{"report_id":"dbceb08b-0be8-45ec-b5b2-6893c9740dc1","version":0,"status":"done","tags":[],"date":"2026-07-01T05:00:59Z","url":{"schema":"http","addr":"tangemdesktopapp.live/","fqdn":"tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.tangemdesktopapp.live/","fqdn":"www.tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"title":"Tangem Wallet — Desktop, Browser Extension \u0026 macOS Download","dom":{"size":13886222,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (65513)","md5":"04fc7053df1698f03cae8540129674f8","sha1":"55f3749fd1a6ea5bbce417d6695fa951e682ac96","sha256":"0e645717601e828ff1d3426b0c1ae7646270e2b0858c98a56d225bb71f5c34b3","sha512":"5ccd2f284784a96612582ab768e4b725e4b9d926ed5e2e01302dd2709d1935926ae19e3319b75253a12ef81fad43fd1009dfea8c3e4ecdd3f8da2e039a842f32","ssdeep":"49152:6PwEsMZFEsOPmEs4dDEsWnUEs0pJEsfyL5OY3EpGYvGYFW5ybDxUZYcAV5aTZrC1:2","tlshash":"6de63321ab7aad7f089553be202e3bc82eb47bd3c48cc0fa67d655d3a1dde80c526514","dom_hash":"domhashcf6c09a6535118e82314c1bc32066618","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"tangemdesktopapp.live/","fqdn":"tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-05T05:00:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-01","alert":"Sinkholed","trigger":"www.tangemdesktopapp.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-01","alert":"Sinkholed","trigger":"tangemdesktopapp.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.tangemdesktopapp.live","ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-07-01T04:03:31.133971Z","last_seen":"2026-07-01T04:03:31.133971Z","alert_count":2,"request_count":2,"received_data":27773002,"sent_data":1012,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"tangemdesktopapp.live","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-07-01T03:55:27.975871Z","last_seen":"2026-07-01T03:55:27.975871Z","alert_count":1,"request_count":1,"received_data":359,"sent_data":490,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.tangemdesktopapp.live/","fqdn":"www.tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"33286ff94f986f04221b64404ceb6782","sha1":"cf7598dec50b861e625e19d7473ed2df9152b300","sha256":"c81402569b6fd2536c584d3c88d1bb5e9081d8ce8d499d8a26c0dc70ca6144cc","sha512":"e9790418a63c51047798573ea4d9bfff60a00ff7e1bef6b42e51bc8cb989b2ef53752600ac97f7eb7c6770b4372fd0c436ae3da8ea9dd6ba72a033ecf549d353","ssdeep":"","tlshash":"bd015927222233707cd9d5dca8b6d98e39bb500ae40a0090a08e844c1834bc544f7bdc","size":843,"data":"","first_seen":"2026-06-08T13:08:16.104529Z","last_seen":"2026-07-02T03:11:46.286076Z","times_seen":220,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.tangemdesktopapp.live/","fqdn":"www.tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0e08c50aee774deb1e46a719d344bc8e","sha1":"6caa3d44c1644f6ee0435564d2590bf0f1996a47","sha256":"e124ab1fd8f42da12adb89f84a12775fbb383189862f1f7cb6d04fe043e26bad","sha512":"41e9b53f5c3f03fcbc5c1769a726bb519a81724c3ec688349efd4615b5283233e103e01325184ff9711720295832537a0c6d799d07360260d6b12c9a636f2593","ssdeep":"","tlshash":"38011289fc42b07696863228723bfa07516312251884a8336afdc36fef32d87811368c","size":838,"data":"","first_seen":"2026-06-20T08:09:32.763188Z","last_seen":"2026-07-01T05:01:02.941642Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"www.tangemdesktopapp.live/","fqdn":"www.tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-01T05:00:27.170Z","timestamp":1782882027170,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tangemdesktopapp.live","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jun 2026 23:32:58 GMT","end":"Sat, 26 Sep 2026 23:32:57 GMT"},"fingerprint":{"sha1":"44:33:CB:BC:F5:04:D0:51:15:51:7B:30:D8:E2:2C:93:1D:A0:C8:2D","sha256":"0A:6A:BD:86:BE:8C:28:CF:98:72:5C:00:B1:F8:49:95:04:09:15:0C:8B:6B:AC:42:96:D0:DF:8E:E7:E0:64:B7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.tangemdesktopapp.