{"report_id":"ccfdfe32-7a25-41f4-9c2c-dbc3664d9cfd","version":6,"status":"done","tags":[],"date":"2026-04-15T13:52:02Z","url":{"schema":"http","addr":"krakenweb3vip.com","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":0,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"title":"Kraken","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"krakenweb3vip.com","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":0,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-20T13:52:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":14,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43440,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.628811+0000\",\"flow_id\":830567619793309,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43440,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.102813+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43480,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.636003+0000\",\"flow_id\":2022378094762877,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43480,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":753,\"bytes_toclient\":4662,\"start\":\"2026-04-15T13:51:44.105341+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43468,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.641452+0000\",\"flow_id\":1891617815435309,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43468,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.104493+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43452,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.647729+0000\",\"flow_id\":829850360255716,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43452,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.103652+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43504,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.688715+0000\",\"flow_id\":650050144340330,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43504,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.166250+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.165","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":60880,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.696370+0000\",\"flow_id\":1269165385062241,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":60880,\"dest_ip\":\"47.79.64.165\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-res10.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":905,\"bytes_toclient\":1634,\"start\":\"2026-04-15T13:51:44.137057+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43488,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.721355+0000\",\"flow_id\":710695082547112,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43488,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.153512+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43526,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.890433+0000\",\"flow_id\":262094338418688,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43526,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.354304+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43552,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.893306+0000\",\"flow_id\":295122636927035,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43552,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":905,\"bytes_toclient\":1634,\"start\":\"2026-04-15T13:51:44.356411+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43518,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.900449+0000\",\"flow_id\":868144288655213,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43518,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.354157+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43542,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.903166+0000\",\"flow_id\":1105076159540404,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43542,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.355508+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.165","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":60884,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.941919+0000\",\"flow_id\":605287995211546,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":60884,\"dest_ip\":\"47.79.64.165\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"echo-res10.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.392986+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43578,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.966418+0000\",\"flow_id\":2204093866077244,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43578,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":905,\"bytes_toclient\":6037,\"start\":\"2026-04-15T13:51:44.420924+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-15T13:51:44Z","timestamp":1776261104,"ip_dst":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"ip_src":{"addr":"Client IP","port":43568,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-04-15T13:51:44.987027+0000\",\"flow_id\":585385116724041,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":43568,\"dest_ip\":\"47.79.64.229\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"yongcanli2.oss-cn-hongkong.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":905,\"bytes_toclient\":3148,\"start\":\"2026-04-15T13:51:44.420681+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"krakenweb3vip.com","ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":37,"request_count":37,"received_data":4317542,"sent_data":16102,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":12,"received_data":32903,"sent_data":5484,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"web3otc.org","ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-04-14","domain_rank":0,"first_seen":"2026-04-15T13:51:50.268388Z","last_seen":"2026-04-15T13:51:53.938775Z","alert_count":0,"request_count":15,"received_data":60102,"sent_data":7569,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"huobicfg.s3.amazonaws.com","ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"domain_registered":"2005-08-18","domain_rank":5277579,"first_seen":"2021-11-22T07:40:25Z","last_seen":"2026-04-05T17:22:31.288324Z","alert_count":0,"request_count":7,"received_data":10126,"sent_data":2947,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"assets.staticimg.com","ip":{"addr":"52.84.50.126","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2020-04-26","domain_rank":1562779,"first_seen":"2020-10-17T12:27:01Z","last_seen":"2026-04-08T18:17:27.795526Z","alert_count":0,"request_count":1,"received_data":1581,"sent_data":485,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"echo-res10.oss-cn-hongkong.aliyuncs.com","ip":{"addr":"47.79.64.165","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2026-03-16T14:48:18.446884Z","last_seen":"2026-03-16T14:48:18.446884Z","alert_count":0,"request_count":1,"received_data":56277,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c0e88513b499aae066f13f6f0edfedab","sha1":"12fd9320e7be26e9257e2a1a39a698a5e2706292","sha256":"3ffd5a1fea533c35c122aeb0a36f3d4a37022e0a14c83167faeaa819b3ee8cfd","sha512":"36b57e74aa71e21ec5489637f206796e8b9097db32c59e4ffbbdd7eb11ce35c2f754178f996bd6e11abc560cdddd3af7cde3fc1847c1a455120b5c26ee4fb838","ssdeep":"","tlshash":"17c08cc8b0c6ad001602e45111bf25e4a024802770481b128d98e8483e220f48233e9c","size":139,"data":"","first_seen":"2023-08-29T11:10:58Z","last_seen":"2026-04-21T18:21:15.543935Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ced6204993ccd4d4792486f3b3c899b1","sha1":"c16ea5b8c59dcea2b9b03d844467f9db0d358cdc","sha256":"317f80fdd1cb3e7b69648541320cfeb07fd3ea3d1b70d3aab180edce7c3c4ac5","sha512":"dbf99b86ffabe8deeb56f836821b1f3c58fe9b502b89210ec5082f60b4cb4e30f060645fc970bf48f5c3f20073f0e79845925b0dfb4ac89df0319d4c26bdb795","ssdeep":"","tlshash":"b8c08cc4a0c22e509622651410af38e89034402ab08c5b52dc98e94e3f260f49237eac","size":149,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-04-21T18:06:11.96058Z","times_seen":303,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/charting_library/charting_library.min.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-21T18:24:07.158001Z","times_seen":717,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"f3051c5cf85d9581035d3b8ec93c0c89","sha1":"8d68c0896c045662413ed7bae0324fc987a301db","sha256":"22a7dc2845cfdc0f319f50f3a51e414825af36d1ffc13a60e61d03350cfa6e8a","sha512":"9cdcbb1774aef56e244ec504a6e8714d8644410640ee1f64cd89adf38197f84cec23007bc9df816c08950eda28b42a684c3d6b22a486d630a9bf71f31ca7c4d8","ssdeep":"","tlshash":"ee11abfe191a602a6307804f976b7801643650b9000a185177ccdb9dbb9af7dd0cfb8c","size":1048,"data":"","first_seen":"2026-04-15T13:51:57.704199Z","last_seen":"2026-04-15T13:52:11.187346Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-c3971588.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"44c5a65f483408c5388828f72ffdabff","sha1":"ab541733add3e901f4ec54f3ff93d44b9f183af0","sha256":"2dec8c4acdd7a95a89a94e3e2213eb2980cfe8ef26ef480f2372e39618f47565","sha512":"c7438262b8f25783bacb347869ef55b71b6216414c801a8ca215c28085facb2829f0fd68b2eae62e4381d0e976bbe2b33e081b995eeb74a71cd2cf92aa253224","ssdeep":"1536:ZrFsIsiO29WOgSRsdwWA0xbuJNd8OzqixZg:Z5uogSRyAwmq4g","tlshash":"dea35a8ea50b1eff58fe0844b55b094030691f97988ccc93a7ba6f153bfacd5a385718","size":102213,"data":"","first_seen":"2026-04-15T13:51:57.68477Z","last_seen":"2026-04-15T13:52:11.167181Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/vendor-51522aa1.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"8439986076b66fa4d37108aba512ee62","sha1":"6b0359d7b312ebbf46bbcd739159d38f6aadfd35","sha256":"e1f7f0d9b48f1da5a50a20288c5c5cb939b503ac734d3a7b084a44b644bbc12a","sha512":"3883b9f30e43d6f73a667a96a71b20398a9aa250ff555028aec781d3e2842e41fd1b87a704fe4d4fa12f2ed32b3356a680220cc4d8ba709011ff10dfeedca8f5","ssdeep":"12288:VHMVuFtd+0MJvg5dnALVnEDjEm1fWltYa2iWFf4lnOBLySxa:VHMVuFhEI5xA+Em1foF2iWFf8Wg","tlshash":"d4153ac97292f06147ab24e240bb0006f3396e59744e8494f16d98eb7d79d89e2b7f3c","size":892193,"data":"","first_seen":"2026-04-15T13:51:57.664993Z","last_seen":"2026-04-15T13:52:11.14934Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-c07faf26.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"9f6049c593502547f7c31293e5b6497b","sha1":"ea2d3318109236b9b207f44ddcf0c78caf333207","sha256":"6319b9af589ed98ad123c70c6604fd10006aadb94f9d1f4362296cdc5fd99fe3","sha512":"0f6220bc8013a6b3a5b3db02dddd4d95cc10d7309597592b769163359000f02c6cc1201d92b921ba25acb8a39b21f750028a59b5420785d787d06e6261ec09a4","ssdeep":"384:PAjOaIF+NfY5NCBn0WTsdVjX8tGhmWn+QHOiWcXuIIkTkbPPwzzC6Berg4Uxg:PAjKFkfY5NrdVzPhDTHOiuIItPPwzzCh","tlshash":"d072f949fe0ec73cdaba601044ac242032483fd5a00d9cf2f5fe69932793e79a755b69","size":16423,"data":"","first_seen":"2026-04-15T13:51:57.678331Z","last_seen":"2026-04-15T13:52:11.138928Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"41bbcc2c56aa15aca722543a89a6c730","sha1":"406498af64c571b878803bce96126d82f84fe1fb","sha256":"dcdb9d7d09bbc4280e61709eba14765c1788e29f96bb2d757d7e41e1ca174807","sha512":"48052a6d22581aefb3f456e7ef17080ec74175298ef4d6f05275e19043375211c712175b86b2a51347902345cd7d2d47535dc383acc4b70757be798e6d778136","ssdeep":"","tlshash":"bcc08cd4a0d62d002a12a45430bf25e890344026b0486b03ccd4e8592e234f08233e98","size":148,"data":"","first_seen":"2023-11-01T14:09:04Z","last_seen":"2026-04-15T13:52:11.188218Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a4bdcb8203f55c2a0d42fe2daeba7f94","sha1":"28d4fb637c1f7d7cfc979d90f4f388d62eb58a51","sha256":"386fe5926fc7fa712f45c79142ec5390c9082ce14bd96a609004647fb1f4d823","sha512":"09dd6e53cd308472025baff2f600acd0b5be74b4d557bf48d7402cf6147449fa01db100adc90a5ea3930e80b42a5a2a1782265620c3f940cc93f60e873363d5e","ssdeep":"","tlshash":"c6c08cc8a1c33d001602661060bf35e4a0288026714c5b128cd4e8492f230b88237e98","size":145,"data":"","first_seen":"2023-06-06T19:23:28Z","last_seen":"2026-04-21T18:12:28.930168Z","times_seen":490,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a29c6a6651a06690b0d6e9e1cb813d76","sha1":"5f7b557000783cd980ebfcb498c0efedb6656279","sha256":"6af2d3b27bcd17c7ca63a87d3dfb44080cb5c42f895f0ed915c36b858224f5bb","sha512":"fc3d8baa836da527149c80cfbf4ca84cba4d9f5f453465efb87ff415ba7498cc936be3558527a68a59a5c824151df7d427e723407438eadb8e7f0ffd28c6eb27","ssdeep":"","tlshash":"39c08cc4b0c66e001606651010af24e49024402670481b028c94d8482e220b09237e98","size":138,"data":"","first_seen":"2023-05-09T06:03:35Z","last_seen":"2026-04-21T11:18:55.311509Z","times_seen":733,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-04-21T19:54:07.063444Z","times_seen":31635,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"088a6aa95783926cdda35b9bd61df402","sha1":"6bcc7a91394c2ec7d95c5a259f70e51ffa50dc29","sha256":"5efd1243926a95339e0c10066db940873b88a24070c8c70285adfdad50e7cfa6","sha512":"ec608e74458bb6cb3e0aaa13c9b2b17d814407459c022a625fe862a385518d367444c170f2fa700db1196c2f7c94ca5b7197e27023ad87c03daa1008dc96b767","ssdeep":"","tlshash":"aec08cc4a0c22d005656641018af34e890244027b04c1b128de8d8482e620b09333ea8","size":142,"data":"","first_seen":"2024-07-07T15:46:54Z","last_seen":"2026-