{"report_id":"e14a40ab-0aed-409a-82b5-bc129f8f28db","version":6,"status":"done","tags":[],"date":"2026-04-14T13:25:17Z","url":{"schema":"http","addr":"co8f.cc","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":0,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"co8f.cc/#/","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"title":"kraken","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"co8f.cc","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":0,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-19T13:25:17Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"admin.co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"co8f.cc","ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":16,"request_count":16,"received_data":2646152,"sent_data":7332,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"assets-cms.kraken.com","ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2000-04-03","domain_rank":1356241,"first_seen":"2022-12-08T22:08:25Z","last_seen":"2026-03-29T16:33:21.230811Z","alert_count":0,"request_count":9,"received_data":366262,"sent_data":4565,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]},{"fqdn":"admin.co8f.cc","ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":1,"received_data":181,"sent_data":599,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"co8f.cc/","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"662838dd039f00ef2a956c09d7c6a5eb","sha1":"b5c4b7206bd32e560e7b9de4bca4befd94e98251","sha256":"e991a6b9df3014387e1e7c000e1257143163f9a64191ad538515e49f185959c0","sha512":"1bfeb6ff39d76c9962b184f583ef95ab4b1a4a47b352347e236608850bfead1abb879ec8907bcc65f3fc1edd693e94d7f8b7ffe57b393b188376ecffaf5ecf7f","ssdeep":"","tlshash":"64b0112c28a32a0282e33028888f200c3230823b23200b00bc0c82c02f20a223b02a8c","size":92,"data":"","first_seen":"2026-04-14T13:25:24.149707Z","last_seen":"2026-04-14T13:31:42.175618Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fp.min.js","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3942569e6f300fde4d5f31a2ea1211e6","sha1":"fe36aab0760d1ed4bad8976fccd90ec02b6b85e4","sha256":"cd115750d0e8ef97fcf9f65d1e795712ceecbea1c0211f3f602a9f23b5740570","sha512":"509cbb5bfe3c5b324d900c7aa0c103776cd83c6118f5ca15e4cfbe3b46a8671acc6b3951595aa2a1f1a42af92e766552bb84a009fa1e1ab5854595d8b0cec019","ssdeep":"384:zxcveZQQET0RFqpexXD+9vwKfeHSMRw5+pCqNFaiE8E0QIQfJxf0fo7Qzzf2dmZd:aZQqpetsgkc9NwlJxfwPzUFLg","tlshash":"bb0305c8b2c3b06d127368b9453f6046b23a7d55746d8842c623e1957ca9e2e913bfec","size":39195,"data":"","first_seen":"2025-06-11T16:17:55.646767Z","last_seen":"2026-04-14T13:31:42.134127Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/assets/index-BGMXevfn.js","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6ff72317baa63d16438f86ecafb81ff8","sha1":"63184b135a0cd449961806c5a88031440ea3a66c","sha256":"9ff87e0b9093e2a7f90deb2b94fcba71cbe4ef61dbfca02c73df9d504bf8a668","sha512":"7e9428edaa98cabcaf8cf8a63484aa0425db9d689eef28acbef1d30fe7c421f43ae85231e66a48107512492b78d3e3a2ecaa887d7c45cd2dac5c2f1e2be9aa84","ssdeep":"6144:XgVq6pC15hraeduF7CpJgGB/YXi6cIo6iQKEAiqcrED5KjaJ:QV9CZa+uyIo6iQKEAiqc8J","tlshash":"350529a81321b27c2d1bd263d624e9389165fb64ce19dbe5f075901a08eede4067b3fc","size":846039,"data":"","first_seen":"2026-04-14T13:25:24.124795Z","last_seen":"2026-04-14T13:31:42.172602Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"co8f.cc/","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-14T13:24:55.