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccess-control-allow-origin: *\r\nage: 72817\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Wed, 01 Jul 2026 05:00:27 GMT\r\netag: W/\"b7ecfaa386913402cc5bce52fa074ec9\"\r\nlast-modified: Tue, 30 Jun 2026 08:46:49 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::gffsj-1782882027261-46eae34dbec0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13886018,"size_decoded":8895791,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (65498)","md5":"825284e6656859eb675ec0a867316bfb","sha1":"42b910a18adefa121b08b00f60e5964a1063172c","sha256":"3f3c8e37d7eb099a05adb767daf395f9d3f875f01c3b8c75f71d3ff4ceb01bbf","sha512":"ae50dc9e195e15a84536dae2935f8cac271714dbe3127abce7ee3e7dd2a61d5d1d25e14f1666e444a1688c98c22ea076b1535234c30354ed15bd3c1257b82b7a","ssdeep":"12288:O6VyvXIBDreWk2fWVW5AfVyvnXBJreWx2fWVW5AsVyvX2BDreWy2fWVW5AxVyvG:OWPwEeW5AMZFEeW5AOPmEeW5AT","tlshash":"a02502b4312d997f2c6398e5d38c3a1cde193ad3dc1082ed6f56219227caee49d6760c","first_seen":"2026-07-01T04:03:36.374401Z","last_seen":"2026-07-01T05:01:02.938792Z","times_seen":3,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":54,"connect":1,"send":0,"wait":10,"receive":0,"ssl":29},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-01","alert":"Sinkholed","trigger":"www.tangemdesktopapp.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.tangemdesktopapp.live/","fqdn":"www.tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"ip":{"addr":"64.29.17.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.tangemdesktopapp.live/","date":"2026-07-01T05:00:27.641Z","timestamp":1782882027641,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tangemdesktopapp.live","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jun 2026 23:32:58 GMT","end":"Sat, 26 Sep 2026 23:32:57 GMT"},"fingerprint":{"sha1":"44:33:CB:BC:F5:04:D0:51:15:51:7B:30:D8:E2:2C:93:1D:A0:C8:2D","sha256":"0A:6A:BD:86:BE:8C:28:CF:98:72:5C:00:B1:F8:49:95:04:09:15:0C:8B:6B:AC:42:96:D0:DF:8E:E7:E0:64:B7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.tangemdesktopapp.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.tangemdesktopapp.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccess-control-allow-origin: *\r\nage: 72818\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Wed, 01 Jul 2026 05:00:27 GMT\r\netag: W/\"b7ecfaa386913402cc5bce52fa074ec9\"\r\nlast-modified: Tue, 30 Jun 2026 08:46:49 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::gffsj-1782882027647-2e6c7d869afe\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13886018,"size_decoded":8895791,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (65498)","md5":"825284e6656859eb675ec0a867316bfb","sha1":"42b910a18adefa121b08b00f60e5964a1063172c","sha256":"3f3c8e37d7eb099a05adb767daf395f9d3f875f01c3b8c75f71d3ff4ceb01bbf","sha512":"ae50dc9e195e15a84536dae2935f8cac271714dbe3127abce7ee3e7dd2a61d5d1d25e14f1666e444a1688c98c22ea076b1535234c30354ed15bd3c1257b82b7a","ssdeep":"12288:O6VyvXIBDreWk2fWVW5AfVyvnXBJreWx2fWVW5AsVyvX2BDreWy2fWVW5AxVyvG:OWPwEeW5AMZFEeW5AOPmEeW5AT","tlshash":"a02502b4312d997f2c6398e5d38c3a1cde193ad3dc1082ed6f56219227caee49d6760c","first_seen":"2026-07-01T04:03:36.374401Z","last_seen":"2026-07-01T05:01:02.938792Z","times_seen":3,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-01","alert":"Sinkholed","trigger":"www.tangemdesktopapp.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tangemdesktopapp.live/","fqdn":"tangemdesktopapp.live","domain":"tangemdesktopapp.live","tld":"live"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-01T05:00:27.057Z","timestamp":1782882027057,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tangemdesktopapp.live","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jun 2026 23:32:59 GMT","end":"Sat, 26 Sep 2026 23:32:58 GMT"},"fingerprint":{"sha1":"2B:D8:8C:B3:A8:7F:5C:F1:42:EA:3D:F2:CD:06:56:B1:79:B5:F4:84","sha256":"5A:6E:DF:23:A3:14:0A:85:80:26:B9:9D:EE:39:86:02:25:EF:09:61:39:B3:41:2C:93:84:9C:7D:58:6C:1A:FC"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: tangemdesktopapp.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 308 \r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/html\r\ndate: Wed, 01 Jul 2026 05:00:27 GMT\r\nlocation: https://www.tangemdesktopapp.live/\r\nrefresh: 0;url=https://www.tangemdesktopapp.live/\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-id: arn1::cjg2h-1782882027148-4653668d7fa1\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"308","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-03T04:08:26.983741Z","times_seen":16931406,"resource_available":true,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":4,"connect":1,"send":0,"wait":11,"receive":0,"ssl":77},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-01","alert":"Sinkholed","trigger":"tangemdesktopapp.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}