04-21T18:12:28.916185Z","times_seen":311,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7de71cd324bb8833f4a138cbcdafa759","sha1":"d7a8122c1483170fa571ec47c62f91c66d662ede","sha256":"62b9d7d992de0ba11591d4ed7c7ab166d886c09ddb4a6b79693795ce836c6003","sha512":"5d42f665549881c48abeb0ee42138dcd1b0f6140e49c3fc6efdfe3657cba54e63218787f0b0d2f12622873799b4ec3a21b9f4f62194f2cc9bda2758dd699a439","ssdeep":"","tlshash":"73c08cdab0d72d006602642110af78e8a0388027b08c9b439cd4d8883ea30b08233fa8","size":151,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-21T18:06:11.969175Z","times_seen":290,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"afd6dadb9533533d8514ac548303e331","sha1":"0b297795e161099658da59b3912482e86732e56d","sha256":"e378d3c8bb137aed4116bdd0c560231896d500f4edbb80088c14fd8fb220c3a9","sha512":"0df2fd8eb6e505ad35fff7e135feb15d50d1ae87d9990d9fa472fb834b7baf48ca73b3e8850042c74584e60de2daa8b9a4a981e5bef460ab48ad5f8ddb5d03e6","ssdeep":"","tlshash":"6cc08cc4a0c22d101602661014bf29e59024802671881b42cc94e8882e220f08233e98","size":140,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-04-21T18:21:15.611267Z","times_seen":613,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0f40806f855fc503ec7fe0e2cdc6da5f","sha1":"ad59d99993690064ee6565eea713ee4c5260f572","sha256":"954bc1931a5584c910a5391a0e2c05ba7190f3c672433a85c162ac948a74a44f","sha512":"7ea9c1cffaf640bc7083f2306a134368aa54ae775230a1f1990c43817594d950ecbf94412ea7ab6262bb8add4715ab6fffe7579f85b0a1c07f6acc4f8207cd9e","ssdeep":"","tlshash":"1fc08cc4a0c2ad001a12649010af24e49034402770481b029c94e8492e220b08237e98","size":137,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-04-21T19:33:18.385941Z","times_seen":4732,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ef19776db50e7e3e1fe0dac4a6d0b299","sha1":"65f5128e776e9f2961eeb33fb0632ed37084a01d","sha256":"017b5f2726c219072c07c4f2f333f3ba2b2095d44c4a14bbedd98a88399f58d4","sha512":"8c54ac9a5e01e8d70b4ab06a400a6de9472126d2ad485f01e86e8dfbb3e4552794779a9e82c13ddfdd6c4c8ae13d7180ad25ddcb54a2be4c64e410fdcae99ecc","ssdeep":"","tlshash":"cec08cc4a0c26d24260a691010afb8e89024402a70489b038c98e8592e324b09233fac","size":146,"data":"","first_seen":"2026-03-17T06:00:28.342641Z","last_seen":"2026-04-15T13:52:11.193155Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d98acc1019303c876db914a972334937","sha1":"73807338e5295d0e4a62fbf19a5258d5cc93e72c","sha256":"864aa8328e7915cfbea7a8773cd622fbf24494c9b6019a076bef6e3f795e7d9d","sha512":"77d7c9975e811e66a77b15f141c84b12ae3aa0f991d15d2864c3c3ce082e0da5f4154d93424ae8580ebd93a1c7231752fbf22ef82ce7a01d997287d2d854d1af","ssdeep":"","tlshash":"e6c08cc8a0c32d001a13642210ff34e4d03440a6b44d1f028dd4e8493e624b09333edc","size":150,"data":"","first_seen":"2024-01-05T03:21:28Z","last_seen":"2026-04-21T18:12:28.923162Z","times_seen":325,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7746993e8adb9277ba5afa2584910974","sha1":"8e7e6d562fd56f594b40b6657156d483d7426e40","sha256":"833dc15f120cad89d5c0680edae217dbad02010e42af351959607df4170074ee","sha512":"10ee66e22fa45386057f1385e179955ad4fd4d53363c0aebe68aa9ba0547bf409a286e53ab6e678e5d0c3485d6cabcdd359f359c5258160b50a0a5a5496d6e6d","ssdeep":"","tlshash":"39c08cc5a0c22e101646641010bf28e49024402674481b028c98d8482e220b08233e9c","size":140,"data":"","first_seen":"2023-04-13T07:32:13Z","last_seen":"2026-04-21T18:21:15.609588Z","times_seen":3115,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2630ab1d7e6e243d057ffd66a0e6c4d7","sha1":"357ab1f4570620b6b6683e307d15d1885d0ca974","sha256":"363db2c50e9c80d58110c4f5c661a049557143d33f3f5cc87daf7124d5e85978","sha512":"d9707aaf91894aaa8682bd9645bbff4135c7ec59da95475d017eaa99c9ae75d667fb4ef9aac206d938ceadaabdbb9bd00165440b5348ba88d1efc62f70c22d90","ssdeep":"","tlshash":"0ec08cc4b0c22d002646641024af25e4a024442bb0489b568ce4d8482e220b08233ea8","size":140,"data":"","first_seen":"2023-04-14T14:41:51Z","last_seen":"2026-04-19T12:41:53.440148Z","times_seen":199,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"36f26a090abdcc337bfc430f7eba2abf","sha1":"bde4b3d8e5ebea671a9a85174cfb4058a4bf0adb","sha256":"217e71e9b0dbcd6bf49e06ed0c8570fc448a800192167db81cba4cbaefddce78","sha512":"a191f331612f086b236bcab8dc8340639cec8859afceb86edcaa7913e42165ff3d184a5a5f4bac7ea93f59aeea3c76e505c456f9f5da206347076658fc271a87","ssdeep":"","tlshash":"12c08cc8a0c72e101a12655015bf24e4a024402a70489b038c94d8482e230b09233ea8","size":141,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-04-21T18:12:28.90496Z","times_seen":1439,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"35c76823c0cb00ef3ca64fa3c17af032","sha1":"33fa470c4fb0dfd73fbcde864a48abea71168ece","sha256":"a424e4c93cd3aac8b1a2dfda52053e32d8dc9f5c7291243de6e05a1449f1371f","sha512":"a292f72b7345e0fa1ae8a89da38036d21896985eb11593f4e142b8adeb684672da43d6c83ec114ddce13bba32099ba73df613c351334793be43c048bdac26708","ssdeep":"","tlshash":"1ec08cc4a1c22e001602651410bf24e59034842670481b52cc94d8482e220b08233e98","size":140,"data":"","first_seen":"2025-10-11T06:44:23.771949Z","last_seen":"2026-04-15T13:52:11.1963Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f19a249a3e546a75d19b9d3f75497cdd","sha1":"4fcf8a4234dc76c37cb9415dd3c2d4820fb45a30","sha256":"8f0b9cbdf1999a03131eed312b7dc7ab85a5ddbf696e4805d240a61cdf5066b2","sha512":"7f999eee3d080218db37b9bd7ae6ca464771276ae0eb378b537d24635f5d700aede00359099b8e2197cc4f36e56162a46110fbdb85f213ed5ada51d9875a7402","ssdeep":"","tlshash":"c5c08cc9a2c22d001646641014bf28f4902480277048ab038dd4dc892e620f0823be9c","size":146,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-21T18:06:11.971658Z","times_seen":337,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c1155eee87487f5efe9634a03695b16c","sha1":"2532dae40bd8f2c93a9eb7cbb00bf21e050124b1","sha256":"41c9b4311d7a14bda7da372afb964f0bf08f0823e01617a967aa9eb2554d298b","sha512":"ae1174eea2e3597d1ecd46bea51c7948e05095c00c03cb3670e5b62dd0c14abd26e7c3643fda485610290a4426fa92d0c9d7920303a7bdbc659f735313f2ea48","ssdeep":"","tlshash":"28c08cc4b1d22e106606641010af36e490298426b08c1b028ca8e8892e260b08237fec","size":148,"data":"","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-21T18:12:28.908117Z","times_seen":244,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6900701ff959494d30437499abeb8885","sha1":"7cb4c820fbf30caa6b50d6c2dc4aa7c0c4b644d8","sha256":"3be52a71ee1e4d668cceef779a9942298cef4d68e03183d10681c4aa945c83f5","sha512":"731bc35b44d92adfda91474163cba7cbfe8ebb8faeb76364becb6a0f87c8d62c68a560257759546c0c38da3d0ea220cbee60eed126f77194441f92786231135b","ssdeep":"","tlshash":"b5c08cc4a0c22d101642645420af26e4a028802a70485b128c94d8482e620b48233ea8","size":138,"data":"","first_seen":"2023-04-13T00:16:19Z","last_seen":"2026-04-21T20:00:55.873905Z","times_seen":5622,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5948bc3b90afab1829ab7ee61269f24e","sha1":"517e29a82521418181f702543be8ae74a3bf68b3","sha256":"14fc83a84c91770211dc352186f8e87ddc85e87c2dba0c80a159b45897b9ae2d","sha512":"05c079bbf0389ad341941c3e837aca91dc9aff681cee8da0b4560551ba13e6bbb76b01213af6514e6991e3369062870866a41e67e6d67a37038ddba3ddee7d5f","ssdeep":"","tlshash":"a5c08cc4a0c26d002606691010af24e49028802670485b028c94e8592e264b08233ea8","size":139,"data":"","first_seen":"2023-07-01T13:40:07Z","last_seen":"2026-04-21T18:12:28.906744Z","times_seen":739,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-04-21T19:54:07.064292Z","times_seen":35052,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/filters-a018624e.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"bbc2deafd4a6003b86c08a4b8b045371","sha1":"055594e165b87ec6b64668b51f51d8e337f20904","sha256":"ec1b6a4bffd3ada09e834868beb281c83b37a094c6cf44c740666c8ceafda393","sha512":"152ee368df0be168551dd86f56184de84838d11ebcdad638b5841fb662ae365af6580cca9d34a21a647a7eafcf357aaa4addd684f6a763a8e31c9d2d53913d66","ssdeep":"","tlshash":"4c5115edf5c7a13397ea5eed40188550b28eae147c7e094ae24bd1855923488e0bf364","size":3102,"data":"","first_seen":"2026-04-15T13:51:57.673962Z","last_seen":"2026-04-15T13:52:11.128611Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/HightChart-308367d9.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"9914e177baa98c2ac6add48b1b0a5c6b","sha1":"9de3a6cf3ca01a50133191e972460a251760a3b9","sha256":"5731195b7f65986eda3deee5570e13549697f0e0ba4a334c429474342ba9d066","sha512":"ef695523a1f5b24efe77224788d108fab396710acea0a3c2a63f6e57f35f2579b5bfa685851db605d1c9e4272f9aa97cf8f57022ad58ce74b794b95d07ff8eb6","ssdeep":"3072:RYPIAGhEdBjN8gu+HxpMlZ/lwFgrpyn2Nl8jLPQwl6Uz4:tAZdP8y8lXrpyC+Qwl6n","tlshash":"1a5438eae315312397af13d5a46b07069333659d1946841cbabcc8f7181988d32bff76","size":282313,"data":"","first_seen":"2026-04-15T13:51:57.686453Z","last_seen":"2026-04-15T13:52:11.144401Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-d7ff827d.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"importedModule","is_inline":false,"md5":"e96b1920e1be518db0c350e34010f05b","sha1":"4409e2be18230f9b5784ee32b9e9de6ec561bb2b","sha256":"75cfdc0ea5ab93eccd47248fb7ff6368d3d60d85bc022e4d08094d5cbbd38477","sha512":"5c600bacf93f9f0eab8986a59797babfcdbfe8f91aa5b6b6523f667c397e877b14075ac6e8da568b6ca93a723dcb2fa234053bdd3e5f73afd3bb626708236018","ssdeep":"","tlshash":"9a01d0f9fd1dcfbb1ea2064141d02641140a0fedfa2819e588877d671be4850da9e72d","size":776,"data":"","first_seen":"2026-04-15T13:51:57.619005Z","last_seen":"2026-04-15T13:52:11.130476Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9d379fc52463f2b630c6894900da5180","sha1":"b33fecceae6c1ef97518c6ad7159534d78e7b2f7","sha256":"6c3288c6af4396096b1a8a927fbfaf05ac8cc29658fc97d13cf036ba6bb38ab3","sha512":"49b43b0c253e26c135bd5009d73c537cf2e78342ef6b116ce6efbd3627152ac804449ec5cbe637a544b5557b52a50213a19dfcf33158a4f6b0a8ff91d79372d5","ssdeep":"","tlshash":"61c012c5a0da29102951595424bf28e8a024c026b55c6b169de4dda829e64fcc627d98","size":190,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-21T18:21:15.600051Z","times_seen":440,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e29cc4b739166fb0de3dd3960891cf94","sha1":"32bf92595a210346b3fa579ce87df4987f109d95","sha256":"d3b8857aaf83eedf7762ae5079cebc09d4924e13766d06fd68dbb746634f95e3","sha512":"854eba232753dfc9183d3029c72a8ec545156e6a966cbf69fbad7acd252632ee09b17f9666f3edfb4541f58d3d3bbfc9841f999c37cac48586997700b245e0af","ssdeep":"","tlshash":"7bc08cc4a0c26d102602651021bf38e490248027b0481b038c94d8482e630b08237ea8","size":140,"data":"","first_seen":"2023-06-05T11:50:58Z","last_seen":"2026-04-21T18:12:28.902724Z","times_seen":3074,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ad53bdca95253da3ed0339a52f219d8e","sha1":"1acba9622b6c70c03ce56310becd1d72226538e4","sha256":"3fecdc9cf7339d52588891d5d7b0c4b4ebfd82fe813b141fd5b81fdc70694f81","sha512":"d2bf6f0a88bbc044c6aab45f1f8795b3aafcf709a0a2b294f27062c0c34e1f34ec3964286f776c55a40a412cdf01c2ace59fdf7981fd69c6d8a63a6791ff8d3e","ssdeep":"","tlshash":"61c08cc4a0c22d001a02645014bf24e4a024802770481b02dcd8d8483e220b08233e98","size":137,"data":"","first_seen":"2023-05-08T20:49:31Z","last_seen":"2026-04-21T19:33:18.357816Z","times_seen":699,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d8a0b36a3bb5359d82373fd74ab0a55b","sha1":"109fcd2e9501021577ad657d5701aa40e771b723","sha256":"26b23c11a596c1301030aaa5e72296226d0b2c601ff7b24694d413a401ac9826","sha512":"ebb5fb5d0b9ad70253bc33b31f5fab9fa0efb74a89eefd5b900d6b956970a52ef306b8e62a73b47775339624aef7daf7f4779743b84394f80591c0ea8182f9fe","ssdeep":"","tlshash":"d8c08cc4a0d22d001a02641060af34e49028442670481b028ca4d8482e620b48233e98","size":138,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-04-21T18:21:15.605505Z","times_seen":1003,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/en-24700983.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"707f4ace1dad1753d065831c9c648798","sha1":"64bbe72d9c4188f7745f629ec25d135de0680064","sha256":"558c54ec7a432394e49385a408a6df45385df8bc9d4dc8bd02be06772032961f","sha512":"cc1dba7c8d5d28352e5f9ba416cc541f98f8ad6419cc601a3f853b6eeeae6cca1acfb3d91cf8eb8918c5a65d73337f05953667a5ad823812302f83ec8a7f5093","ssdeep":"768:+GtZcEw/o7rKOdAFsifnAMC2rAaAMDVoP6+6sPG9w1mwO6fpk7aOLxX:iponKOdebE2rdDVLsPWwqLxX","tlshash":"c203d6897e1a989a04f3537674ce6e1120f60ac18255881f4fedc9fd53d2b67a363b34","size":40451,"data":"","first_seen":"2026-04-15T13:51:57.687494Z","last_seen":"2026-04-15T13:52:11.172929Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/#/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c464eee61a30b35747e8e9848e60be3e","sha1":"3b58c9c7de2dd7f0322fd7bb9947ad3a01ac8cce","sha256":"955a99d585122831f4cabbe60b7755379393349c40795ff761e7ce78b3e491d7","sha512":"d548dacba908d5bd228c19df9e45083444741e1151dc914e356f01fd7fcb666a7077df8a57af5bc72e249160aa32ce3e40c77f22dc01fb2af95a6c3d19be3e4f","ssdeep":"","tlshash":"d3e0abeb3139c16456f09f2b6cec4c1bf69b27334d8c050bf8b4a9051ebad64227c894","size":420,"data":"","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-04-21T18:24:07.183566Z","times_seen":321,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"krakenweb3vip.com/platform/dev/favicon.ico?2.0.1775901316919","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /platform/dev/favicon.ico?2.0.1775901316919 HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nlast-modified: Wed, 30 Apr 2025 16:31:38 GMT\r\netag: \"6812506a-10be\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"f7f4ec8ac279c06e7dc4ab348094c182","sha1":"93b94cf667396202b6bcdf7bb9fdae89f0926fd2","sha256":"c46ce94addb3777d74d4e0fba932a55b1b75f570a39314c317bf27cae3281998","sha512":"77c4a553b8c5778a45df36277e52ee10ea37f1bd1699f21ecdec65b42d7e9f5536194d1012a6c61a4c119e14ea70d15d6cd867c1ef5fc523edbcca926b9b09ee","ssdeep":"48:6OcsaXWgTOPsJQ58m8zyf3Md53ZUt9z81xYZJ8o9dYPli6/oqBBG9hmYnko5/:ETJaCkf363ZUth81xYZJq7G9hm0ko","tlshash":"b491f1c2991a1663c598373410270d68003bddf8bd96fb69183575dacef7f820e43356","first_seen":"2026-04-15T13:51:57.669491Z","last_seen":"2026-04-15T13:52:11.121754Z","times_seen":2,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.08675d1df540c42c9a0c679bde00861b9.