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:56 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 13 Apr 2026 14:01:37 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69dcf741-48f\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1167,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"b7f0a5ec1b36eeb3e6f0bcb5533df48b","sha1":"beaf84f4f0d745fd4418baa7bd92cb800e69e5d1","sha256":"addc34230b89ef65a302d5f37fd9c0151318032930c9d14a2d0a8caf3a993e7e","sha512":"ebf3e5e6b6b6434a4b1eeea483d0b732690c260e37f980cca56bfd7bf8b0ec209e900be57c8ac1c64517e1a782a448a4bf7bc2531c526aff091484eaaeddb29e","ssdeep":"","tlshash":"f221ee0668d0c9057361027a8dd5f909afa3ff0bc708a844b4ce90761fc0e828b9b7b9","first_seen":"2026-04-14T13:25:24.098225Z","last_seen":"2026-04-14T13:31:42.16898Z","times_seen":2,"resource_available":true,"data":null}},"time_used":551,"timings":{"blocked":225,"dns":16,"connect":101,"send":0,"wait":101,"receive":0,"ssl":105},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/Kraken-Product-Regular.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/Kraken-Product-Regular.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 36956\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-905c\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":36956,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 36956, version 1.0","md5":"8b52afb321221a790f038d2c160a9f05","sha1":"1d48477f01daa3f6a79c3107d896e099e569de97","sha256":"2d797ad69240551e7ab710bbbc14a9598a9cd4f61b5b280789aec834dbb740fc","sha512":"85ba77f242018cfade55d2fd163cdf4998dcccdffc112340aad7a3c7b9b1c39b5bdc8db916b25e67a0d6c719aa7c7c24cf7903468d16d4f552322fce76160a65","ssdeep":"768:sKAfNwqj/q2HHsTH27wh26J7siRmB5VRFzi1AEUcoSsht59vyoghqfk:sdvgW8g6J7LUFW1GS2t59vtcr","tlshash":"def2f21ba180e731ef8c66d12d78404ec0786a1af502b1cec6f6f21a457900fa2b1bd5","first_seen":"2024-08-19T15:19:59.826011Z","last_seen":"2026-04-14T13:31:42.082511Z","times_seen":144,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/2fc87486a7a2e3b3311e5549c00c77640d1ff1f4-1616x1076.png?w=1536\u0026fit=min\u0026fm=webp","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.283Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/2fc87486a7a2e3b3311e5549c00c77640d1ff1f4-1616x1076.png?w=1536\u0026fit=min\u0026fm=webp HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/webp\r\ncontent-length: 68592\r\nsanity-inflight-current: 0\r\nsanity-inflight-limit: 200\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\ntraceparent: 00-647fc03a783f21684e69cd44a010be28-b2e5d298c854318b-01\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nlast-modified: Wed, 31 Dec 1969 23:59:59 GMT\r\nvary: origin, accept-encoding\r\ncf-cache-status: MISS\r\nset-cookie: __cf_bm=wvTnnIwls7fkDP4gLYRs7ieMZWg3mqIP1_eAas50NK4-1776173097.276321-1.0.1.1-XNRyBpFh5AHDNdg19cj7Uc2rzukTmGGwpfpG3ksKglEpdNMobSRWPimbo9gqNK7_2QSZHQIOb9ehYeVyKvksf8mqkrcZn5lJ1mJ8HmCJACRxXsyBnKYVrFBXr1yPfyz_; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\n_cfuvid=B3Y4DJ6Vg8uvGfu3.Cw9cNGfULCxH0HfSXNF4EHcne4-1776173097.276321-1.0.1.1-QTEK0fdLWnGflYEBRldtR4h_CwZMp4XV2kUBlbb7mjQ; HttpOnly; SameSite=None; Secure; Path=/; Domain=kraken.com\r\nreport-to: {\"group\":\"cf-csp-endpoint\",\"max_age\":86400,\"endpoints\":[{\"url\":\"https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=IikMf2V2bRWcISltuyWdxocOO5fLZFVVTC95ZDUFlcg-1776173097.276321-1.0.1.1-M4NkisfCz58gKH1eELeRnDQaAJ7.6qmCsRhRhRQwgxxUYrL.ed6dHg7UFoe1WXqAkE_1OwucVVY_cBaW55KS11XG6KLoyOew37043UwZU73xsh6X6.hvOnvh4df_fWLTJC8LP05J5Zsqsu01mzLdrN4MUtsbr.q3bQfNcvx6IMoZXQMwwqIwRVBtFYM8qOPn\"}]}\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=IikMf2V2bRWcISltuyWdxocOO5fLZFVVTC95ZDUFlcg-1776173097.276321-1.0.1.1-M4NkisfCz58gKH1eELeRnDQaAJ7.6qmCsRhRhRQwgxxUYrL.ed6dHg7UFoe1WXqAkE_1OwucVVY_cBaW55KS11XG6KLoyOew37043UwZU73xsh6X6.hvOnvh4df_fWLTJC8LP05J5Zsqsu01mzLdrN4MUtsbr.q3bQfNcvx6IMoZXQMwwqIwRVBtFYM8qOPn; report-to cf-csp-endpoint\r\nserver: cloudflare\r\ncf-ray: 