{"report_id":"d684489b-388c-4735-a7f0-1c515eab78d3","version":6,"status":"done","tags":[],"date":"2026-03-28T05:57:46Z","url":{"schema":"http","addr":"www.hk-ledger.com","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":0,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"final":{"url":{"schema":"https","addr":"www.hk-ledger.com/","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"title":"Ledger Hardware Wallet Official - Upgrade Your Crypto Experience | Bitcoin Ethereum Cold Wallet","dom":{"size":66116,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (693)","md5":"29e7c23d02144179c7fd5bc6130ccf77","sha1":"f454306dcd698fb1a08ab6031d8f4bb10452e3d7","sha256":"1e47f6d47b0646febcef263ccc293def46efa3f73f55ae80b0bed165f16d821d","sha512":"feff9b380db2e9f81cd3c3c2917f94a2c679b13581d209ad17f68a26dffec23f7aea84d4f1c26f327167db611609d992194d1b3f4b79511f953533f0054757a8","ssdeep":"768:7yGPss72XPbrAOAlAGAqfKk0p1z91C+2Nr9GM8MDQ3VdNhoEJze5:XEs72Xzrl8b70LvC+mwMt2dNhoEJze5","tlshash":"4053a362a0f5253a018341e9a9e06faf7ee19017d24e019472ad43bf3fd2ec1c977a5d","dom_hash":"domhashb8c89790bf1f25721228f7ec44ed9083","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.hk-ledger.com","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":0,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-02T05:57:46Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"cdn.cn-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.cn-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.cn-ledger.com","ip":{"addr":"35.241.96.249","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"domain_registered":"2025-10-06","domain_rank":0,"first_seen":"2026-03-05T19:58:19.633852Z","last_seen":"2026-03-28T05:46:50.683518Z","alert_count":2,"request_count":2,"received_data":284,"sent_data":896,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.hk-ledger.com","ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"domain_registered":"2026-03-27","domain_rank":0,"first_seen":"2026-03-28T05:46:49.786713Z","last_seen":"2026-03-28T05:46:49.786713Z","alert_count":20,"request_count":10,"received_data":502966,"sent_data":4612,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.cn-ledger.com","ip":{"addr":"154.41.93.240","port":443,"asn":174,"as":"COGENT-174","country":"United States","country_code":"US"},"domain_registered":"2025-10-06","domain_rank":0,"first_seen":"2026-03-05T19:58:19.635562Z","last_seen":"2026-03-28T05:46:51.21782Z","alert_count":2,"request_count":2,"received_data":73774,"sent_data":1076,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/main.js","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"introduction_type":"scriptElement","is_inline":false,"md5":"7802f6c5011a23d1e24105dec49f13ee","sha1":"15d7198c95e0681d7fe264363a62f4ea103b291f","sha256":"aef9739312d12e3727a305bc46d8d2e8b964adcf663655b696e83ff609b7b184","sha512":"c136c6154f7d0a6e3a5b7772cd5ec415c12f4936252768fe013edcedf52f3a1b46e607903bf65464bf3cfc70240b025f203991d9630646ca8049d385381e2d78","ssdeep":"384:vSv0KVpQaMFvQJHM11EO1ah85SgojRTHQ3j+:C85SgCRK+","tlshash":"2fb2612aa1b73031857b71be5bcb62883231204b7406dd5a3e1dc7491f92b614eb6aed","size":24869,"data":"","first_seen":"2026-03-20T16:11:00.275125Z","last_seen":"2026-04-18T18:01:12.568799Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"introduction_type":"scriptElement","is_inline":true,"md5":"4abbe569ee780db5d6a33527abc57235","sha1":"ef2b923a7529b9082b468c9b556449d1c532ff91","sha256":"d65f9fcd0f9486c9ba7761a917a91c6a74ecb2bf525b55a5c68724aba9a78b9f","sha512":"abd2cb4795117acff2faf1b9e404834a81c17134446711d40b5ef8061a79f4ba9ecf454a49945134909056b18171cfd0d5b2aad06749aba4c4dfc811c319ce71","ssdeep":"","tlshash":"c221296d24fd5531903325b54b3f72047333a1e7358c9d88b66d83514fd176a9661b08","size":1150,"data":"","first_seen":"2026-03-28T05:46:55.244177Z","last_seen":"2026-04-18T18:01:12.577278Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.hk-ledger.com/","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T05:57:24.