{"report_id":"cddae07d-ac3b-4ca0-a6ba-a076fb03f1d9","version":6,"status":"done","tags":[],"date":"2026-03-09T09:08:38Z","url":{"schema":"https","addr":"desktopapp-installer.online/","fqdn":"desktopapp-installer.online","domain":"desktopapp-installer.online","tld":"online"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.desktopapp-installer.online/","fqdn":"www.desktopapp-installer.online","domain":"desktopapp-installer.online","tld":"online"},"title":"AQUA Wallet — The Bitcoin Desktop Superapp","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"desktopapp-installer.online/","fqdn":"desktopapp-installer.online","domain":"desktopapp-installer.online","tld":"online"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-13T09:08:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"desktopapp-installer.online","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-02-12","domain_rank":0,"first_seen":"2026-03-09T09:08:39.349829Z","last_seen":"2026-03-09T09:08:39.349829Z","alert_count":0,"request_count":1,"received_data":1439654,"sent_data":496,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]},{"fqdn":"www.desktopapp-installer.online","ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":1439852,"sent_data":500,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]},{"fqdn":"pbs.twimg.com","ip":{"addr":"172.64.150.129","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2008-09-22","domain_rank":5001,"first_seen":"2012-09-06T00:07:06Z","last_seen":"2026-03-01T05:55:48.187386Z","alert_count":0,"request_count":1,"received_data":5123,"sent_data":494,"comment":"","tags":null,"fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.desktopapp-installer.online/","fqdn":"www.desktopapp-installer.online","domain":"desktopapp-installer.online","tld":"online"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2530d0a7f261fa2f196671b446edc8ce","sha1":"2ca67cbee9dbcad8f55a3932bb29244e6a54bdd3","sha256":"9b7e76e96f6c0e2ca81161463be4773da37269626753806aeb84bfb102318f9f","sha512":"cbbc6ddc5bde45d5f631e64afa7b10f2004bd93d1de9ab7387fc5f4c9d162aa5e685d186ae0b063b5da61726edd6c369f55b615986b6486bd2dc626188eaddf0","ssdeep":"","tlshash":"85316a1252b322663c4bb0bd5fbbd84d763a400bd8095450788ea18c6f70b6509f37cc","size":1739,"data":"","first_seen":"2025-10-22T17:11:21.585925Z","last_seen":"2026-05-15T01:16:49.593413Z","times_seen":452,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"desktopapp-installer.online/","fqdn":"desktopapp-installer.online","domain":"desktopapp-installer.online","tld":"online"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-09T09:08:15.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"desktopapp-installer.online","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Feb 2026 23:32:22 GMT","end":"Tue, 12 May 2026 23:32:21 GMT"},"fingerprint":{"sha1":"34:B9:7D:94:9E:4C:80:B9:B8:FA:9F:39:81:BE:F7:58:A8:1C:F4:37","sha256":"87:44:99:25:00:8A:72:C4:60:AC:3A:4A:37:06:E1:DD:45:DE:86:E2:DC:1A:AF:A3:C2:2B:8C:60:56:51:97:53"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: desktopapp-installer.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 307 Temporary Redirect\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/html\r\ndate: Mon, 09 Mar 2026 09:08:15 GMT\r\nlocation: https://www.desktopapp-installer.online/\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-id: arn1::wlnz2-1773047295694-69716e295889\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":1439322,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-15T21:20:42.527328Z","times_seen":15237629,"resource_available":true,"data":null}},"time_used":161,"timings":{"blocked":72,"dns":50,"connect":1,"send":0,"wait":10,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.desktopapp-installer.online/","fqdn":"www.desktopapp-installer.online","domain":"desktopapp-installer.online","tld":"online"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-09T09:08:15.