9ec308a1fc89b50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":68592,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"1b54e0d3d36ea1865f9892fc1cfbafaf","sha1":"291558770fd9849dd1f98aa001e54287342262bb","sha256":"400f6289abcbf7d67b994031e45b5f7bd5c112ce8fd012350c18a95efb6d10c2","sha512":"ba950b9592d547cde15f78e28d011027b4ecc0c6e6a673831fb2f736b274ec879f94740726d63bfab0fab2bd86a364799cc2b1d112023dd1a15df1befd3c5291","ssdeep":"1536:Y8s6gapUKOR2ohDgJtQQbb1d7nyk03RvLixKfozzenxuxP:Y8wkaWK2f7n0LU3ens","tlshash":"ec63f0685763362aa2f0ca6479b4c05e2ab616180c7577604f3bf7b4f01e809f89f1c7","first_seen":"2025-06-04T17:05:58.589842Z","last_seen":"2026-04-14T13:31:42.090143Z","times_seen":4,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/vite.svg","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /vite.svg HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-14T21:56:15.771175Z","times_seen":487716,"resource_available":true,"data":null}},"time_used":101,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":101,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/IBMPlexSans-Medium.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/IBMPlexSans-Medium.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 50348\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-c4ac\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":50348,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 50348, version 1.0","md5":"c4b185e25a4dde85a29f902cd5ce5360","sha1":"5b10dd69beff0adc267f13e4be65c4913fa5f22b","sha256":"93cde5cb70bd771eb4da4454e87018953019eb0b30a9d223ee2016682de4c392","sha512":"8a1023b0a3b4cd3473067eb98f62e4c22a814c5f3d3a2bab39a98642e291deb874b5a83e8b3e44874707b631eb8fde3309cd0cbe61c8dcf57db31664c5d5f881","ssdeep":"1536:EbWaMdiQ6D7emrheqmcjFAKGojbXrzciknHt:EbWbdihZhxHj7XLzX8Ht","tlshash":"db3302c681c352c8d349587d6602f32aa7c93c8675466aa78fdc4d9e4e34db3ab605cc","first_seen":"2023-04-07T06:09:05Z","last_seen":"2026-04-14T13:31:42.166457Z","times_seen":14,"resource_available":false,"data":null}},"time_used":165,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":140,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/IBMPlexSans-Medium.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/IBMPlexSans-Medium.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 50348\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-c4ac\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50348,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 50348, version 1.0","md5":"c4b185e25a4dde85a29f902cd5ce5360","sha1":"5b10dd69beff0adc267f13e4be65c4913fa5f22b","sha256":"93cde5cb70bd771eb4da4454e87018953019eb0b30a9d223ee2016682de4c392","sha512":"8a1023b0a3b4cd3473067eb98f62e4c22a814c5f3d3a2bab39a98642e291deb874b5a83e8b3e44874707b631eb8fde3309cd0cbe61c8dcf57db31664c5d5f881","ssdeep":"1536:EbWaMdiQ6D7emrheqmcjFAKGojbXrzciknHt:EbWbdihZhxHj7XLzX8Ht","tlshash":"db3302c681c352c8d349587d6602f32aa7c93c8675466aa78fdc4d9e4e34db3ab605cc","first_seen":"2023-04-07T06:09:05Z","last_seen":"2026-04-14T13:31:42.166457Z","times_seen":14,"resource_available":false,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":144,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/IBMPlexSans-Bold.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/IBMPlexSans-Bold.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 47712\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-ba60\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":47712,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 47712, version 1.0","md5":"875de5047556e7c822519d95d7ee692d","sha1":"1a64a1c8ab7d24c2c092de9d9c47eea8e5907770","sha256":"47d0880913058312bf847a8f2d95af7ed6adc65b0cf0ad9ea166fdd08cfa622d","sha512":"3189da3bbf4df0d4b85eceff459e43a7624f543b1409bca14f12ba24014ffbdb8f402be5f735b7905cb5bd453e91efdf1e4880e29e213ab593b2cdddcc5133ca","ssdeep":"768:UMrNZQdtGcx+dmFeJVNxuGCy1SeLem5sL7OmbinN3QOpVKzppqmkMeTdY:fvQdtGmODVJn1RCm5a7OiMN3R6zppxk+","tlshash":"ff23f12e05915324fd628130e6bb21de7de419f530a8bfca930a31fef975900d78999d","first_seen":"2023-04-11T16:15:50Z","last_seen":"2026-04-14T13:31:42.096155Z","times_seen":6,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":153,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"admin.co8f.cc/socket?ident=cc3a645ed66bed135b90b805ff3c8a75\u0026platform=2","fqdn":"admin.co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.co8f.