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:25 GMT\r\ncontent-type: text/html\r\nlast-modified: Sat, 28 Mar 2026 03:00:51 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74463-1024a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":66122,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (693)","md5":"196bf49e9c1802674100299958e0c183","sha1":"daa4d93f5d8190fd5ee46424b8b0a85896362448","sha256":"4e6dd8fc0967a7c00619485f4337b3305eec6cab15184c6641037125a2411d84","sha512":"16034da3d7ef680880e74e087072ff3bfd6e21d6c5802a2aaf605dcb1b4ff5870ef3617e771fd9cfda27725290fd7ee417984d74adfa25151c597ce89ef29e90","ssdeep":"768:nyGPss72XPlrAOAFA+AafOIgp1z914+2Nr9GM8MDQ3VdNho6Jzen:TEs72X9rFUbTgLv4+mwMt2dNho6Jzen","tlshash":"6053a462a1f5253a018341e9aae06faf7ee19017d14e019472ad43bf3fd2ec1c937a5d","first_seen":"2026-03-28T05:46:55.232638Z","last_seen":"2026-03-28T05:57:47.553756Z","times_seen":2,"resource_available":true,"data":null}},"time_used":913,"timings":{"blocked":366,"dns":0,"connect":180,"send":0,"wait":181,"receive":0,"ssl":184},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cn-ledger.com/images/ledger-flex-unboxing-guide-video.mp4","fqdn":"cdn.cn-ledger.com","domain":"cn-ledger.com","tld":"com"},"ip":{"addr":"154.41.93.240","port":443,"asn":174,"as":"COGENT-174","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:25.784Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.cn-ledger.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2024","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 01 Mar 2026 03:00:00 GMT","end":"Sat, 30 May 2026 02:59:59 GMT"},"fingerprint":{"sha1":"8D:7C:18:B3:91:3D:66:00:14:70:0F:11:17:1E:73:D6:E1:96:0E:B8","sha256":"47:28:1B:A8:44:EF:EF:15:7B:23:96:E0:D5:47:DF:F8:2F:D1:D6:D9:97:2D:95:43:EF:38:D6:08:AE:E9:E9:44"}}},"request":{"raw":"GET /images/ledger-flex-unboxing-guide-video.mp4 HTTP/1.1\r\nHost: cdn.cn-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: openresty\r\ndate: Sat, 28 Mar 2026 05:57:27 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 8912106\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\nage: 191679\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"ledger-flex-unboxing-guide-video.mp4\"; filename*=utf-8''ledger-flex-unboxing-guide-video.mp4\r\ncontent-md5: eNe2GDt9JOFITefGFbk06w==\r\ncontent-range: bytes 0-8912105/8912106\r\ncontent-transfer-encoding: binary\r\netag: \"lgxc1ljNGDRTkIxXn-DkrA1zyaUO\"\r\nlast-modified: Sat, 29 Nov 2025 08:37:33 GMT\r\nx-log: X-Log\r\nx-m-log: QNM:wldsg119;QNM3:1\r\nx-m-reqid: bd2rnnZG1\r\nx-qiniu-zone: as0\r\nx-qnm-cache: Hit\r\nx-reqid: d-kAAACPgGMSb3wY\r\nx-svr: IO\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":40162,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"720a9336991b96b75746fcc426ee60c1","sha1":"e0404fb01700c6498e55e14583699be3c613b671","sha256":"0de6a665673300b6289c4767d0c12253f65e29d0333d0fc1446f7bdefe2531f9","sha512":"657797b56af859e441c8a2f54fd98d3568b24b749e1078161ef9dfb7feefc86f3f4750117350fb8554aa6903cd64a332092277b2f2042fc4125e72eb672dbc70","ssdeep":"768:u/597KlXcCHTm0+9SiKWm5IsVErYWk4zk2tjd28O+fxK6p7+5Q8uv:uP7ycCaFcWmSsCo4zjlvs54v","tlshash":"a603f11dce3d77b43fa4f2b1683a9f655a284a341e2f180d912f3c897e48ff01199668","first_seen":"2026-03-28T05:57:47.556285Z","last_seen":"2026-03-28T05:57:47.556285Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3031,"timings":{"blocked":1186,"dns":254,"connect":259,"send":0,"wait":294,"receive":362,"ssl":674},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"cdn.cn-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/1.jpg","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:26.