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.08675d1df540c42c9a0c679bde00861b9.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1358\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F14C8B3733396EF9B2\r\nAccept-Ranges: bytes\r\nETag: \"680CE906562E51516508B11C121AE02F\"\r\nLast-Modified: Tue, 10 Mar 2026 06:25:17 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 612245239440818676\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: aAzpBlYuUVFlCLEcEhrgLw==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1358,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"680ce906562e51516508b11c121ae02f","sha1":"e4abd14e052a8346129f2257920c16d757f69695","sha256":"e68ba266e2579b61bafa86257489b01878d39764b153f486328c3de255fa3d83","sha512":"d8f69049382ac776f4fcf69fa1b95ed9ab04b87d7fca551fa62b338dacfc800b506086a6dd0fcf975bbd217ed880bbbff6ef9096c7fe1fca60f5e1df088c9e8d","ssdeep":"","tlshash":"9321b684cf2a4b265cbf5539505840f9bfa679e0500bcf098b9ad05ebe81e3c3a86950","first_seen":"2026-04-15T13:51:57.621395Z","last_seen":"2026-04-15T13:52:11.124242Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1406,"timings":{"blocked":1122,"dns":0,"connect":0,"send":0,"wait":284,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/resource/fonts/DINOT-Medium.otf","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.224Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /resource/fonts/DINOT-Medium.otf HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-8e97bb2c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 73096\r\nlast-modified: Wed, 01 Nov 2023 13:05:30 GMT\r\netag: \"65424d1a-11d88\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":73096,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"ab876400560626fbe045633dc44f0748","sha1":"85bbfb1729e86f40ddc9af7197b5f54ed6136226","sha256":"5888b24f6b65ff7c989b4a258dbeb5d997320d61417371210da0258be21d854d","sha512":"82e96ade51b0570c1f691ba45d1a3c0802015dad7598954675c4abe2fa8a9fc705adbe6eb5e677aa5cc03b6704e594cfe99279c678855ebbbcbade6d5028dbd6","ssdeep":"1536:TlK/cP2D2oV7otQjBG1+acfZZHHDEdom1hvd5JItkB7k3Z:TKQQtG1yZSdomrvpIqcZ","tlshash":"0b636f031d4fb9548de4513a52de4ea34bb39ecc1ca493c30ae12d938fece6657152ae","first_seen":"2023-08-16T00:37:20Z","last_seen":"2026-04-21T18:24:07.150455Z","times_seen":692,"resource_available":false,"data":null}},"time_used":519,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":258,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/resource/fonts/Arial.ttf","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /resource/fonts/Arial.ttf HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-8e97bb2c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 1047012\r\nlast-modified: Wed, 01 Nov 2023 13:05:30 GMT\r\netag: \"65424d1a-ff9e4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1047012,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 25 tables, 1st \"DSIG\", 58 names, Unicode, � 2017 The Monotype Corporation. All Rights Reserved. ","md5":"ffe66dbfc4b07f36ef38dd621ad2c7cc","sha1":"e032b102cfc37c3226d17e1b462edea5fbf8fe1c","sha256":"c1216a01b3cc4e94df72577a6f618154058a1d8999ed58fa31ab7e54c7e4be4b","sha512":"3c7952b71c8117938c5284efca0e0b3e8c20d7b84c74a4890f76a72af3b26295786b0f7c33d9b6c980527b4c4c8dad628d1f5e7e5f202d11076367f082349bb3","ssdeep":"24576:NoQIQRjo/Y7wjgTmKJ4WxA7EAD4OBfDamXKE6AMra:NHIQJo/Y7wjgTm0PxAwJHE6hG","tlshash":"f125be0bf3929f0fe3902b38c9a5d761939b76189b2743b73d8c5858ecc85a45e487d2","first_seen":"2023-07-29T15:16:45Z","last_seen":"2026-04-21T18:24:07.137303Z","times_seen":988,"resource_available":false,"data":null}},"time_used":741,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":258,"receive":483,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/filters-a018624e.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/filters-a018624e.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-c1e\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"bbc2deafd4a6003b86c08a4b8b045371","sha1":"055594e165b87ec6b64668b51f51d8e337f20904","sha256":"ec1b6a4bffd3ada09e834868beb281c83b37a094c6cf44c740666c8ceafda393","sha512":"152ee368df0be168551dd86f56184de84838d11ebcdad638b5841fb662ae365af6580cca9d34a21a647a7eafcf357aaa4addd684f6a763a8e31c9d2d53913d66","ssdeep":"","tlshash":"4c5115edf5c7a13397ea5eed40188550b28eae147c7e094ae24bd1855923488e0bf364","first_seen":"2026-04-15T13:51:57.673962Z","last_seen":"2026-04-15T13:52:11.128611Z","times_seen":2,"resource_available":true,"data":null}},"time_used":345,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":345,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-d7ff827d.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.326Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-d7ff827d.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\netag: \"69da1a85-308\"\r\nexpires: Thu, 16 Apr 2026 01:51:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"e96b1920e1be518db0c350e34010f05b","sha1":"4409e2be18230f9b5784ee32b9e9de6ec561bb2b","sha256":"75cfdc0ea5ab93eccd47248fb7ff6368d3d60d85bc022e4d08094d5cbbd38477","sha512":"5c600bacf93f9f0eab8986a59797babfcdbfe8f91aa5b6b6523f667c397e877b14075ac6e8da568b6ca93a723dcb2fa234053bdd3e5f73afd3bb626708236018","ssdeep":"","tlshash":"9a01d0f9fd1dcfbb1ea2064141d02641140a0fedfa2819e588877d671be4850da9e72d","first_seen":"2026-04-15T13:51:57.619005Z","last_seen":"2026-04-15T13:52:11.130476Z","times_seen":2,"resource_available":true,"data":null}},"time_used":282,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.04748a53a528d4f84b07ddda80d48e483.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.168Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.04748a53a528d4f84b07ddda80d48e483.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2485\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F168F57937309BA72E\r\nAccept-Ranges: bytes\r\nETag: \"01C88A82DE04ECF30A65411FD2F43B57\"\r\nLast-Modified: Tue, 10 Mar 2026 06:24:53 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13008628777705374261\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: AciKgt4E7PMKZUEf0vQ7Vw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2485,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"01c88a82de04ecf30a65411fd2f43b57","sha1":"f6015a2147bdcae5bc30962447825b74ce29a482","sha256":"5ab04cc3f8a63972544a807ac99df8111b3f167ec06ac65b28ad41d09ac1533c","sha512":"5edb8f1d3929aaa4792aee276ca34d36784f0d8f7cd1b6c416d9bcbf79495b65ad2a40f6d1e097d91215ba5c24b3c9ce44bf2b9c31b810bae28172f82f2ad142","ssdeep":"","tlshash":"c7513dd00f08c4d4e5564cb74214c9d4e1bee26d65e9ca958038e1ef3f0ba314567dbe","first_seen":"2026-04-15T13:51:57.637366Z","last_seen":"2026-04-15T13:52:11.132162Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1531,"timings":{"blocked":734,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":531},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-15T13:51:40.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:40 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 13 Apr 2026 18:44:33 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69dd3991-14af\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5295,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1094), with CRLF, LF line terminators","md5":"092e5dcf7e50f61abd809a221fe5306a","sha1":"1926306d8d5f07bce2572a7802b7db1c4975c61c","sha256":"478bd3fc30296af0689881ae2eb25fa6fd3b3cfacc9cf4411d0dfb70c75250e0","sha512":"88c0bd4caff2f9828353d0fce2347faeba44bad564fa252dbc02170e55aa8e58b64eb26b6232da9703b4d8bbc12e40a6f9ebb37dcf544c6502042b3cddbcbae5","ssdeep":"96:+r82+If53uSPE0fPQPut/PWPbr6TCZydHRH/gV2mUsGKAiowGwuB1niH4iHFH/2:+Fv9PE8IuhmFZCxfg2nfD3bwuB1niYic","tlshash":"cbb161b79db0881a23b5062beed7b018df611193851e4850b0cc80ee8ff2fd584dbb66","first_seen":"2026-04-15T13:51:57.62787Z","last_seen":"2026-04-15T13:52:11.13405Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1313,"timings":{"blocked":527,"dns":1,"connect":258,"send":0,"wait":258,"receive":0,"ssl":266},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getMt5Amount?coin=xpd","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xpd HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.00269a945326a49d58ecd1bddfc2a85e1.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.00269a945326a49d58ecd1bddfc2a85e1.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2700\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F14C8B3733392CF9B2\r\nAccept-Ranges: bytes\r\nETag: \"B822919E7A33328258E4ED0A79BA5A04\"\r\nLast-Modified: Tue, 10 Mar 2026 06:24:56 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 16667712155079004702\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: uCKRnnozMoJY5O0KebpaBA==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2700,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"b822919e7a33328258e4ed0a79ba5a04","sha1":"20c816d8ecbb56b007da2a6c2da1a81f0bbe057b","sha256":"567b1d85a5d20166eb96390d0c17fe03a32b4ebf56786bbaf9c7ea923a699d28","sha512":"583237fd24758d952d838b8a87d6bc39812111a783b54261af7c6ed5b2d1773edba3a860cfa7414448ad03528b607eae919f818c3d2ec97bdddfeec7b4c8437b","ssdeep":"","tlshash":"01514bb2b2de1ceb98d9c11ba76314a6f84ab8c38f82592979f822125250384c790100","first_seen":"2026-04-15T13:51:57.613573Z","last_seen":"2026-04-15T13:52:11.136388Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1139,"timings":{"blocked":-1,"dns":1,"connect":282,"send":0,"wait":286,"receive":0,"ssl":570},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/icon-nav-36f6e488.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/icon-nav-36f6e488.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-8e97bb2c.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 641\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-281\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":641,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"406e32c2ca4d1d2bf806b5ae57609693","sha1":"80caadda9f73503539c97f89fb5332bd60dc03b8","sha256":"36f6e488bb62c3ba13baf7571ca24d43265354df0fd36dc6a4d2a11968ef37ac","sha512":"4e9f71babe4ae57bb4a2f24501c34469526ca5f09a2f0a98e87c69a875afa6aa1bc4bbc19e3a025834d446dcf4dda6d417cbdb444c2c16e2011b632b385ebfa0","ssdeep":"","tlshash":"5af099ba8994068d41538fc98fead444362de18e67d034d9bb062a723930056e07d118","first_seen":"2026-04-15T13:51:57.623561Z","last_seen":"2026-04-15T13:52:11.13767Z","times_seen":2,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-c07faf26.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-c07faf26.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a85-4027\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16423,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (16422)","md5":"9f6049c593502547f7c31293e5b6497b","sha1":"ea2d3318109236b9b207f44ddcf0c78caf333207","sha256":"6319b9af589ed98ad123c70c6604fd10006aadb94f9d1f4362296cdc5fd99fe3","sha512":"0f6220bc8013a6b3a5b3db02dddd4d95cc10d7309597592b769163359000f02c6cc1201d92b921ba25acb8a39b21f750028a59b5420785d787d06e6261ec09a4","ssdeep":"384:PAjOaIF+NfY5NCBn0WTsdVjX8tGhmWn+QHOiWcXuIIkTkbPPwzzC6Berg4Uxg:PAjKFkfY5NrdVzPhDTHOiuIItPPwzzCh","tlshash":"d072f949fe0ec73cdaba601044ac242032483fd5a00d9cf2f5fe69932793e79a755b69","first_seen":"2026-04-15T13:51:57.678331Z","last_seen":"2026-04-15T13:52:11.138928Z","times_seen":2,"resource_available":true,"data":null}},"time_used":345,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":345,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.050b6d08911fd41dd8e4f39753985252a.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.050b6d08911fd41dd8e4f39753985252a.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2634\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F168F5793730E6A72E\r\nAccept-Ranges: bytes\r\nETag: \"964F93A468A15C5B9AACBAC50006B176\"\r\nLast-Modified: Tue, 10 Mar 2026 06:03:55 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13432338384714887415\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: lk+TpGihXFuarLrFAAaxdg==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2634,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced","md5":"964f93a468a15c5b9aacbac50006b176","sha1":"a134cb485cde25bae76b565c2e8d68f98ed05c6e","sha256":"c84c2680f9326691ad666ba398d8a66b5daa91a9312d354a8315df0549427fb2","sha512":"87d64824038f9dc8703bdf30929c48f378caa338475bc9254e2f8874102d1913195d2c0de8eeee4406d450ffb90f7556424f247b8564d5c89d717946a0403f57","ssdeep":"","tlshash":"0e514c39a205ebd897098a33acf74310a2790390dad68edd5846dbfe880299cdf01dd5","first_seen":"2026-04-15T13:51:57.679414Z","last_seen":"2026-04-15T13:52:11.140248Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1343,"timings":{"blocked":1075,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.02928310368b74bd3bdfd4abc5eebcd4d.