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.desktopapp-installer.online","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Feb 2026 23:33:24 GMT","end":"Tue, 12 May 2026 23:33:23 GMT"},"fingerprint":{"sha1":"A9:F9:50:90:BC:98:A3:C0:6E:8C:CD:19:42:45:B7:AF:3B:E4:CC:59","sha256":"75:C8:47:D4:D2:99:B6:B3:21:04:19:13:ED:6C:FC:B7:99:A3:C8:92:2E:9A:2F:5D:39:55:A0:C1:15:B4:45:E2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.desktopapp-installer.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 155662\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Mon, 09 Mar 2026 09:08:15 GMT\r\netag: \"9875b91c17845ca7be7eaa51df4f1b35\"\r\nlast-modified: Sat, 07 Mar 2026 13:53:53 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::k6274-1773047295940-3683b82f8b41\r\ncontent-length: 290666\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":1439322,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (34664)","md5":"1bbd7436c7b7661dc4f4acbdf86a6553","sha1":"196c3b1c2e5276960813ce2717e2103775e3e463","sha256":"b7f71d28b9c334afb25c58d8f9f4279b56d42c820e811dcdf00f40c59e8f02ed","sha512":"86941afb8d7b1dda7308424a76206c324b0c64dfeebd1c49d9c004eed92d9a5d9d15096fe3ea0659d1403fcd554f838107be7f9fc2e04f15afc8e5b5f622ac1b","ssdeep":"12288:1VyvfjB/reWF2fWVW5ATVyvHRBDreWj2fWVW5AEVyvbkBlreWk2fWVW5AJVyvnH1:ezpEeW5ACP3EeW5AUdIEeW5Aer","tlshash":"782523b4146d18af28958c95e2502b2eef6d3f63a441c2de3f9d1ac35fdcc48d912a8d","first_seen":"2026-03-09T09:08:43.621913Z","last_seen":"2026-03-09T09:08:58.879972Z","times_seen":2,"resource_available":false,"data":null}},"time_used":463,"timings":{"blocked":212,"dns":131,"connect":1,"send":0,"wait":11,"receive":27,"ssl":78},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pbs.twimg.com/profile_images/1857669644678737928/1pBkBJjp_400x400.png","fqdn":"pbs.twimg.com","domain":"twimg.com","tld":"com"},"ip":{"addr":"172.64.150.129","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.desktopapp-installer.online/","date":"2026-03-09T09:08:16.637Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pbs.twimg.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Feb 2026 20:00:08 GMT","end":"Wed, 20 May 2026 20:00:07 GMT"},"fingerprint":{"sha1":"AC:FD:83:3A:3D:F5:A5:45:4D:5E:1F:FA:74:7D:3E:33:56:0A:DE:CC","sha256":"A1:51:11:1C:2B:2E:78:3C:5F:C2:17:F6:D8:E2:C7:83:7E:87:8D:4E:C5:36:01:53:CB:BA:08:38:D7:2A:5A:E1"}}},"request":{"raw":"GET /profile_images/1857669644678737928/1pBkBJjp_400x400.png HTTP/1.1\r\nHost: pbs.twimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.desktopapp-installer.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 09 Mar 2026 09:08:16 GMT\r\ncontent-type: image/png\r\ncontent-length: 4305\r\nperf: 7402827104\r\nserver: cloudflare\r\nexpires: Mon, 16 Mar 2026 09:08:16 GMT\r\ncache-control: public, max-age=604800\r\nlast-modified: Sat, 16 Nov 2024 06:16:51 GMT\r\nx-transaction-id: 91bd19da37e0987c\r\ntiming-allow-origin: https://twitter.com, https://mobile.twitter.com\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\nx-envoy-upstream-service-time: 14\r\ncross-origin-resource-policy: cross-origin\r\norigin-cf-ray: 9d7de2537d10eebd-WAW\r\nstrict-transport-security: max-age=631138519; includeSubdomains\r\nvary: origin\r\nx-served-by: t4_a\r\naccept-ranges: bytes\r\nx-tw-cdn: CF\r\ncf-cache-status: HIT\r\nx-cache: HIT\r\ncf-ray: 9d98ef245dbda0f0-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4305,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit colormap, non-interlaced","md5":"2855ed95d037620dbd0134f7a462ae4f","sha1":"949ef8004126fab83db1b6144de73489ca727c24","sha256":"9d0f6d0774d089ece927598456a51f77838ecee87eaac99384620800ddbe8886","sha512":"d6296b4e9824d136ea36cf05ab6ef1236fea048e872708fae2d09c982f0dfdc447c027f1e8892555d67e82b83ac122bc584c0d2748f6edb78d3245a83693abdb","ssdeep":"96:X8eIkpqFQi8XbHbHHCkukukqqinroIIMxFuHlnmuCjG2:XxzMt8XH7ukLqqUTLx6JCn","tlshash":"58917dd6129fdef8f59a36be557c0bf16b34614310321a36d913e02f4c986b606215ec","first_seen":"2026-03-09T09:08:43.627466Z","last_seen":"2026-03-09T09:08:43.627466Z","times_seen":1,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":0,"dns":44,"connect":1,"send":0,"wait":45,"receive":1,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}