0f5d98a9c2829aef5c949ed3530558bb845cad1f","ssdeep":"","tlshash":"06c012597020696604ce787d4ccf088ebe269412a20849c99ddcd8547fb2e6c42e484c","size":192,"data":"","first_seen":"2025-09-07T13:20:24.46413Z","last_seen":"2026-06-07T04:15:54.83152Z","times_seen":94,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/ethers@5.7.2/dist/ethers.umd.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"71f8c498e792c6179d4e2840228f777a","sha1":"b651545587f6257345dc3de9ddaa444b10dedf3e","sha256":"a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73","sha512":"14371563e83bbdce425c035bad34a0d4ae6a2f2ae20ac183602134d8b8b5b5711874d40fbcb3c7344fab4f63237a2f0dedf65b7b458b870dbb8f64ab191a5d32","ssdeep":"12288:TfamYTKkkAJs8P+H8Xb2F/nNuwEYtnob6qQr:TfjkhPaNnN9EYtwo","tlshash":"35f43b80b3b1b0b583c729a4143f6046f63af46a505840a8f659faf279f9d4c957bb3c","size":760171,"data":"","first_seen":"2023-03-13T00:48:53Z","last_seen":"2026-06-08T10:24:43.813936Z","times_seen":3579,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.sendbnb.site/main.js","fqdn":"www.sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a688406ac449d08881a8ee925ad18923","sha1":"7ea4ff5af8252e3017278cf26515bf1fad400559","sha256":"c2b06844478d8d9405197bd9fdbfc169e50631103964e91117ce3787fcd49c82","sha512":"b356d04f7ef68c11e2b3c8ea4a4a12c4c46ef73ce92735fd6ef3ad38854f08d09b640f719be87ccb66350ba167b1dd4cdd25467be79ae9be69af9ccf2fb6584e","ssdeep":"384:9fnNG9xbBlJ2twQU0OCYiilVlfMGijOYLHQXAfIKh27+BoyS9hSWFvi+IwZGtvbC:9f0xbBk7U0OwilVlf3COCQXAfIm2KBo1","tlshash":"d5b214c43d428c8ea31dd4fba54674f8c46a34756ace95c7d2813c61f0f9233a9b4ab2","size":24413,"data":"","first_seen":"2026-03-01T02:47:58.330648Z","last_seen":"2026-03-01T02:57:41.630275Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/ethers@5.7.2/dist/ethers.umd.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.sendbnb.site/","date":"2026-03-01T02:47:32.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/ethers@5.7.2/dist/ethers.umd.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.sendbnb.site/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 5.7.2\r\nx-jsd-version-type: version\r\netag: W/\"b996b-tlFUVYf2JXNF3D3p3apESxDe3z4\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nage: 265290\r\ndate: Sun, 01 Mar 2026 02:47:32 GMT\r\nx-served-by: cache-fra-etou8220026-FRA, cache-hel1410034-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 168432\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":760171,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"71f8c498e792c6179d4e2840228f777a","sha1":"b651545587f6257345dc3de9ddaa444b10dedf3e","sha256":"a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73","sha512":"14371563e83bbdce425c035bad34a0d4ae6a2f2ae20ac183602134d8b8b5b5711874d40fbcb3c7344fab4f63237a2f0dedf65b7b458b870dbb8f64ab191a5d32","ssdeep":"12288:TfamYTKkkAJs8P+H8Xb2F/nNuwEYtnob6qQr:TfjkhPaNnN9EYtwo","tlshash":"35f43b80b3b1b0b583c729a4143f6046f63af46a505840a8f659faf279f9d4c957bb3c","first_seen":"2023-03-13T00:48:53Z","last_seen":"2026-06-08T10:24:43.813936Z","times_seen":3579,"resource_available":true,"data":null}},"time_used":221,"timings":{"blocked":62,"dns":1,"connect":26,"send":0,"wait":27,"receive":66,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.sendbnb.site/favicon.ico","fqdn":"www.sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.sendbnb.site/","date":"2026-03-01T02:47:33.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.sendbnb.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 07:00:35 GMT","end":"Sat, 23 May 2026 07:00:34 GMT"},"fingerprint":{"sha1":"00:F4:51:D1:D8:6E:42:08:F7:F4:4F:3F:9C:3E:03:F0:3C:00:0A:FC","sha256":"B2:8A:46:82:97:46:E0:BF:A3:61:2D:4F:DB:16:6C:E5:42:77:26:90:D7:49:AD:3C:E5:DA:4E:10:28:73:EB:B3"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.sendbnb.