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.164Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.02928310368b74bd3bdfd4abc5eebcd4d.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1612\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F1AFAD5B343227C602\r\nAccept-Ranges: bytes\r\nETag: \"068B4A52878A9DC5BF7E36663669B480\"\r\nLast-Modified: Tue, 10 Mar 2026 06:08:32 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 11156058712296908411\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: BotKUoeKncW/fjZmNmm0gA==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1612,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"068b4a52878a9dc5bf7e36663669b480","sha1":"bc8eb3c441bfd1932440b927493f2560e608b9cc","sha256":"0ed5b973a4a649538fa28153ec0d5fd25b7e5d146e3305e160fdad07ac9488c6","sha512":"de797dcb4caf06fec579d8bcf1acdefae81782e8f5da1d123e1f9d91eedae7f064f388bd38e55c69177520488d16883165df197969d4d7ddaba43a355b0e1db0","ssdeep":"","tlshash":"2131eae15f09ced5a5b05067b362a1d2c3b965fa280caf5855301dc904ea3ec4c53d12","first_seen":"2026-04-15T13:51:57.658241Z","last_seen":"2026-04-15T13:52:11.141987Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1376,"timings":{"blocked":1106,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getAllSetting","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":1314,"timings":{"blocked":524,"dns":0,"connect":261,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/HightChart-cf7e656a.css","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.645Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/HightChart-cf7e656a.css HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: text/css\r\ncontent-length: 102\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-66\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":102,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"1e9189bf83f2d43884bd50888d9044d5","sha1":"f4ec992eab40d5b90f949eb8d3d5e7cfbc01b122","sha256":"cf7e656a8126ba38c158b6cf62566d50f20844a98dd2fcc02bd2df49bd47c6e7","sha512":"fc80a9b4b10dfdb7caf9e354f39649ea1c71db6f54b84b4dd2bc957b3e1cbc19db57f603be86bf7f66b3507c0a008e84064bbad65867e662a6b6400d2b217d55","ssdeep":"","tlshash":"a1b09230c66ab03de132961a60928d88622be1076a220b54ae167972025814a2821081","first_seen":"2026-04-15T13:51:57.689584Z","last_seen":"2026-04-15T13:52:11.143264Z","times_seen":2,"resource_available":false,"data":null}},"time_used":354,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":353,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/HightChart-308367d9.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/HightChart-308367d9.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a85-44ec9\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":282313,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65518), with no line terminators","md5":"9914e177baa98c2ac6add48b1b0a5c6b","sha1":"9de3a6cf3ca01a50133191e972460a251760a3b9","sha256":"5731195b7f65986eda3deee5570e13549697f0e0ba4a334c429474342ba9d066","sha512":"ef695523a1f5b24efe77224788d108fab396710acea0a3c2a63f6e57f35f2579b5bfa685851db605d1c9e4272f9aa97cf8f57022ad58ce74b794b95d07ff8eb6","ssdeep":"3072:RYPIAGhEdBjN8gu+HxpMlZ/lwFgrpyn2Nl8jLPQwl6Uz4:tAZdP8y8lXrpyC+Qwl6n","tlshash":"1a5438eae315312397af13d5a46b07069333659d1946841cbabcc8f7181988d32bff76","first_seen":"2026-04-15T13:51:57.686453Z","last_seen":"2026-04-15T13:52:11.144401Z","times_seen":2,"resource_available":true,"data":null}},"time_used":346,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":346,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/icon-customer-089d68fe.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/icon-customer-089d68fe.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-532\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1330,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b080fd664d2cf4f04ce519159cffa150","sha1":"d82cc102eed84358be2493d6fdb16437b78b59f3","sha256":"089d68fe3b07e3244b465f05a93c22d1c290b6a7c826d50d6bb8193e2f6b9b0f","sha512":"6701ebe6d56b1431f1b13d796dec2bd181f8981d46b3a78b5106cd649f801accb38e352d07e45ec4fbc9fdfef8335cd0ac580ea5b8a455f591591feeb7d59036","ssdeep":"","tlshash":"a621adf017649fca1411439c9bd6d94c9936e19535e903c9b79722c74c115af326fc31","first_seen":"2026-04-15T13:51:57.620075Z","last_seen":"2026-04-15T13:52:11.145574Z","times_seen":2,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"huobicfg.s3.amazonaws.com/currency_icon/trx.png","fqdn":"huobicfg.s3.amazonaws.com","domain":"huobicfg.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-northeast-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 14 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"46:67:AE:AC:E3:C2:0D:C4:55:CA:3F:CB:B1:64:48:00:87:D7:E6:91","sha256":"18:7F:98:1B:96:0A:EE:5D:A8:54:AC:EE:61:CD:E2:1A:42:79:57:6C:BB:97:D4:54:5F:AD:91:87:86:84:69:D8"}}},"request":{"raw":"GET /currency_icon/trx.png HTTP/1.1\r\nHost: huobicfg.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: WTsAfgNcPJmAUeUwfWR5GZV8cFJwqSkfJ1HtjPfSyeMLgepQ9hD5swyeHEGilMnHuD6jaO5M3ZIMDO4eIJ58mexyvcm986+m\r\nx-amz-request-id: 4VN2J4D2KMMWYGRC\r\nDate: Wed, 15 Apr 2026 13:51:46 GMT\r\nLast-Modified: Tue, 27 Jul 2021 10:16:15 GMT\r\nETag: \"6868416c3e73ea6862b7595bc18525e3\"\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 610\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":610,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6868416c3e73ea6862b7595bc18525e3","sha1":"4c77ac014aecec29e584cb03972aaddd98c8738d","sha256":"e9c728057aad1b6bb1c591a6a462787ed05ab7371d71e1070abddbe84f6ac4f5","sha512":"7ac560e7c2c27a593f5a5924b79e8eedc5e5155779d61de17d24f9105129fd666a164ade4d25763af42c889378fc9f24653e711009b85c8936fabcffb75bf253","ssdeep":"","tlshash":"a0f0783e72e837747409d732737f88f239271f96f27a510822a51a04752261e144e9ce","first_seen":"2023-05-25T08:09:47Z","last_seen":"2026-04-18T15:16:20.962399Z","times_seen":555,"resource_available":false,"data":null}},"time_used":1175,"timings":{"blocked":875,"dns":0,"connect":0,"send":0,"wait":298,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.02b8af3cf4cee4ed8adca66a5bbb8732d.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.02b8af3cf4cee4ed8adca66a5bbb8732d.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1273\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F1AFAD5B3432D2C502\r\nAccept-Ranges: bytes\r\nETag: \"43F3D03E19BC0CBBDFCB108B6B5CFA69\"\r\nLast-Modified: Tue, 10 Mar 2026 06:25:14 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12523146653462763565\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: Q/PQPhm8DLvfyxCLa1z6aQ==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1273,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"43f3d03e19bc0cbbdfcb108b6b5cfa69","sha1":"819927195deb999562d4e38be5517c99350f8eb5","sha256":"544f40033e4267c23e18d1ecf6d46962e4286f326264a6d35e6d3a419d9af07b","sha512":"c7cdc8bac5b86c93b300e74e0ba2f5917c684502c45c85d24815d735b6329b53d2ea4732630aed97bf0b84e0ad6196d6d3210496b73a10ecf9f2b7dec39a0964","ssdeep":"","tlshash":"612145958d337ab48968dc299081637ff6d8a3843e697c9e4429c8c4e39d2218770c95","first_seen":"2026-04-15T13:51:57.614579Z","last_seen":"2026-04-15T13:52:11.147339Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1525,"timings":{"blocked":719,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":536},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/vendor-58432e3d.css","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:41.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/vendor-58432e3d.css HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-169a3\"\r\nexpires: Thu, 16 Apr 2026 01:51:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":92579,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"a0f08641fd8b71d539b07f177d10963e","sha1":"93ac8614f6e169195953fc0f2a8e25c2f39d3d25","sha256":"58432e3dfc28db69a9966a211d17a6e042d1be5053210c214eb4bde66e51f7d7","sha512":"ddc46e92599f78c7be536787ef9608039954fda063b5d5803a350205236dc565de45bd4c105869638efc55871d92b004b52c9403b1138259e6a1ff0283140786","ssdeep":"1536:ZlIyNBi3MFYaQj73rx3WqyrtpqoSWEDZEnX73:Z/N0rxmNH9yDWr3","tlshash":"8293c5a5e9c4a1fc6f26f6659b4766d8f13cf661cc01daa0f109512d0fc7bf50223a2a","first_seen":"2025-07-17T03:00:53.435601Z","last_seen":"2026-04-15T13:52:11.148344Z","times_seen":5,"resource_available":false,"data":null}},"time_used":521,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":521,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/vendor-51522aa1.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/vendor-51522aa1.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a85-d9d21\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":892193,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8439986076b66fa4d37108aba512ee62","sha1":"6b0359d7b312ebbf46bbcd739159d38f6aadfd35","sha256":"e1f7f0d9b48f1da5a50a20288c5c5cb939b503ac734d3a7b084a44b644bbc12a","sha512":"3883b9f30e43d6f73a667a96a71b20398a9aa250ff555028aec781d3e2842e41fd1b87a704fe4d4fa12f2ed32b3356a680220cc4d8ba709011ff10dfeedca8f5","ssdeep":"12288:VHMVuFtd+0MJvg5dnALVnEDjEm1fWltYa2iWFf4lnOBLySxa:VHMVuFhEI5xA+Em1foF2iWFf8Wg","tlshash":"d4153ac97292f06147ab24e240bb0006f3396e59744e8494f16d98eb7d79d89e2b7f3c","first_seen":"2026-04-15T13:51:57.664993Z","last_seen":"2026-04-15T13:52:11.14934Z","times_seen":2,"resource_available":true,"data":null}},"time_used":406,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":406,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-d7ff827d.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-d7ff827d.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 776\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\netag: \"69da1a85-308\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":776,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (775)","md5":"e96b1920e1be518db0c350e34010f05b","sha1":"4409e2be18230f9b5784ee32b9e9de6ec561bb2b","sha256":"75cfdc0ea5ab93eccd47248fb7ff6368d3d60d85bc022e4d08094d5cbbd38477","sha512":"5c600bacf93f9f0eab8986a59797babfcdbfe8f91aa5b6b6523f667c397e877b14075ac6e8da568b6ca93a723dcb2fa234053bdd3e5f73afd3bb626708236018","ssdeep":"","tlshash":"9a01d0f9fd1dcfbb1ea2064141d02641140a0fedfa2819e588877d671be4850da9e72d","first_seen":"2026-04-15T13:51:57.619005Z","last_seen":"2026-04-15T13:52:11.130476Z","times_seen":2,"resource_available":true,"data":null}},"time_used":344,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":344,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getMt5Amount?coin=xpd","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xpd HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5058e729e7b7742b317353441e6e5a9c","sha1":"c2a9068869fcad88ebf661e6e3a3584789775d84","sha256":"950a7d96bb38d23a0bd7eb08033c5e41abb50973ad97c894eec7d863b29f1f67","sha512":"06ecf076392e8a85fa448512ac7259ea7b94b9960a001743f01b5903812ec686b4d1c617e38999c28de2c7ef4c39c774f79aae907d14388f283115137b5e611e","ssdeep":"","tlshash":"a79002551c1c8282a9c700a69506120400643164262492484c5aa265808826a2440869","first_seen":"2026-04-15T13:52:11.150435Z","last_seen":"2026-04-15T13:52:11.150435Z","times_seen":1,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets.staticimg.com/kucoin-seo-web-ssr/1.0.59/ssr/_next/static/media/logo.7bfa25116c426ed8d64166beac573519.svg","fqdn":"assets.staticimg.com","domain":"staticimg.com","tld":"com"},"ip":{"addr":"52.84.50.126","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.staticimg.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Thu, 19 Mar 2026 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"25:29:12:79:80:E4:12:99:33:1A:E5:DC:F0:81:B7:65:1B:2B:8A:D2","sha256":"BB:5A:6F:D5:FC:27:42:54:EB:80:62:E0:94:F2:DF:12:99:9C:95:C0:60:B3:CF:45:7E:10:24:EC:1A:A1:01:89"}}},"request":{"raw":"GET /kucoin-seo-web-ssr/1.0.59/ssr/_next/static/media/logo.7bfa25116c426ed8d64166beac573519.svg HTTP/1.1\r\nHost: assets.staticimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/svg+xml\r\ndate: Wed, 15 Apr 2026 06:02:09 GMT\r\nlast-modified: Wed, 11 Feb 2026 11:41:29 GMT\r\netag: W/\"02217bb8b71c6e81d266f974ef27435e\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: max-age=604800\r\nserver: AmazonS3\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 efa1f20185894fba06fb038a3e989f24.