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /index_files/1.jpg HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:26 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 27 Mar 2026 04:12:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c603bb-8bc1\"\r\nexpires: Mon, 27 Apr 2026 05:57:26 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35777,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1149, components 3","md5":"034622cdac71d700ee96f6e3e795997f","sha1":"dc91f3dbef2e77bf212a156e252f4e378d6cc5e3","sha256":"ab704f9682efe7d2e92b71842e6a1bd9dfdf5cb95539fa12d188b7366d8e9e75","sha512":"fe59f399ad65d0ed95b7d8bc24cdf14dcbc61e105b97f65b894a423d61060a31b5d3eee7e6ae0c987cdb4777d6fbd0f2d66c2a0589bb54e2869c28a68ac6f9a5","ssdeep":"768:dmmmmmmlfdTkGZnKmmmmm8Iedom3gAGOERGUJofwq06lmVOZi7tV8ib:1pedom7GPIUJofs+AOCf","tlshash":"f7f29dff3319b505c80807faae26631a1e2b3d951dcdb09bc61d0ac6d59c5b92814fe3","first_seen":"2026-03-28T05:46:55.215401Z","last_seen":"2026-04-18T18:01:12.576831Z","times_seen":4,"resource_available":false,"data":null}},"time_used":293,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.cn-ledger.com/images/apple-touch-icon.png","fqdn":"www.cn-ledger.com","domain":"cn-ledger.com","tld":"com"},"ip":{"addr":"35.241.96.249","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:26.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.cn-ledger.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 23 Mar 2026 11:00:00 GMT","end":"Sun, 21 Jun 2026 10:59:59 GMT"},"fingerprint":{"sha1":"3D:DC:ED:B1:FE:AF:12:F9:6A:6C:60:1B:48:16:B6:CD:CF:EA:66:45","sha256":"D5:FE:D6:3D:D9:E1:01:23:D5:AD:7C:AF:9A:B8:F9:48:65:74:C6:8E:C6:62:A2:38:B2:46:30:46:84:26:CC:3C"}}},"request":{"raw":"GET /images/apple-touch-icon.png HTTP/1.1\r\nHost: www.cn-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T00:23:19.144214Z","times_seen":13915726,"resource_available":true,"data":null}},"time_used":798,"timings":{"blocked":-1,"dns":129,"connect":227,"send":0,"wait":210,"receive":0,"ssl":232},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.cn-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cn-ledger.com/images/ledger-flex-unboxing-guide-video.mp4","fqdn":"cdn.cn-ledger.com","domain":"cn-ledger.com","tld":"com"},"ip":{"addr":"154.41.93.240","port":443,"asn":174,"as":"COGENT-174","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:27.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.cn-ledger.com","organization":""},"issuer":{"commonName":"TrustAsia DV TLS RSA CA 2024","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Sun, 01 Mar 2026 03:00:00 GMT","end":"Sat, 30 May 2026 02:59:59 GMT"},"fingerprint":{"sha1":"8D:7C:18:B3:91:3D:66:00:14:70:0F:11:17:1E:73:D6:E1:96:0E:B8","sha256":"47:28:1B:A8:44:EF:EF:15:7B:23:96:E0:D5:47:DF:F8:2F:D1:D6:D9:97:2D:95:43:EF:38:D6:08:AE:E9:E9:44"}}},"request":{"raw":"GET /images/ledger-flex-unboxing-guide-video.mp4 HTTP/1.1\r\nHost: cdn.cn-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=8880128-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: openresty\r\ndate: Sat, 28 Mar 2026 05:57:27 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 31978\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\nage: 191679\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"ledger-flex-unboxing-guide-video.mp4\"; filename*=utf-8''ledger-flex-unboxing-guide-video.mp4\r\ncontent-md5: eNe2GDt9JOFITefGFbk06w==\r\ncontent-range: bytes 8880128-8912105/8912106\r\ncontent-transfer-encoding: binary\r\netag: \"lgxc1ljNGDRTkIxXn-DkrA1zyaUO\"\r\nlast-modified: Sat, 29 Nov 2025 08:37:33 GMT\r\nx-log: X-Log\r\nx-m-log: QNM:wldsg119;QNM3\r\nx-m-reqid: BFi6HVcuK\r\nx-qiniu-zone: as0\r\nx-qnm-cache: Hit\r\nx-reqid: d-kAAACPgGMSb3wY\r\nx-svr: IO\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31978,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"1531a7384816d2ebb863b159dffc4d1a","sha1":"fd46e3e449dc32df79ff3d83ebfb581bfebabb4c","sha256":"0eea34235446dd9d3df5197cda25b33fda7e0de20f9902f57083242a53e66475","sha512":"3bd6352ae11f37d0668851920e5585db59b22a5c2c7c0ca2afce44ad0b3e9aff9efe0fca9a21d77f704313112c9c9a00b512e172baac01ba237ab86854cb0ad3","ssdeep":"768:WusqDB+D9mFC+V9Zd6LT0bvgMXfBDNOne67rVJgZ:1/B+D9mFC+V9ZdWTUgMXfBDNOvVmZ","tlshash":"58e28096ef519c64c9c70db05b6b0b8036e3fa04ce8d17af2f7e9540cc5225be8e8994","first_seen":"2026-03-20T16:11:00.272617Z","last_seen":"2026-04-18T18:01:12.57317Z","times_seen":7,"resource_available":false,"data":null}},"time_used":928,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":913,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"cdn.cn-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/videos/product-demo.webm","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:28.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /videos/product-demo.webm HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:28 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-19T00:16:02.037006Z","times_seen":490986,"resource_available":true,"data":null}},"time_used":180,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/style.css","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:25.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /index_files/style.css HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 28 Mar 2026 03:18:31 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74887-1d33a\"\r\nexpires: Sat, 28 Mar 2026 17:57:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":119610,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"c78406f957556980d050552afba67f17","sha1":"e834bf3fb5f1f19076d015200425d234ebe29ea4","sha256":"92859756fdd0b58f162411a4d440e2b92253e6b550184a487982fff8342ddeb8","sha512":"29cc288625b254956ef4d838b4217340f49cd4661c3f2979418d2c843d1b9bba3e60f3c100a44316fe590b701a6cddc9e36bca36b40a94217e9b42c8609aad20","ssdeep":"1536:G6Gq5GIL7oQRdE2oWnUr+GfsBlgv3bHzY/soy5FG3oyQZUQsrujdUQsMzoJTs8en:K+Blgv3bHs/o","tlshash":"f7c35245a67354a4b82f65781fee964a3278a447c90ece6c3ecc310d8f893f855a1f9c","first_seen":"2026-03-28T05:46:55.223879Z","last_seen":"2026-04-18T18:01:12.576095Z","times_seen":4,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/2.jpg","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:26.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /index_files/2.jpg HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:26 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 27 Mar 2026 04:29:29 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c607a9-c53e\"\r\nexpires: Mon, 27 Apr 2026 05:57:26 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50494,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1141, components 3","md5":"db36a6f53177fb9dca3ff359a6381a92","sha1":"4fe4dcfd2c48069f5a7f8cd91009ee84a92160d8","sha256":"4046e21376378cee8a010f06643d3928160e78e82b692d7c85076ba4f70ab3d8","sha512":"808133082bf35f58cf766203a6d1bb6c099ba25e77482b4b2c785cb553b22139d3d179488f03de8a2113864920b22c9a6ac4c8832efd41b0f3acfcfb5760e296","ssdeep":"768:WTfztquHDLtinHybduOg0RKjCN3HhXONPmwVnbCQWZVHWSlJF/ga6HsEQNDhWmMB:ofbvtinHyc25HIg+bC3/2UJFTisEQN6","tlshash":"3b33cfb6338a2155d3013ffadda25392aa736d96c8888187d9c808c6d8ce6757c5dfc3","first_seen":"2026-03-28T05:46:55.210282Z","last_seen":"2026-04-18T18:01:12.56965Z","times_seen":4,"resource_available":false,"data":null}},"time_used":484,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":484,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/images/video-poster.jpg","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:25.