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.sendbnb.site/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/plain; charset=utf-8\r\ndate: Sun, 01 Mar 2026 02:47:33 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-error: NOT_FOUND\r\nx-vercel-id: arn1::r5tb5-1772333253311-c43f24e4505f\r\ncontent-length: 79\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"00347fdeba962880b09d769e7cd55c4d","sha1":"abce357c5e5d3a67f38ab042a80fbef00c2e9ab4","sha256":"8d59c5cf12532e6851bbe86eabccba239fef6a294493da5b0baa87c8b8605b29","sha512":"6585f369df35b85560d45ebc546a722d89aebed35cd9f106c0d6b608019c50c7a79b62b18bad40176611b0adcf013049ebff43855adeab41a9e7a624bcbf3dc1","ssdeep":"","tlshash":"e0a0240d01c44c1df3c40400d301137c301143115f51f75041ff5d1071003cd73000c0","first_seen":"2026-03-01T02:47:58.327191Z","last_seen":"2026-03-01T02:47:58.327191Z","times_seen":1,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"www.sendbnb.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sendbnb.site/","fqdn":"sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-01T02:47:32.579Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sendbnb.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 07:00:36 GMT","end":"Sat, 23 May 2026 07:00:35 GMT"},"fingerprint":{"sha1":"F9:2D:15:BA:46:C6:17:EE:01:F3:83:7A:5F:D8:33:B9:0C:16:41:4B","sha256":"D1:B6:11:CF:3F:29:70:A3:5A:46:21:E5:95:0F:D5:08:DC:07:9D:79:F0:34:D1:5C:2B:6C:84:73:7A:64:81:49"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: sendbnb.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 308 Permanent Redirect\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/html\r\ndate: Sun, 01 Mar 2026 02:47:32 GMT\r\nlocation: https://www.sendbnb.site/\r\nrefresh: 0;url=https://www.sendbnb.site/\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-id: arn1::r5tb5-1772333252646-7ba2a664ef92\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"308","status_text":"Permanent Redirect","fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5109,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (392)","md5":"52385e21687d85441df1817ec7440594","sha1":"53d2192097f670776d2e54147066a46a1dbf3693","sha256":"d00f1dcbd525b4a7f0ca56a9f998f5536f3609b45936a0358410ad29a24316d3","sha512":"6bfd03035d33bbe350030213abbf2779fbb69951fc2a7b139d4b0f6cc73418a2b13652a1ccba57fd9fd4379916a8570533c8deda8145f47e1a0e1f7f6ee551ea","ssdeep":"96:+dvWqO3uuau9WCWaJ9mkow/LqA36ReekLIfkgIfkmvEqMOpMP5tD8:+dvWq8uuau9WCWaJAkow/LeEL5m5tD8","tlshash":"31b1d726f4f21faaa00382ea6ee6713fba64e607c20f995c71dc51a01fc7c499d67108","first_seen":"2026-03-01T02:47:58.328328Z","last_seen":"2026-03-01T02:57:41.622757Z","times_seen":2,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":65,"dns":33,"connect":1,"send":0,"wait":11,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"sendbnb.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.sendbnb.site/","fqdn":"www.sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-01T02:47:32.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.sendbnb.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 07:00:35 GMT","end":"Sat, 23 May 2026 07:00:34 GMT"},"fingerprint":{"sha1":"00:F4:51:D1:D8:6E:42:08:F7:F4:4F:3F:9C:3E:03:F0:3C:00:0A:FC","sha256":"B2:8A:46:82:97:46:E0:BF:A3:61:2D:4F:DB:16:6C:E5:42:77:26:90:D7:49:AD:3C:E5:DA:4E:10:28:73:EB:B3"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.sendbnb.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 68734\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Sun, 01 Mar 2026 02:47:32 GMT\r\netag: \"52385e21687d85441df1817ec7440594\"\r\nlast-modified: Sat, 28 Feb 2026 07:41:58 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::r5tb5-1772333252705-aa531b1d46f5\r\ncontent-length: 1790\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}],"data":{"size":5109,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (392)","md5":"52385e21687d85441df1817ec7440594","sha1":"53d2192097f670776d2e54147066a46a1dbf3693","sha256":"d00f1dcbd525b4a7f0ca56a9f998f5536f3609b45936a0358410ad29a24316d3","sha512":"6bfd03035d33bbe350030213abbf2779fbb69951fc2a7b139d4b0f6cc73418a2b13652a1ccba57fd9fd4379916a8570533c8deda8145f47e1a0e1f7f6ee551ea","ssdeep":"96:+dvWqO3uuau9WCWaJ9mkow/LqA36ReekLIfkgIfkmvEqMOpMP5tD8:+dvWq8uuau9WCWaJAkow/LeEL5m5tD8","tlshash":"31b1d726f4f21faaa00382ea6ee6713fba64e607c20f995c71dc51a01fc7c499d67108","first_seen":"2026-03-01T02:47:58.328328Z","last_seen":"2026-03-01T02:57:41.622757Z","times_seen":2,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":36,"dns":10,"connect":1,"send":0,"wait":10,"receive":11,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"www.sendbnb.