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: taudkpLOlkJEJI5yS_uFEmuDx0tMGiGUyFmU3Q8F5SFB3spAWV4pow==\r\nage: 28176\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1046,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"02217bb8b71c6e81d266f974ef27435e","sha1":"431b327d3d7dce4c86bd39b472532d2f9e4fb9d5","sha256":"22b297b0ae05d87d08aed492dcb3b879abd003b1235fb3e8a9fa608c4dbae8ad","sha512":"5cfcc25c32bc231209c7ca759c85ca0779c57a82d772e4919b936f46343ac9e63a14b2b2f05f0c2feb0476bd933f58ecebde7718c1578b21ec3fa0faa290b20d","ssdeep":"","tlshash":"8011c2fb9f9ab4e0a803d3a040175172347a38ea6f2d8e6a01d147786f174cf34a64c9","first_seen":"2026-04-15T13:51:57.625778Z","last_seen":"2026-04-15T13:52:11.151976Z","times_seen":2,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":3,"receive":0,"ssl":10},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/home-wallet-b269041e.jpg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/home-wallet-b269041e.jpg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-90cb6f2b.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-11bd1\"\r\nexpires: Fri, 15 May 2026 13:51:44 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72657,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 700x320, components 3","md5":"98d33b2781bd9ac58711e5f77396a82f","sha1":"8fa28af02b9f62003bea5dbf0a7a66166c3016c7","sha256":"b269041e53ef9647cbaf3a7e8903b10c4e4fea155b2166a48f9a2c84e6f71781","sha512":"606004c495cf5235a58a48b2b03805bd0ad3645548ee0787fd00ba1cfb761622ba1a2d509870f75d97930450385b96d31674cff68bbb15e16a48cd845e185fe5","ssdeep":"1536:o4xWXZ/8haLi+WJzgb3glBPIMJTa2aBdyK7KLE8fwvLvy:RWXZ/8lJ0TgjPIuaVBohg8KLvy","tlshash":"13630226f641a0a0c685f5b4829cfb8eb90ad0f31dc93f58f85a7785f8d063ed94445a","first_seen":"2026-04-15T13:51:57.624659Z","last_seen":"2026-04-15T13:52:11.153031Z","times_seen":2,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/icon-Wallet-c8af8582.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/icon-Wallet-c8af8582.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-90cb6f2b.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 661\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-295\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":661,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"75e518198857a418770b559d739cf88e","sha1":"790e2cb484cf80cc1e8331ab552a6597734e3369","sha256":"c8af8582e8c180e934b4e81532a9780b87284713a5aa56f5a8c4b980647dcec3","sha512":"265ac1455953a274aeb3a7de59aa7d91dbb6e48bdbc8ac85081909d174e75904bbe56f312efbe3204ffac2aac93d3017e1b856274f5f825d3717f3b762e5b75d","ssdeep":"","tlshash":"e0017df617648b1b4a22578197cde984153ef7da722980c5f742340b6c641ef743f418","first_seen":"2026-04-15T13:51:57.681068Z","last_seen":"2026-04-15T13:52:11.154126Z","times_seen":2,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/platform/dev/config.js?1776261102610","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /platform/dev/config.js?1776261102610 HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 394\r\nlast-modified: Wed, 01 Nov 2023 13:05:30 GMT\r\netag: \"65424d1a-18a\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":394,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"4bc52b1aa6813b98e0af16a138354c00","sha1":"91ee6accefe6f24544627bdd1ae2aba499d5016c","sha256":"bf904efa24cb62a824547b6df3a7bbade81bfa77cc27124d7766ae502e5d6231","sha512":"22c852a633d0c36ccf7d549fd1c6a800698e42994d993a47f534b92c8ff8430c14d668c72d2bf8eb79e8b4459f83116bc75ff5f5269f36bc3b8cf2cb9ae886ae","ssdeep":"","tlshash":"f5e0abab3138c16451b08f2b6cec4817f68b2733494c010bf8b469041e79d542178890","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-04-21T18:24:07.039375Z","times_seen":321,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":382,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"huobicfg.s3.amazonaws.com/currency_icon/ltc.png","fqdn":"huobicfg.s3.amazonaws.com","domain":"huobicfg.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-northeast-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 14 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"46:67:AE:AC:E3:C2:0D:C4:55:CA:3F:CB:B1:64:48:00:87:D7:E6:91","sha256":"18:7F:98:1B:96:0A:EE:5D:A8:54:AC:EE:61:CD:E2:1A:42:79:57:6C:BB:97:D4:54:5F:AD:91:87:86:84:69:D8"}}},"request":{"raw":"GET /currency_icon/ltc.png HTTP/1.1\r\nHost: huobicfg.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: yvC9OU+dOQELbfuDpWs6zvZR+cah5CfZynp2Oxc/mntFCJ6RZUb0mJ5WCVzWeMhE7C8QjBd/fvCxfCHS9lq88KzWQGlwer1s\r\nx-amz-request-id: 34TR38BCBEPGRM7T\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nLast-Modified: Tue, 27 Jul 2021 09:04:10 GMT\r\nETag: \"b772bf1738628de70f1b9304c3d669ff\"\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 479\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":479,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b772bf1738628de70f1b9304c3d669ff","sha1":"db4b8dbd617a80bc2b7efcafc1b93064eb9a08bf","sha256":"9afa8bc92c0b1ed443e1b75a05bbac5399cc3a6c95863765b0d68959faf089ed","sha512":"2c54b078c370b434455c91a7a61454bc4cbc3ab611793db68dc733087aa507a280108d53977a1a47983a7161b52cea75d097c6f6bee8c529774fde42ad2c7516","ssdeep":"","tlshash":"f8f02e7df6441b35980ed634663e2cb430352fa2f245805a21dd1a547a574ea5945363","first_seen":"2023-05-25T08:09:47Z","last_seen":"2026-04-18T15:16:20.972434Z","times_seen":480,"resource_available":false,"data":null}},"time_used":891,"timings":{"blocked":-1,"dns":5,"connect":279,"send":0,"wait":298,"receive":0,"ssl":302},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"echo-res10.oss-cn-hongkong.aliyuncs.com/echo2.0/DOGE.png","fqdn":"echo-res10.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.165","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0/DOGE.png HTTP/1.1\r\nHost: echo-res10.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/png\r\nContent-Length: 55728\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F1AB6732333477FA73\r\nAccept-Ranges: bytes\r\nETag: \"48384A67185DBDFEEF3AA43C99D3319C\"\r\nLast-Modified: Thu, 10 Apr 2025 10:09:49 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3192987439189544564\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: SDhKZxhdvf7vOqQ8mdMxnA==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":55728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"48384a67185dbdfeef3aa43c99d3319c","sha1":"23e15189bebafbbec8b23e8ed0f3392a9b7979ee","sha256":"1ceba4efa6a645fbe532e520385f37001922e14b6aa7b4ebeb19e755014feb39","sha512":"2f7a13f56ff64b874a76994d00f198c5fc2b7424181935e641eb81bcf171db54fa50b711502c0c4a7e8f5c934ed5747233d87ae0602916244947d3724eb3ce10","ssdeep":"1536:5ko5w6RHlzxqElMwBI6M3iD+oLKTn6EPwhk6g9p6uP5I:x5fR9xjlMGnMSDYLPJ6bOq","tlshash":"0d430247c0529ed2c68853aa0e3de48a84779d12358f80577ce6525a82e2df29bd770f","first_seen":"2023-05-22T05:59:44Z","last_seen":"2026-04-21T18:24:07.157162Z","times_seen":442,"resource_available":false,"data":null}},"time_used":1155,"timings":{"blocked":-1,"dns":0,"connect":280,"send":0,"wait":281,"receive":35,"ssl":559},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/loading-back-e6248677.jpg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.213Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/loading-back-e6248677.jpg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-8e97bb2c.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-81ef\"\r\nexpires: Fri, 15 May 2026 13:51:44 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33263,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x1624, components 3","md5":"24794839958bf84356367c616f2629de","sha1":"07a67284739dd6646fcae9e9154fc019e194ff92","sha256":"e6248677ac449cd5823047b1fe125ec6611eb537332b92c6b173cd0c9f7ba663","sha512":"2eb7854438e26a936cd414ab1812932cb3643cdcc3d5e3d0c1f80bec80d52f3159789fd153907963849ce2e308a168677132d786b67b7030641e6d17e4e73f5b","ssdeep":"768:vFvQ0HjrubY7dncBprLD7iEef6VAEZpn2plVkYFvsXu7uJfyH:F1cBhGEayBWlVnMiuJfyH","tlshash":"0fe2e1afdf00a4d3c9eaaf735ccf725805954ae9b860cc41f69cec1a136f1908c705aa","first_seen":"2026-04-15T13:51:57.66804Z","last_seen":"2026-04-15T13:52:11.157074Z","times_seen":2,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/HightChart-308367d9.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.323Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/HightChart-308367d9.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a85-44ec9\"\r\nexpires: Thu, 16 Apr 2026 01:51:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":282313,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65518), with no line terminators","md5":"9914e177baa98c2ac6add48b1b0a5c6b","sha1":"9de3a6cf3ca01a50133191e972460a251760a3b9","sha256":"5731195b7f65986eda3deee5570e13549697f0e0ba4a334c429474342ba9d066","sha512":"ef695523a1f5b24efe77224788d108fab396710acea0a3c2a63f6e57f35f2579b5bfa685851db605d1c9e4272f9aa97cf8f57022ad58ce74b794b95d07ff8eb6","ssdeep":"3072:RYPIAGhEdBjN8gu+HxpMlZ/lwFgrpyn2Nl8jLPQwl6Uz4:tAZdP8y8lXrpyC+Qwl6n","tlshash":"1a5438eae315312397af13d5a46b07069333659d1946841cbabcc8f7181988d32bff76","first_seen":"2026-04-15T13:51:57.686453Z","last_seen":"2026-04-15T13:52:11.144401Z","times_seen":2,"resource_available":true,"data":null}},"time_used":264,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/tabBar-Trade-e0d08c9a.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/tabBar-Trade-e0d08c9a.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-559\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1369,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"51a0e35088ab62059890981be6fd50db","sha1":"2910c62a030faa48bb8ca615cc884ac2c84a9414","sha256":"e0d08c9ae9201170145a893ffe76ee0f213979e0fe7e0f8747ff851e78da26af","sha512":"922655af78bc7dbfb673b291108e6d97e514722d71ec7254db8fe571aee74dd319f19f6f5fb95dbfcb100b536c74045b26feb593e0ad2d4ea33a92a7563929ff","ssdeep":"","tlshash":"2d2120b33798899fd23082c6dbf5d68c862cd0c3a19782d8b754242b5e310953abfe20","first_seen":"2026-04-15T13:51:57.626838Z","last_seen":"2026-04-15T13:52:11.158101Z","times_seen":2,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/icon-arrow-right-5a2ee585.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/icon-arrow-right-5a2ee585.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-90cb6f2b.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 538\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-21a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":538,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b715178c132747bb9ea815b202a5e87b","sha1":"03cf340b3cbf919c3cc862bad196881e955751f1","sha256":"5a2ee585267fd22afd86a1e77299a0373123a6ab00e485357a1056a3585c9481","sha512":"947cb2c475e121685ae4787dddd18d8e942702c9a2af4fd57513bff46bfbdf099e6922df786a0cf6efd9a503a4cf93814393798889e1224801f6bfcf8d6a30e2","ssdeep":"","tlshash":"94f024b56479091a84298681e7d8ad84e12df2c7e37180d8f77339b32c255da28ef529","first_seen":"2026-04-15T13:51:57.659409Z","last_seen":"2026-04-15T13:52:11.159069Z","times_seen":2,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/type/defi_activity_type","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"POST /api/common/type/defi_activity_type HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":635,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7a423e3451e474878191a0a7f1d323b9","sha1":"13312f533f380295131f6a1540f425d0c98a16ba","sha256":"49c938e0bb3a834cab9319575489cf6c1694cace3f1ceb9671570024328e2a35","sha512":"0522e47fc06c4329cee21e354b264c90ae4b0725941d75cf63af54bee4a307fbe91e7078a412bd9750f3856657159ffe5efff139a652ec0443368f7c146bfdbf","ssdeep":"","tlshash":"5af028143d3dcebf098f65e745ec7818399c152794a0fca058ab0f3c5ae4171088921c","first_seen":"2025-04-07T11:28:26.961944Z","last_seen":"2026-04-21T18:24:07.154709Z","times_seen":559,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getMt5Amount?coin=xau","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.754Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xau HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/icon-share-fb4a39af.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/icon-share-fb4a39af.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1000\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-3e8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1000,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"782dd537c4f8596200231d7155cee6fc","sha1":"22908fc99f1ad4371d82e9e9ab166bd226305b67","sha256":"fb4a39af7671e18a2d8a340e4972399199ad300faaf065b1794b00ee3e1cb13c","sha512":"d91327525697778766cf4f5f7bf926d838f2e461e5872ee02f1d6c5aadbf2161625dbfa71ad2fe766984a4036318a91b3e603d8b0e164199a4f6e03cca28103f","ssdeep":"","tlshash":"1b11cbf123408f4b401187819bd69948a36cf1e6a5b601c9f36520a76e717afa3df208","first_seen":"2026-04-15T13:51:57.670611Z","last_seen":"2026-04-15T13:52:11.160778Z","times_seen":2,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.08eb36492707741e78d296840dd002255.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.08eb36492707741e78d296840dd002255.