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /images/video-poster.jpg HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:25 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-19T00:16:02.037006Z","times_seen":490986,"resource_available":true,"data":null}},"time_used":491,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":491,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/main.js","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:25.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /index_files/main.js HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 27 Mar 2026 04:23:13 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c60631-618f\"\r\nexpires: Sat, 28 Mar 2026 17:57:25 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24975,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"7802f6c5011a23d1e24105dec49f13ee","sha1":"15d7198c95e0681d7fe264363a62f4ea103b291f","sha256":"aef9739312d12e3727a305bc46d8d2e8b964adcf663655b696e83ff609b7b184","sha512":"c136c6154f7d0a6e3a5b7772cd5ec415c12f4936252768fe013edcedf52f3a1b46e607903bf65464bf3cfc70240b025f203991d9630646ca8049d385381e2d78","ssdeep":"384:vSv0KVpQaMFvQJHM11EO1ah85SgojRTHQ3j+:C85SgCRK+","tlshash":"2fb2612aa1b73031857b71be5bcb62883231204b7406dd5a3e1dc7491f92b614eb6aed","first_seen":"2026-03-20T16:11:00.275125Z","last_seen":"2026-04-18T18:01:12.568799Z","times_seen":7,"resource_available":true,"data":null}},"time_used":499,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":499,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/ledger-nano-s-plus.webp","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:26.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /index_files/ledger-nano-s-plus.webp HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 56951\r\nlast-modified: Fri, 27 Mar 2026 04:23:13 GMT\r\netag: \"69c60631-de77\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56951,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"5e001022cca299c37e1b33ae6d0f5a63","sha1":"609e9a693c7932a42eb37d2106a5baba8e4a682a","sha256":"0ec2fb3d0cbd10953070548a8dc51f081e3f62ab3215b6a44e7e363c78b5ec03","sha512":"e2fa310c9c84762f3a4979fcf5379d4525d702084417f13777a9ae16c6e3576a83ef69f84f3834220c75f9f82d151161b401ec4b18140536c817dd1cb03c3172","ssdeep":"1536:rs11CQggc1E7ztf++/MT5gzG2GcrQUIfmnF4W56:61FggWIztdk5gyDcrBikF4WE","tlshash":"7343027b5bf710a2a6e2446cdd5c9907eb2d06a2e4e304b6b980d88f2f5c9f071c6718","first_seen":"2026-03-20T16:11:00.270349Z","last_seen":"2026-04-18T18:01:12.571172Z","times_seen":7,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":202,"receive":69,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/ledger-flex.webp","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:26.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /index_files/ledger-flex.webp HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 96300\r\nlast-modified: Fri, 27 Mar 2026 04:23:13 GMT\r\netag: \"69c60631-1782c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96300,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"e31306cb8310382d6bc592540cfc3d27","sha1":"e51a32fe98d30442d007ff1cdd0e1b8bb687380d","sha256":"8a711a325f0eeb4f6ee4557388429b40d8d8c4b8baf26759c26c3c490afdc18a","sha512":"c58a2936a40be6e6afee9209c67daf329509e9d4cdc8fe1fec98f50eddbe65dfd3a363fc52134db136231d435dac4b1a5982f8deb2d1c20e3fef3846563fd34b","ssdeep":"1536:DgnhEiF5FnCybPIEaqXnFs98Cd7qndvM3Kg3MjoWGcNBGGlUb3ArppcE7pKjlW:DqhE4fLbPICXnwdmndcao8FlSQdmEcjs","tlshash":"62931233dbc2f7909a61965dbd79964a3c82a57e75271edc47b478cf38028936078b0c","first_seen":"2026-03-20T16:11:00.271633Z","last_seen":"2026-04-18T18:01:12.571986Z","times_seen":7,"resource_available":false,"data":null}},"time_used":470,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":339,"receive":131,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.hk-ledger.com/index_files/ledger-Wallet-banner.webp","fqdn":"www.hk-ledger.com","domain":"hk-ledger.com","tld":"com"},"ip":{"addr":"23.27.53.37","port":443,"asn":149440,"as":"Evoxt Enterprise","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:25.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.hk-ledger.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 14:29:53 GMT","end":"Thu, 25 Jun 2026 14:29:52 GMT"},"fingerprint":{"sha1":"A6:92:2F:E2:CB:D0:E0:43:25:E9:5D:6A:01:93:B5:EE:63:90:8C:DC","sha256":"73:E6:A1:A6:57:2B:3F:A4:FC:4D:BA:DE:05:B2:19:9E:B7:73:8E:35:FE:F9:51:55:EA:EA:17:75:63:B5:68:82"}}},"request":{"raw":"GET /index_files/ledger-Wallet-banner.webp HTTP/1.1\r\nHost: www.hk-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:25 GMT\r\ncontent-type: image/webp\r\ncontent-length: 48309\r\nlast-modified: Fri, 27 Mar 2026 04:23:13 GMT\r\netag: \"69c60631-bcb5\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48309,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 560 x 635, 8-bit colormap, non-interlaced","md5":"6257eceafbb9719eab5fc6f2b5eded8f","sha1":"f208e9ce3469257c75103d913f17ddad59c27a13","sha256":"812f21cd7f09a06a566d714f8961c9b554875b77f86b12254b82e1636de1b263","sha512":"cf63e29d8c51d85f3ef3c8e62dd01d5d07192d4a548d194c768a421b29a42cb8dfc27a2a7dce3be3a3c237dd46d89eceaa80f03969677f7624aa4f80bba7622a","ssdeep":"768:I1rFN4r+gnCWdw4ifpGtRlRMYxWWtAb8FOBj/illbe8dksMnU1ZeYY7YAsK2pcFo:Hr+O7ntFMYxftoqksaUL5AsRiRUhh","tlshash":"5a23f2c8a7ed8dd16146b5d205b231c806f0b78d9e28b3cd9cd67272d723e2ca7c416a","first_seen":"2026-03-05T19:58:24.393334Z","last_seen":"2026-04-18T18:01:12.567843Z","times_seen":8,"resource_available":false,"data":null}},"time_used":488,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":183,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-28","alert":"Sinkholed","trigger":"www.hk-ledger.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.hk-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.cn-ledger.com/favicon.ico","fqdn":"www.cn-ledger.com","domain":"cn-ledger.com","tld":"com"},"ip":{"addr":"35.241.96.249","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.hk-ledger.com/","date":"2026-03-28T05:57:26.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.cn-ledger.com","organization":""},"issuer":{"commonName":"LiteSSL RSA CA 2025","organization":"TrustAsia Technologies, Inc."},"validity":{"start":"Mon, 23 Mar 2026 11:00:00 GMT","end":"Sun, 21 Jun 2026 10:59:59 GMT"},"fingerprint":{"sha1":"3D:DC:ED:B1:FE:AF:12:F9:6A:6C:60:1B:48:16:B6:CD:CF:EA:66:45","sha256":"D5:FE:D6:3D:D9:E1:01:23:D5:AD:7C:AF:9A:B8:F9:48:65:74:C6:8E:C6:62:A2:38:B2:46:30:46:84:26:CC:3C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.cn-ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.hk-ledger.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 28 Mar 2026 05:57:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T00:23:19.144214Z","times_seen":13915726,"resource_available":true,"data":null}},"time_used":769,"timings":{"blocked":-1,"dns":129,"connect":211,"send":0,"wait":212,"receive":0,"ssl":217},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-28","alert":"Phishing Block","trigger":"www.cn-ledger.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}