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.sendbnb.site/style.css","fqdn":"www.sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.sendbnb.site/","date":"2026-03-01T02:47:32.916Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.sendbnb.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 07:00:35 GMT","end":"Sat, 23 May 2026 07:00:34 GMT"},"fingerprint":{"sha1":"00:F4:51:D1:D8:6E:42:08:F7:F4:4F:3F:9C:3E:03:F0:3C:00:0A:FC","sha256":"B2:8A:46:82:97:46:E0:BF:A3:61:2D:4F:DB:16:6C:E5:42:77:26:90:D7:49:AD:3C:E5:DA:4E:10:28:73:EB:B3"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: www.sendbnb.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.sendbnb.site/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"style.css\"\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\ndate: Sun, 01 Mar 2026 02:47:33 GMT\r\netag: \"5f0504757203b731c1111292336b763b\"\r\nlast-modified: Sun, 01 Mar 2026 02:47:33 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::r5tb5-1772333252917-216af03c93c2\r\ncontent-length: 3832\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15523,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"c08b10bbeabba2693f4d5800ec5a3fe2","sha1":"d8341820a7e65309f8a9472d6a6c17c84d606108","sha256":"93aa890a0c8ce70af27f673f8270abadd24e076d09b7c5b6b588d4bd60f83e88","sha512":"0300c2c97f35a85dd2591bd9f7fd9816e6bbab240a2808abb69885016851aee68f2e1ee011d5cfb73032d95e85e94ea0c53dde024a0c6cd032fa38e2b58c5116","ssdeep":"192:wDn4DUDn4D1ZgNHuECW1IJPLJvnCxvDRHsfHyzvBt2pPOOIjyxPhPLsXj2VE3Io0:J11WJQONyNtsm","tlshash":"5662655956b34c016d2a44feb3de7747b23b80cbde2eeda9b7c511048fc51a159c2b88","first_seen":"2026-03-01T02:47:58.32943Z","last_seen":"2026-06-07T00:07:23.886289Z","times_seen":12,"resource_available":false,"data":null}},"time_used":162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":161,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"www.sendbnb.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.sendbnb.site/main.js","fqdn":"www.sendbnb.site","domain":"sendbnb.site","tld":"site"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.sendbnb.site/","date":"2026-03-01T02:47:32.920Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.sendbnb.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Feb 2026 07:00:35 GMT","end":"Sat, 23 May 2026 07:00:34 GMT"},"fingerprint":{"sha1":"00:F4:51:D1:D8:6E:42:08:F7:F4:4F:3F:9C:3E:03:F0:3C:00:0A:FC","sha256":"B2:8A:46:82:97:46:E0:BF:A3:61:2D:4F:DB:16:6C:E5:42:77:26:90:D7:49:AD:3C:E5:DA:4E:10:28:73:EB:B3"}}},"request":{"raw":"GET /main.js HTTP/1.1\r\nHost: www.sendbnb.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.sendbnb.site/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"main.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 01 Mar 2026 02:47:33 GMT\r\netag: \"e4d97e1ad5d9906e3768a0724558542d\"\r\nlast-modified: Sun, 01 Mar 2026 02:47:33 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::h77fz-1772333252917-8d41bc02bee1\r\ncontent-length: 7948\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":24417,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (24377), with no line terminators","md5":"a688406ac449d08881a8ee925ad18923","sha1":"7ea4ff5af8252e3017278cf26515bf1fad400559","sha256":"c2b06844478d8d9405197bd9fdbfc169e50631103964e91117ce3787fcd49c82","sha512":"b356d04f7ef68c11e2b3c8ea4a4a12c4c46ef73ce92735fd6ef3ad38854f08d09b640f719be87ccb66350ba167b1dd4cdd25467be79ae9be69af9ccf2fb6584e","ssdeep":"384:9fnNG9xbBlJ2twQU0OCYiilVlfMGijOYLHQXAfIKh27+BoyS9hSWFvi+IwZGtvbC:9f0xbBk7U0OwilVlf3COCQXAfIm2KBo1","tlshash":"d5b214c43d428c8ea31dd4fba54674f8c46a34756ace95c7d2813c61f0f9233a9b4ab2","first_seen":"2026-03-01T02:47:58.330648Z","last_seen":"2026-03-01T02:57:41.630275Z","times_seen":2,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":167,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-01","alert":"Sinkholed","trigger":"www.sendbnb.site","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}