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2521\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F1C390C33136082E68\r\nAccept-Ranges: bytes\r\nETag: \"E04B2C6F459C19723115411D64934F65\"\r\nLast-Modified: Tue, 10 Mar 2026 06:04:54 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 8645185543573464199\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 4Essb0WcGXIxFUEdZJNPZQ==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2521,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced","md5":"e04b2c6f459c19723115411d64934f65","sha1":"81641dfedb854f56119883003a14af1238a1edef","sha256":"b47e27b4895e531f29968d2dc8fb0f84955593bfe004ced10b8763a60d069c29","sha512":"0407b8b424138fb53e8b70565f10fe65d076e9df07fe2f9dc38ca9a6fb5f3ba34ea3a734a318d6e1d241a5e4981be1bc8b74bf7cd05b5395e8b89db0ff24eac3","ssdeep":"","tlshash":"d5515dd37a47d3b0cf2d6423c4c71eda5d0cb3736cc414003a1f50a990952e03696a1f","first_seen":"2026-04-15T13:51:57.661944Z","last_seen":"2026-04-15T13:52:11.161916Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1376,"timings":{"blocked":1112,"dns":0,"connect":0,"send":0,"wait":263,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"huobicfg.s3.amazonaws.com/currency_icon/bnb.png","fqdn":"huobicfg.s3.amazonaws.com","domain":"huobicfg.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-northeast-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 14 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"46:67:AE:AC:E3:C2:0D:C4:55:CA:3F:CB:B1:64:48:00:87:D7:E6:91","sha256":"18:7F:98:1B:96:0A:EE:5D:A8:54:AC:EE:61:CD:E2:1A:42:79:57:6C:BB:97:D4:54:5F:AD:91:87:86:84:69:D8"}}},"request":{"raw":"GET /currency_icon/bnb.png HTTP/1.1\r\nHost: huobicfg.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: S/z5lvq7S3X+Z5VQ8zx/B7uumcdbiVxFD7di6qO3BwRY6i/I2v9mIraotwHLRAHehJbzuTY156LLXAhcZPOWxMxy8Vl06RLf\r\nx-amz-request-id: 34TTBWG474TQ2M3H\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nLast-Modified: Mon, 10 Jan 2022 15:02:55 GMT\r\nETag: \"bed74791845ecaea0b78be9b10c690f6\"\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 1015\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1015,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bed74791845ecaea0b78be9b10c690f6","sha1":"ca96e3d4056d851ed301eeb4a2adf8e0103b8c4a","sha256":"7a938ed34bf0bbd6dba92c49cc3911052777ac55306abee47300bc36b0e6aedc","sha512":"cefe77f1b27c043db212b67fd228a6a208b5e63f079ccfedec269fae9bfe964c9be8b423737c3e16d0f112237808a623d101f4bc9e6f5b039e13747251db50f0","ssdeep":"","tlshash":"20110ea4730cd2511e0cd35a7b29dcb97652b4e6d782910015c6250aafa4aff1c70fcb","first_seen":"2024-01-11T12:12:53Z","last_seen":"2026-04-15T13:52:11.162923Z","times_seen":231,"resource_available":false,"data":null}},"time_used":897,"timings":{"blocked":-1,"dns":4,"connect":279,"send":0,"wait":305,"receive":1,"ssl":304},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/coin-btc-dbfa7f57.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/coin-btc-dbfa7f57.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-90cb6f2b.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 975\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-3cf\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":975,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c66d307fb678f8c7ad4c814d3a27ccd2","sha1":"db33149b583da1adcc8bba38337d90685dee8a00","sha256":"dbfa7f5791a3f5655a59739096b83678071b7ee263221109455599585251ae3f","sha512":"54fdc636f82bfa078b2dd22038cba8b27826923f0bd1e5866cf9b51578f2c827613c4a0a49763a2268ab5ff5523da29387b545c14b6456fda15fbdfd021d5e64","ssdeep":"","tlshash":"a4112df91878af8825850644afecb7c4a27af183ca7182d4b391380b7da59fb706e040","first_seen":"2026-04-15T13:51:57.660911Z","last_seen":"2026-04-15T13:52:11.163542Z","times_seen":2,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/charting_library/charting_library.min.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:41.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 01 Nov 2023 13:05:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65424d1a-2a6b\"\r\nexpires: Thu, 16 Apr 2026 01:51:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-04-21T18:24:07.158001Z","times_seen":717,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-90cb6f2b.css","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.654Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-90cb6f2b.css HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-e7c\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3708,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3707)","md5":"004b03a20b53bc1057e41aaff226c7c8","sha1":"7be713158e60cb9f31a7546045891b2ee6468a92","sha256":"90cb6f2be2648f912ca666d9d209c5e218cc08e94d601ac85fc15cd41fde0d6f","sha512":"2976d9669a180030cd0bba47463b9f0f57f5b308ae0745da5d51f129ab02e135ec068a99e4a08159e227dec1d4deaf54e538b4cfe8344bccdbdcfe017ac3c96a","ssdeep":"","tlshash":"4f71012faff40e5cb51bd5f26b70879ce4047844e0834de55297adb22a5f65b083310a","first_seen":"2026-04-15T13:51:57.691632Z","last_seen":"2026-04-15T13:52:11.165114Z","times_seen":2,"resource_available":false,"data":null}},"time_used":346,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":346,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.09a8ed0da981a4b95a65a371cf0052937.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.09a8ed0da981a4b95a65a371cf0052937.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1518\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F14C8B37393611F9B2\r\nAccept-Ranges: bytes\r\nETag: \"83C47DE39F5737C5A49C09B968577E9F\"\r\nLast-Modified: Tue, 10 Mar 2026 06:08:29 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 13540485492609224445\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: g8R9459XN8WknAm5aFd+nw==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1518,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"83c47de39f5737c5a49c09b968577e9f","sha1":"80e69273b7317274719b35cbbcc6a0d6e451859d","sha256":"a44494dcb4b7418654bde69380f2195e6009bd9f8a0767072b5b91b2e4301ef3","sha512":"50e557d62f3907e12a5dac4b8b7f2e6058b6ef5becdce62f2437ff9e9eb27eb343c3216fa29f71917d7762404b89d6856f78e4a8e640c8df81b6b3e4c5ca788a","ssdeep":"","tlshash":"7531e7da81172058fdea068be10550d8b72e144c0071aad4872e352a9412d5c538336e","first_seen":"2026-04-15T13:51:57.617283Z","last_seen":"2026-04-15T13:52:11.166012Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1523,"timings":{"blocked":730,"dns":0,"connect":0,"send":0,"wait":263,"receive":1,"ssl":529},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-c3971588.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:41.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-c3971588.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a85-18f45\"\r\nexpires: Thu, 16 Apr 2026 01:51:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":102213,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65526), with no line terminators","md5":"44c5a65f483408c5388828f72ffdabff","sha1":"ab541733add3e901f4ec54f3ff93d44b9f183af0","sha256":"2dec8c4acdd7a95a89a94e3e2213eb2980cfe8ef26ef480f2372e39618f47565","sha512":"c7438262b8f25783bacb347869ef55b71b6216414c801a8ca215c28085facb2829f0fd68b2eae62e4381d0e976bbe2b33e081b995eeb74a71cd2cf92aa253224","ssdeep":"1536:ZrFsIsiO29WOgSRsdwWA0xbuJNd8OzqixZg:Z5uogSRyAwmq4g","tlshash":"dea35a8ea50b1eff58fe0844b55b094030691f97988ccc93a7ba6f153bfacd5a385718","first_seen":"2026-04-15T13:51:57.68477Z","last_seen":"2026-04-15T13:52:11.167181Z","times_seen":2,"resource_available":true,"data":null}},"time_used":516,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":516,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"huobicfg.s3.amazonaws.com/currency_icon/btc.png","fqdn":"huobicfg.s3.amazonaws.com","domain":"huobicfg.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-northeast-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 14 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"46:67:AE:AC:E3:C2:0D:C4:55:CA:3F:CB:B1:64:48:00:87:D7:E6:91","sha256":"18:7F:98:1B:96:0A:EE:5D:A8:54:AC:EE:61:CD:E2:1A:42:79:57:6C:BB:97:D4:54:5F:AD:91:87:86:84:69:D8"}}},"request":{"raw":"GET /currency_icon/btc.png HTTP/1.1\r\nHost: huobicfg.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: yHFR6b+OazoyxHWVNeqKyhwpSfd2/YwiJj8qA+R+wVPdJ69ALvTggmegj4NyB9GhZMRzBBUDFs2YA3bXRCDocGjqLMsEmMaO\r\nx-amz-request-id: 4VN2PQZCT892PJ1M\r\nDate: Wed, 15 Apr 2026 13:51:46 GMT\r\nLast-Modified: Tue, 27 Jul 2021 08:37:53 GMT\r\nETag: \"03c74454bc971a3437d588396a5e610e\"\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 1947\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1947,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"03c74454bc971a3437d588396a5e610e","sha1":"1a359cf1c14e757eaee1c5c807cf6c7732646b15","sha256":"733d0c0a99a79f263e8b548b8b1988ccfe80e156d36120371495955b4e51e382","sha512":"dede5e3cd5e0f080f4662e4e2df58482d19df970a2cc3f505eda82fb180a736a4c82523fe35b7a613293f572197e44c3bf963bcbaa32174c00d80b0b1e08bb2a","ssdeep":"","tlshash":"24419620d7bec18cf00196fcda29c87479971cc53e28d089d6e9485ab66405d1d72cff","first_seen":"2023-05-08T20:49:32Z","last_seen":"2026-04-18T15:16:20.979179Z","times_seen":438,"resource_available":false,"data":null}},"time_used":1938,"timings":{"blocked":825,"dns":11,"connect":262,"send":0,"wait":283,"receive":1,"ssl":553},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getAllSetting","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"OPTIONS /api/common/getAllSetting HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":262,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":261,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-bc011be9.css","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.651Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-bc011be9.css HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:42 GMT\r\ncontent-type: text/css\r\ncontent-length: 397\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-18d\"\r\nexpires: Thu, 16 Apr 2026 01:51:42 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":397,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (396)","md5":"5353ff252ee4a5e7a3d0176de6a6c712","sha1":"c83942b5dfdb4aa8be53f26b39e53b0b257595e0","sha256":"bc011be90fd6cd33a399912151a5f69ba0d8e394563c71c4c1bea7a4ec032516","sha512":"9a17506817918ef0c9a5d0caebaed8f603641dc1015a726bdf247645a7e0a988b543756d7254abafa18dd4cd9d27c9a198300632156faf59f05c1e27f0a5e30a","ssdeep":"","tlshash":"5ae092c890d6927fb62b607d267c931ad425ac88d8007bb8e67fabb146c7ac53172215","first_seen":"2024-01-05T03:21:29Z","last_seen":"2026-04-21T18:24:07.042878Z","times_seen":443,"resource_available":false,"data":null}},"time_used":350,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":350,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getCoinList","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"OPTIONS /api/common/getCoinList HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":1358,"timings":{"blocked":546,"dns":0,"connect":270,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getMt5Amount?coin=xag","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"OPTIONS /api/common/getMt5Amount?coin=xag HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/icon-userAvatar-2f9e05dc.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/icon-userAvatar-2f9e05dc.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 891\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-37b\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":891,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"44e751ed0ba2a6d4c009ecb5a670a591","sha1":"5cf4285076532836e6cfe15d3250c22a78ed879e","sha256":"2f9e05dca256900d5b6e9ee26352f08e6fc2a6571a973d9b205b60557c7da4c2","sha512":"7b3915ebc7c89717c7054e951d23cf48650d4ad2450d05b57f1bdedc68577db5c05a9f1d553b4065d25baefd8ee34085e346e69169b8ea4aff0ae9e87f1eb2bb","ssdeep":"","tlshash":"9a11eff31068468bc03182c1e7fab8c46228f0e6c60124d1fb05262b1fb01a9707ee11","first_seen":"2026-04-15T13:51:57.675013Z","last_seen":"2026-04-15T13:52:11.169334Z","times_seen":2,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.0cccc68e85ecb4ad084eed94fd17d88cc.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.0cccc68e85ecb4ad084eed94fd17d88cc.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1269\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F1ACF6C53734A63DC5\r\nAccept-Ranges: bytes\r\nETag: \"991BE0DAFF43AD0CEE3D20F816819849\"\r\nLast-Modified: Tue, 10 Mar 2026 06:08:11 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 2420095127055002703\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: mRvg2v9DrQzuPSD4FoGYSQ==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1269,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"991be0daff43ad0cee3d20f816819849","sha1":"588c9e6446c9e061391ad5a6cdbdd365819e2a0c","sha256":"e9ed81beae5163b6e8fbd5735dbed7e09393352d3fe0336d02a95d5212b71ec0","sha512":"7ed32874fde28ea97de0fce87facd06235d49535b9fd200f5fc1002619a8293d1a27d0cc9d0d625519e5e412cf1177b3b31e22a77dac564c7cd7c87cbb833062","ssdeep":"","tlshash":"bf2195feb3d6acbe8d5497e40b27145cf82131267492eb3f444c252934a4e8924e3ae0","first_seen":"2026-04-15T13:51:57.656714Z","last_seen":"2026-04-15T13:52:11.170209Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1347,"timings":{"blocked":1074,"dns":0,"connect":0,"send":0,"wait":272,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/icon-wallet-usdt-bffd1e8d.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/icon-wallet-usdt-bffd1e8d.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-90cb6f2b.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-476\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1142,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8022decb3c776a7ce0599e5f9b811e24","sha1":"3702a08be4da833803c3e6e27cf62f9901145241","sha256":"bffd1e8d0f78f6a047c6ed69ac4b51b98e01fafdac86b2351031302ed22766ce","sha512":"42b2f5d9b01e7e1dbd931c03e00cbe0bac990abe2706a2543a57ce501e1d907a2f6b79b1cd07b1996d7de8bd86b06e92c3551d1234c8793018c2ae2cdf38700d","ssdeep":"","tlshash":"1521bbb71234de8f80f44a85cbe5d984667ce196b24121c8b3cc3167ae399cbb47ad11","first_seen":"2026-04-15T13:51:57.638927Z","last_seen":"2026-04-15T13:52:11.171047Z","times_seen":2,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/coin-eth-f9f76664.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/coin-eth-f9f76664.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-90cb6f2b.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 909\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-38d\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":909,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"88007f63652467aa9a7df2c3690e641b","sha1":"c79f3720d240621b9f677a68bc44d98971e7af31","sha256":"f9f76664bf9be1363677d57d5ea461fadc21fa8c18f76a480e287069629f6e87","sha512":"04e513c7c06a5c308000859778558e71db81eb0f41cae3e2ecf6bc976d1a947d5f9840cadf5a541aa9f1c5ff15e267007a322f956fc6a0201795c0422934293e","ssdeep":"","tlshash":"6811c0b43ade5a2991124b4edbfdaa48581cf0d6b53501c0f35430976f297e7798f411","first_seen":"2026-04-15T13:51:57.690595Z","last_seen":"2026-04-15T13:52:11.171944Z","times_seen":2,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/type/defi_activity_type","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.518Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"OPTIONS /api/common/type/defi_activity_type HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: lang,language\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-methods: POST\r\naccess-control-allow-headers: lang, language\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/en-24700983.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/en-24700983.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-9e05\"\r\nexpires: Thu, 16 Apr 2026 01:51:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":40453,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (40430)","md5":"707f4ace1dad1753d065831c9c648798","sha1":"64bbe72d9c4188f7745f629ec25d135de0680064","sha256":"558c54ec7a432394e49385a408a6df45385df8bc9d4dc8bd02be06772032961f","sha512":"cc1dba7c8d5d28352e5f9ba416cc541f98f8ad6419cc601a3f853b6eeeae6cca1acfb3d91cf8eb8918c5a65d73337f05953667a5ad823812302f83ec8a7f5093","ssdeep":"768:+GtZcEw/o7rKOdAFsifnAMC2rAaAMDVoP6+6sPG9w1mwO6fpk7aOLxX:iponKOdebE2rdDVLsPWwqLxX","tlshash":"c203d6897e1a989a04f3537674ce6e1120f60ac18255881f4fedc9fd53d2b67a363b34","first_seen":"2026-04-15T13:51:57.687494Z","last_seen":"2026-04-15T13:52:11.172929Z","times_seen":2,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getMt5Amount?coin=xag","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xag HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5ba56961e40abec158b34145c30bc734","sha1":"b0accb1ff3c34a2ed722fc511a65ac426ad695cc","sha256":"7b3ed85fd83549708c82cf85a89e5b3c94060bde1fd91d5b6855656985a4224c","sha512":"3d93f998b1b875978f6fb0a984a702fdb2d5760a72a495db3591b308ae8a8ee86357d3a10bfd106cd6b6aa17e3fca691493019217649b5fc341713b9db914ba9","ssdeep":"","tlshash":"a89002651c188242f98700a595461304042435a0262492588d59a56780c81762080898","first_seen":"2026-04-15T13:52:11.173872Z","last_seen":"2026-04-15T13:52:11.173872Z","times_seen":1,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"huobicfg.s3.amazonaws.com/currency_icon/sol.png","fqdn":"huobicfg.s3.amazonaws.com","domain":"huobicfg.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-northeast-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 14 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"46:67:AE:AC:E3:C2:0D:C4:55:CA:3F:CB:B1:64:48:00:87:D7:E6:91","sha256":"18:7F:98:1B:96:0A:EE:5D:A8:54:AC:EE:61:CD:E2:1A:42:79:57:6C:BB:97:D4:54:5F:AD:91:87:86:84:69:D8"}}},"request":{"raw":"GET /currency_icon/sol.png HTTP/1.1\r\nHost: huobicfg.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: I+a+qDfjduJgauEB6ajRLk9IfvAWk+bvpNe0dr+1cYWHqW/oVU0l3n6AHaPsad5/wcGdfGl9G+W7EBAjd8lSHUJvdxRFenlY\r\nx-amz-request-id: 34TM1WM55T1YDFFZ\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nLast-Modified: Mon, 13 Nov 2023 03:50:00 GMT\r\nETag: \"ee89bcfca63b88fd463f28fb7edbadee\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 1901\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1901,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ee89bcfca63b88fd463f28fb7edbadee","sha1":"e519959e2a57b505820d4dba95aa6d99d3113c41","sha256":"4d4cedd0f67d386a8dda8333c82b599994f110887ee16fd38862d8c04ba6061d","sha512":"273f82fd285071a515fa9cdb0d7fb2a4cec70e73b93c26d803cb46cd819d459dc0a7addd61001eff57dbcf51d4a2081544aa43ec43ee3cf31d5ab07b6f8a1991","ssdeep":"","tlshash":"0a41e1aaf0e9f535f30487e9ca85446108ab42e3a541c261c3d1ff0ff8180d61d9daea","first_seen":"2024-04-18T22:13:30Z","last_seen":"2026-04-16T01:47:52.101154Z","times_seen":120,"resource_available":false,"data":null}},"time_used":962,"timings":{"blocked":-1,"dns":3,"connect":264,"send":0,"wait":285,"receive":0,"ssl":410},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.07e33da5630374c9a9981d09e6df3144f.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.07e33da5630374c9a9981d09e6df3144f.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1283\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F1ACF6C537345A3DC5\r\nAccept-Ranges: bytes\r\nETag: \"4ED4F4EF94376461EA92882B0005915E\"\r\nLast-Modified: Tue, 10 Mar 2026 06:08:15 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 3560846964619795148\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: TtT075Q3ZGHqkogrAAWRXg==\r\nx-oss-server-time: 4\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1283,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"4ed4f4ef94376461ea92882b0005915e","sha1":"3952b879c3b6e613b86dbf713d0f676f45554b4a","sha256":"5fdbe79bb7c53719aed98ed4914ba45e7e2c1c9b479f554f3dedb527ac45d23e","sha512":"03c32f7667c24c18882eb8c68b77874f107d211a7e7b4567a9a0d1afccaa5f2a74a6096485c5abce5eaaaa4643b701858780c40fb4a6000c69bab8f033d8aeb9","ssdeep":"","tlshash":"c921982543911873d56c7f6a9d336281e0c62ddbfea5926c4debe21826923634a05288","first_seen":"2026-04-15T13:51:57.676031Z","last_seen":"2026-04-15T13:52:11.1758Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1038,"timings":{"blocked":11,"dns":0,"connect":259,"send":0,"wait":274,"receive":0,"ssl":543},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/coin-trx-2e7d7fb8.svg","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.222Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/coin-trx-2e7d7fb8.svg HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krakenweb3vip.com/assets/index-90cb6f2b.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 908\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\netag: \"69da1a84-38c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":908,"size_decoded":0,"mime_type":"image/svg+xml","magic":"exported SGML document, ASCII text, with very long lines (908), with no line terminators","md5":"92412250874344fabcfa16baa39e1650","sha1":"8074901d45204e38aab6a9b5baf3d40718d67ca5","sha256":"2e7d7fb86d4e85c02385cf16848ebef892059199bda7291fe3368897028fece6","sha512":"ac01703244a50a983b8d0de7201fa833e7ffb5b031f047c6c8014616d0f2483c07278607b58f0acb31a6f2f1e4e78558729d42e670f048ea817d95131dafd391","ssdeep":"","tlshash":"2f119ce7e7c894989519cfc49d1268dd276d29d97de082cbd3344f34a314b6dea80d38","first_seen":"2024-11-05T04:41:28.398116Z","last_seen":"2026-04-21T18:09:41.84175Z","times_seen":51,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getAllSetting","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14157,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (13798), with no line terminators","md5":"8006c3b5d2ccb45da3ffeff3d5376e4a","sha1":"c1057b05e06e78e2d73fcb998c6eb56d03349b6d","sha256":"a775e893d4de4f1defa162fc2560715b286aeabb607cb0a3a8b7dce0f8ef9e88","sha512":"3d41f7c63ac27161a2f04c41e0f22bd83e25cea6f892b8792f689ffa19afd55c0b5c5775e8c8cdd64e5474c478d166a2d259aaa5897da6fc5797640ee2e6b5b7","ssdeep":"192:NC/g3j+OSpQ+s4KD+RbG2c29FeBTKgdk7J6fSqQXu6zm2sttxsWcN4qNPyynZ++q:Tei25F2SRK2Cx/crRh8QyHam2NnG","tlshash":"2c52564932d8dc7d86da1ec580bb3e4a79dc3c7b9584dc55e4aaaf5c8499db3480f00e","first_seen":"2026-04-15T13:51:57.609338Z","last_seen":"2026-04-15T13:52:11.177258Z","times_seen":2,"resource_available":false,"data":null}},"time_used":283,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":283,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/vendor-51522aa1.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:41.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/vendor-51522aa1.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:41 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a85-d9d21\"\r\nexpires: Thu, 16 Apr 2026 01:51:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":892193,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8439986076b66fa4d37108aba512ee62","sha1":"6b0359d7b312ebbf46bbcd739159d38f6aadfd35","sha256":"e1f7f0d9b48f1da5a50a20288c5c5cb939b503ac734d3a7b084a44b644bbc12a","sha512":"3883b9f30e43d6f73a667a96a71b20398a9aa250ff555028aec781d3e2842e41fd1b87a704fe4d4fa12f2ed32b3356a680220cc4d8ba709011ff10dfeedca8f5","ssdeep":"12288:VHMVuFtd+0MJvg5dnALVnEDjEm1fWltYa2iWFf4lnOBLySxa:VHMVuFhEI5xA+Em1foF2iWFf8Wg","tlshash":"d4153ac97292f06147ab24e240bb0006f3396e59744e8494f16d98eb7d79d89e2b7f3c","first_seen":"2026-04-15T13:51:57.664993Z","last_seen":"2026-04-15T13:52:11.14934Z","times_seen":2,"resource_available":true,"data":null}},"time_used":494,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":494,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/filters-a018624e.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.325Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/filters-a018624e.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-c1e\"\r\nexpires: Thu, 16 Apr 2026 01:51:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3101)","md5":"bbc2deafd4a6003b86c08a4b8b045371","sha1":"055594e165b87ec6b64668b51f51d8e337f20904","sha256":"ec1b6a4bffd3ada09e834868beb281c83b37a094c6cf44c740666c8ceafda393","sha512":"152ee368df0be168551dd86f56184de84838d11ebcdad638b5841fb662ae365af6580cca9d34a21a647a7eafcf357aaa4addd684f6a763a8e31c9d2d53913d66","ssdeep":"","tlshash":"4c5115edf5c7a13397ea5eed40188550b28eae147c7e094ae24bd1855923488e0bf364","first_seen":"2026-04-15T13:51:57.673962Z","last_seen":"2026-04-15T13:52:11.128611Z","times_seen":2,"resource_available":true,"data":null}},"time_used":283,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":283,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.04991a0e07ffb43a6a7c4ebecde65ff93.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.04991a0e07ffb43a6a7c4ebecde65ff93.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 3756\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F1C390C33136B72D68\r\nAccept-Ranges: bytes\r\nETag: \"31B400491B32AD3553BC8506B8CB2C53\"\r\nLast-Modified: Tue, 10 Mar 2026 06:03:25 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 17384837243205377749\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: MbQASRsyrTVTvIUGuMssUw==\r\nx-oss-server-time: 2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":3756,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced","md5":"31b400491b32ad3553bc8506b8cb2c53","sha1":"c7a883a36eed32bcd14d80a5ea1806a7d80f7bca","sha256":"1fee769e0bc19935beb3fa7ab8a1aaad6cd0bd770dc8d08260480441c264e203","sha512":"38f90bd01db427a6c4200fd0ad588a91ff1f8d1c95dec61de2fc518e9caf5ec482294ee4d13a87a4217dacd5d33a4410177590fba94a62205bce9800ae139a2e","ssdeep":"","tlshash":"e4715df65490393961281e465a7520f5ec2bfde65803fb7fae4ad808db4742f3238200","first_seen":"2026-04-15T13:51:57.6886Z","last_seen":"2026-04-15T13:52:11.178209Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1643,"timings":{"blocked":852,"dns":0,"connect":0,"send":0,"wait":262,"receive":1,"ssl":528},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yongcanli2.oss-cn-hongkong.aliyuncs.com/echo2.09cecd7b0eead481fbd9eded669b2f425.png","fqdn":"yongcanli2.oss-cn-hongkong.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"47.79.64.229","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oss-cn-hongkong.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 04 Feb 2026 11:46:56 GMT","end":"Mon, 08 Mar 2027 11:46:55 GMT"},"fingerprint":{"sha1":"07:DD:45:99:F9:D3:55:D6:EB:41:00:22:C7:FA:B0:8F:DB:0B:E9:4C","sha256":"F5:2E:3B:65:89:04:A9:28:79:6A:C1:49:B6:17:06:AB:A8:09:30:D8:2A:1F:43:B7:BB:27:72:92:C0:3C:54:F8"}}},"request":{"raw":"GET /echo2.09cecd7b0eead481fbd9eded669b2f425.png HTTP/1.1\r\nHost: yongcanli2.oss-cn-hongkong.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 3601\r\nConnection: keep-alive\r\nx-oss-request-id: 69DF97F14C8B37393651F9B2\r\nAccept-Ranges: bytes\r\nETag: \"CE24C09C1B9C4B509106C4AD8548EF59\"\r\nLast-Modified: Tue, 10 Mar 2026 06:04:22 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 113213117967978443\r\nx-oss-storage-class: Standard\r\nCache-Control: no-cache\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: ziTAnBucS1CRBsSthUjvWQ==\r\nx-oss-server-time: 3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":3601,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced","md5":"ce24c09c1b9c4b509106c4ad8548ef59","sha1":"b7ba762da8c312f78f858eb71bbe2d05c44e2c9e","sha256":"ee0d837d3e098c78460ecc265c920f18f12e592b35cd37071ebbd8dc6658e8a9","sha512":"64585d0c2483a8044345adfa86ed662fa39e2ba7485d19c299a1766a8f9fdfb29df62ceab69007b70ac60eb476ef88a383163575660e5ddb80298f9900d7447e","ssdeep":"","tlshash":"7d716decbe57c9d85661c87fdc03412fca26c5edbdab4591038c2d10222ba8c57bd45e","first_seen":"2026-04-15T13:51:57.67156Z","last_seen":"2026-04-15T13:52:11.179138Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1352,"timings":{"blocked":1087,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"huobicfg.s3.amazonaws.com/currency_icon/xrp.png","fqdn":"huobicfg.s3.amazonaws.com","domain":"huobicfg.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.125Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-northeast-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 14 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"46:67:AE:AC:E3:C2:0D:C4:55:CA:3F:CB:B1:64:48:00:87:D7:E6:91","sha256":"18:7F:98:1B:96:0A:EE:5D:A8:54:AC:EE:61:CD:E2:1A:42:79:57:6C:BB:97:D4:54:5F:AD:91:87:86:84:69:D8"}}},"request":{"raw":"GET /currency_icon/xrp.png HTTP/1.1\r\nHost: huobicfg.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: JUCrPpURt633PE17fkjGgoCLISrvGVC2FiaFx/nxDsx7rmBkoOu9PVcY2p4LYX4olYcV9hbWYtQowVQuXeNTYOS2Tkv3kLb+\r\nx-amz-request-id: 34TJK6QN2BCXVG7P\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nLast-Modified: Tue, 27 Jul 2021 10:27:13 GMT\r\nETag: \"b4651cc9032d4aa180b49d44dee9f6df\"\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 857\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":857,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b4651cc9032d4aa180b49d44dee9f6df","sha1":"ad2c09017920248932ad46e869c10ff7ddfb613c","sha256":"9fd7f3b81a4dfa790611dd504160cf34d71387f0cb1c760f577cac2c063be9f3","sha512":"95db416bf9d681fd53f367d3a2a3858a2d8c9c51ef3bce7432140c84c48f30566e24baa9a954abda1daf7df3ba771f016f4a7ccdf5fe017f099b36b2acb37e39","ssdeep":"","tlshash":"e211c01df4ba6b39f60552e017f47424b2b2ab4d2602d09865386ea0fc794aecdbc0c7","first_seen":"2023-07-01T20:42:20Z","last_seen":"2026-04-16T01:47:52.129622Z","times_seen":205,"resource_available":false,"data":null}},"time_used":891,"timings":{"blocked":-1,"dns":7,"connect":275,"send":0,"wait":299,"receive":1,"ssl":308},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-8e97bb2c.css","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:41.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-8e97bb2c.css HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:41 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 11 Apr 2026 09:55:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a84-6423e\"\r\nexpires: Thu, 16 Apr 2026 01:51:41 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":410174,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"48b12e6018118c574f638317942892b9","sha1":"6d9cf4b3e825c1deb37a4619112f6996664db4c9","sha256":"8e97bb2c8c6c1d03d9fb69be3beba6a254703aec184a76c345e58f7274c430c3","sha512":"cc563a2a41c02bc9c9658241dc3e64a54b45289b2fab8f0c0457e1cf7f173438394d30a242eba466e92485ee61c1487959f25823da43045a27342bc2ca76fd0d","ssdeep":"12288:mNw9FByTKreN/YBTZ8w71ZACkFDS3vyf58rBeV05Ti:mNWzy/NABTZ8w71ZACkFDS3vyf58rBe7","tlshash":"e3943ba9a59011bc6f23aa7597ce5ad8f23ce6719c118de8f201600a4fc7ff91363617","first_seen":"2026-04-15T13:51:57.672613Z","last_seen":"2026-04-15T13:52:11.180599Z","times_seen":2,"resource_available":false,"data":null}},"time_used":778,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":778,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/assets/index-c07faf26.js","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.053Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /assets/index-c07faf26.js HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Apr 2026 09:55:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69da1a85-4027\"\r\nexpires: Thu, 16 Apr 2026 01:51:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16423,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (16422)","md5":"9f6049c593502547f7c31293e5b6497b","sha1":"ea2d3318109236b9b207f44ddcf0c78caf333207","sha256":"6319b9af589ed98ad123c70c6604fd10006aadb94f9d1f4362296cdc5fd99fe3","sha512":"0f6220bc8013a6b3a5b3db02dddd4d95cc10d7309597592b769163359000f02c6cc1201d92b921ba25acb8a39b21f750028a59b5420785d787d06e6261ec09a4","ssdeep":"384:PAjOaIF+NfY5NCBn0WTsdVjX8tGhmWn+QHOiWcXuIIkTkbPPwzzC6Berg4Uxg:PAjKFkfY5NrdVzPhDTHOiuIItPPwzzCh","tlshash":"d072f949fe0ec73cdaba601044ac242032483fd5a00d9cf2f5fe69932793e79a755b69","first_seen":"2026-04-15T13:51:57.678331Z","last_seen":"2026-04-15T13:52:11.138928Z","times_seen":2,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getCoinList","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.474Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21613,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"b94c527fdb71f211138c10ad0408f052","sha1":"3f316657f060580f99bba346cdeb5847dc7ecce6","sha256":"9b7b68781432de6fbe961d53bfba6d8ae6e0b2ae3632578caafb5f89e39c849b","sha512":"e10cffa3bb7d4e6ac002a11541c9a843610a14b830b18082ab75004bead7187eba99f4d810393d0b8c83bb0927ad5f16e531489ac49babfcf15c27f0d30ca12c","ssdeep":"192:VXwxsXDfXkdoX7wcXJXX9p0XPNXeCPXIPXyQUS1jguOwXjwYMK7SYf6njZRKkQbJ:wNTw1xx95kesk","tlshash":"49a221565528a4bdc4bad0d02ebf7d16518c367fecc58e1ac6cd8d988ed8eb1160af03","first_seen":"2026-04-15T13:52:11.181597Z","last_seen":"2026-04-15T13:52:11.181597Z","times_seen":1,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krakenweb3vip.com/platform/dev/logo_144.png?2.0.1775901316919","fqdn":"krakenweb3vip.com","domain":"krakenweb3vip.com","tld":"com"},"ip":{"addr":"103.254.151.2","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3kreken.it.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 17:26:44 GMT","end":"Mon, 13 Jul 2026 17:26:43 GMT"},"fingerprint":{"sha1":"5F:71:7D:01:DD:BD:C6:21:8D:0F:E7:52:84:C7:8E:71:BF:F1:1F:73","sha256":"0D:AE:90:67:AD:DD:3E:88:16:36:BA:2E:81:E9:22:2B:72:DA:86:0B:A5:DA:67:AB:BB:FD:B8:05:BB:8A:C3:3F"}}},"request":{"raw":"GET /platform/dev/logo_144.png?2.0.1775901316919 HTTP/1.1\r\nHost: krakenweb3vip.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 01 Nov 2023 13:05:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65424d1a-b5c\"\r\nexpires: Fri, 15 May 2026 13:51:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2908,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced","md5":"9a5a67a3b984ab223eef25ac3f419432","sha1":"5b07513414db526d86d32c3b8f42c0dbb62a8e71","sha256":"38055609c5d61aad696e97b746489c7f886b79cc069326312c6a111062019777","sha512":"4f610ac72700d9727ff6d32567b7d71a582a8c87eb067e4f33a8a910c66968514277df68c0794d1db6ce3a94ed0111003a71afd8cab40dcb3bc062dfb9f14bad","ssdeep":"","tlshash":"0c5119e6d89d003a4dd329b7b0f03e45fe7ab5fb5ab6330480972b3065552ab84d8327","first_seen":"2024-10-20T08:32:52.883488Z","last_seen":"2026-04-16T15:50:49.85434Z","times_seen":116,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-15","alert":"Sinkholed","trigger":"krakenweb3vip.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getMt5Amount?coin=xau","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.027Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xau HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:44 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6ce6f89b998ebe3109933bf8b0516746","sha1":"8351f4e844e5bf86ac91f8e51f0f75cd5110bd0f","sha256":"761c15f351a348e5f81112fd1dc65301aad6110e29947fb0df58a957d0a8cea0","sha512":"dc2ae27be02c5e0a2e8cc8cce5cbd0b2458e4eb8a5c0d72b9555307166a6241e2a1be290437ed6eac5f35911456bc58b0467ff7e580593f7677a4a14ada41c8f","ssdeep":"","tlshash":"0c9002552c188242a88700b6d606120400243165262892484c59912580c91662140858","first_seen":"2026-04-15T13:52:11.183505Z","last_seen":"2026-04-15T13:52:11.183505Z","times_seen":1,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"huobicfg.s3.amazonaws.com/currency_icon/eth.png","fqdn":"huobicfg.s3.amazonaws.com","domain":"huobicfg.s3.amazonaws.com","tld":"s3.amazonaws.com"},"ip":{"addr":"3.5.155.1","port":443,"asn":16509,"as":"AMAZON-02","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:44.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-ap-northeast-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 14 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"46:67:AE:AC:E3:C2:0D:C4:55:CA:3F:CB:B1:64:48:00:87:D7:E6:91","sha256":"18:7F:98:1B:96:0A:EE:5D:A8:54:AC:EE:61:CD:E2:1A:42:79:57:6C:BB:97:D4:54:5F:AD:91:87:86:84:69:D8"}}},"request":{"raw":"GET /currency_icon/eth.png HTTP/1.1\r\nHost: huobicfg.s3.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: ftTxLPThJshNG4fFz0EsY/YDHObuJHYm7bF4ES8QP6HWt/gmNjgA+IiV/DNPisnrwZioI6/lHzZ/TVq7/7a3dyehb5x+vFa7\r\nx-amz-request-id: 34TK8TNCXQQ23P2E\r\nDate: Wed, 15 Apr 2026 13:51:45 GMT\r\nLast-Modified: Wed, 23 Nov 2022 07:24:47 GMT\r\nETag: \"d8a57c2396575a058eb68a6c0e32caef\"\r\nAccept-Ranges: bytes\r\nContent-Type: image/svg+xml\r\nContent-Length: 616\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":616,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d8a57c2396575a058eb68a6c0e32caef","sha1":"6495d31828866f3dbabc4aad7c77e02ff457cfb8","sha256":"b05bb6169930a076c463a15280a165560bd30972e2599f71ca62f44c023d666c","sha512":"7bf60d4e2903aa9f5be3e9268a3379da63feb8a312534d17c48686419a4fb52993c0c75b3686ca004145502266f58d9fa39cf59f19b7ab9dee6b503b877c3f58","ssdeep":"","tlshash":"f1f0a498354a14204804c77b1adead3a625329ecb7a6c0c5bfd91b0b79c48eb3cb55cd","first_seen":"2023-05-08T20:49:32Z","last_seen":"2026-04-18T15:16:20.96673Z","times_seen":460,"resource_available":false,"data":null}},"time_used":1485,"timings":{"blocked":589,"dns":9,"connect":280,"send":0,"wait":301,"receive":0,"ssl":302},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"web3otc.org/ws/b6c097c2-c680-413d-bc75-fd0452b318dc","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:42.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"GET /ws/b6c097c2-c680-413d-bc75-fd0452b318dc HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://krakenweb3vip.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: 6RsdWWuqPs+lvbzvfhzYag==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx\r\nDate: Wed, 15 Apr 2026 13:51:44 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://krakenweb3vip.com\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: Rbl2bN0hiwDjOilkAdO3OWO6S4I=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-21T20:09:21.564057Z","times_seen":14029849,"resource_available":true,"data":null}},"time_used":2373,"timings":{"blocked":0,"dns":798,"connect":1053,"send":0,"wait":259,"receive":0,"ssl":1053},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"web3otc.org/api/common/getAllSetting","fqdn":"web3otc.org","domain":"web3otc.org","tld":"org"},"ip":{"addr":"103.254.151.237","port":443,"asn":133199,"as":"SonderCloud Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://krakenweb3vip.com/","date":"2026-04-15T13:51:43.440Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"web3otc.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 12:56:46 GMT","end":"Sun, 14 Jun 2026 12:56:45 GMT"},"fingerprint":{"sha1":"C7:79:DD:EA:BD:56:F4:A0:9F:C5:28:A7:46:DE:1F:74:9F:50:E6:55","sha256":"74:08:66:5D:CE:5C:2D:E5:22:64:6A:EE:49:25:41:14:13:C2:5E:B2:03:E9:FC:88:62:7B:D1:0E:96:D0:2C:9C"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: web3otc.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://krakenweb3vip.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 15 Apr 2026 13:51:43 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://krakenweb3vip.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14157,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (13798), with no line terminators","md5":"8006c3b5d2ccb45da3ffeff3d5376e4a","sha1":"c1057b05e06e78e2d73fcb998c6eb56d03349b6d","sha256":"a775e893d4de4f1defa162fc2560715b286aeabb607cb0a3a8b7dce0f8ef9e88","sha512":"3d41f7c63ac27161a2f04c41e0f22bd83e25cea6f892b8792f689ffa19afd55c0b5c5775e8c8cdd64e5474c478d166a2d259aaa5897da6fc5797640ee2e6b5b7","ssdeep":"192:NC/g3j+OSpQ+s4KD+RbG2c29FeBTKgdk7J6fSqQXu6zm2sttxsWcN4qNPyynZ++q:Tei25F2SRK2Cx/crRh8QyHam2NnG","tlshash":"2c52564932d8dc7d86da1ec580bb3e4a79dc3c7b9584dc55e4aaaf5c8499db3480f00e","first_seen":"2026-04-15T13:51:57.609338Z","last_seen":"2026-04-15T13:52:11.177258Z","times_seen":2,"resource_available":false,"data":null}},"time_used":282,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":282,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}