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 Apr 2026 13:05:01 GMT","end":"Sun, 12 Jul 2026 13:05:00 GMT"},"fingerprint":{"sha1":"EC:CF:22:CA:56:7D:5B:62:DB:7C:A2:BF:0B:DC:F7:17:79:5C:BE:0E","sha256":"F3:23:35:8D:2C:3E:CA:D4:EF:1F:6B:EA:F0:EA:DF:33:27:97:37:2F:60:E7:03:93:78:CA:D0:8F:46:03:67:CA"}}},"request":{"raw":"GET /socket?ident=cc3a645ed66bed135b90b805ff3c8a75\u0026platform=2 HTTP/1.1\r\nHost: admin.co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://co8f.cc\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: Wacb8fDwZsu7LdR2rOmzJA==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx\r\nDate: Tue, 14 Apr 2026 13:24:58 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: OkgOrO3fkm0p48rYb2MGxLb3Do8=\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T21:55:28.330607Z","times_seen":13758114,"resource_available":true,"data":null}},"time_used":930,"timings":{"blocked":0,"dns":310,"connect":411,"send":0,"wait":102,"receive":0,"ssl":416},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"admin.co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/d0f1f312fb60e79892d6c61b3bce79b41c2c9986-1024x1024.svg","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.949Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/d0f1f312fb60e79892d6c61b3bce79b41c2c9986-1024x1024.svg HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/svg+xml\r\nsanity-inflight-limit: 200\r\nsanity-inflight-current: 1\r\nvary: origin, accept-encoding\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nlast-modified: Fri, 09 May 2025 10:15:52 GMT\r\nage: 1576871\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\ncontent-encoding: br\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=XQlQe.Mh8hooi3laH7.2AingxwJcE0.lFZrQC8Y7_YQ-1776173097.022094-1.0.1.1-wcOZVmX0GUjuQwDk8LZzUo9kDrjQpbLRCJk8B_NVEaW4D1W6L.Z97Y_h3ZpRI3AnS0IhLKS_u57vJb8ExAlbyMmCI0LqjZuPKlu9iq5ZTF7097UBoJ_slNZjQT3u9.U7; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nreport-to: {\"group\":\"cf-csp-endpoint\",\"max_age\":86400,\"endpoints\":[{\"url\":\"https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=8bB5w4voD.6UscPI5ObicEI3aH_I6s6uJbo9Lod29MA-1776173097.022094-1.0.1.1-NUvcLuCwfGlZ4Zxe2ZRACeyvlqmMVFSVsU.ydcyoe6bHwbvsyW4848FYK3SfVUyJz0hDaWlw3vpL4Vu0pAbnKy9XIGfhfNMbPW8ihE4yVjfIgLc8N2r5xs86qDA9PtwRBB5pCGKdUGSHIIwhEs9P_i3HvsCpiEt5LLoQo5LglmCVjTU.bUc0G2wTe.Zj9VOx\"}]}\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=8bB5w4voD.6UscPI5ObicEI3aH_I6s6uJbo9Lod29MA-1776173097.022094-1.0.1.1-NUvcLuCwfGlZ4Zxe2ZRACeyvlqmMVFSVsU.ydcyoe6bHwbvsyW4848FYK3SfVUyJz0hDaWlw3vpL4Vu0pAbnKy9XIGfhfNMbPW8ihE4yVjfIgLc8N2r5xs86qDA9PtwRBB5pCGKdUGSHIIwhEs9P_i3HvsCpiEt5LLoQo5LglmCVjTU.bUc0G2wTe.Zj9VOx; report-to cf-csp-endpoint\r\nserver: cloudflare\r\ncf-ray: 9ec308a06acdb50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1937,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7e25c21befa05925577965fb906870b6","sha1":"119a7c0e1b9386f049f1b6096238f00bd1c80b34","sha256":"ca91bbec180f787373b68367c9ff112779fbfe1df3bcc8b99f563afeab57c8c3","sha512":"60085d425a1f8580829d83963620b2a672b830f9c8f729cbedce02705550f7aa11de8f0a3489482e58344c4036c828f8ece76926971adc11e16b88bad023ddfd","ssdeep":"","tlshash":"9941f25c725de91ac3e8c5ece621d4ef43a685dbce89c449c381bf4d54919ef9c0a212","first_seen":"2026-03-20T04:44:56.113064Z","last_seen":"2026-04-14T13:31:42.135425Z","times_seen":3,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":72,"dns":21,"connect":1,"send":0,"wait":12,"receive":0,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/Kraken-Brand-Regular.otf","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/Kraken-Brand-Regular.otf HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 78152\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-13148\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78152,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"04b19f61b033674bcdac5476c33c222e","sha1":"b72fa16cbab7dc7328f86049c042b74b99b48fc4","sha256":"f99c908ec03034895c01e9d2628b443d1131744789698b2ea6e1a9a08f3e562f","sha512":"155d4e2c02b6ed96415aa938eb4a3db553022fb816bfd5b4f2f009491210d1a60130339fa05a487fd3eb7895f7fe8e724967c7a8caf3ab7208763078fd707393","ssdeep":"1536:AkHqDDxs9J8qm6kHUvxfyK9rwYn9xyneqFNc2EaCO23BHshtr0W2sfvB1:ADhsn8p3ifyiBgdFN2O0HQtr04fv/","tlshash":"2873ae44fa09d704df824f3a6ee5d3309351baaaaf0b5707b2b2f5643dc61e42d462c6","first_seen":"2025-01-14T07:41:48.176114Z","last_seen":"2026-04-14T13:31:42.148591Z","times_seen":38,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":194,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/IBMPlexSans-Regular.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.600Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/IBMPlexSans-Regular.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 56184\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-db78\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56184,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 56184, version 3.65","md5":"bb07700dc58a6d40a80c0632e0e09c38","sha1":"1588c41e9e71a29264e9a841b5cd0d74a37b337e","sha256":"dd6cd52bf15d2f5bf7519cd3d876ae2d37306e77d1a95a63e867e6c95ab9c49e","sha512":"ee27f031ed8288646668cdaf197f10415361709e64f8bd877dd902523cece4a7b537542610908a0fb295b34eeaacf2daee5c166540f285298b93133693790b04","ssdeep":"1536:yPpIdbTCFoOKOaWLFhTK7QGOf/Vh4UaW6UVbByf2e:yPmRpv7QGOfcbUTW","tlshash":"5d43f178ce667025bc87b458db35003e976c5b8c74ef1ea0a29e8f41b6ce10e731a536","first_seen":"2023-04-10T19:06:25Z","last_seen":"2026-04-14T13:31:42.140714Z","times_seen":263,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/index.css","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /index.css HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69734143-dc966\"\r\nexpires: Wed, 15 Apr 2026 01:24:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":903526,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text","md5":"12b276830077c134e9449c2d93e53b75","sha1":"97427277f40e158a9affe794b860d5b57b3eeed4","sha256":"b194dc77642cc70f63d5476cb57db78a1e0ecfd30b24aab33b94470710b4d1a9","sha512":"3c519b73793506ba525c13d209c169719faacd700ea524d078cf1725072fa545062b4f9cdb2bea446d98d297d5ffde302beaf0f35252cd9b04dfdafbe82d1988","ssdeep":"6144:hg8p2tB6RY+bNlrzsI4orbu449xtxtR1fgqSlHgv:hg8TRY+bNlrzHrbu4dlHq","tlshash":"60152021bda31c1a3817c4bea7e96252632570c3c92abea47bdb1500dfc51ab1ff1b45","first_seen":"2026-04-14T13:25:24.121043Z","last_seen":"2026-04-14T13:31:42.105888Z","times_seen":2,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fp.min.js","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fp.min.js HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69734143-991b\"\r\nexpires: Wed, 15 Apr 2026 01:24:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":39195,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (38663)","md5":"3942569e6f300fde4d5f31a2ea1211e6","sha1":"fe36aab0760d1ed4bad8976fccd90ec02b6b85e4","sha256":"cd115750d0e8ef97fcf9f65d1e795712ceecbea1c0211f3f602a9f23b5740570","sha512":"509cbb5bfe3c5b324d900c7aa0c103776cd83c6118f5ca15e4cfbe3b46a8671acc6b3951595aa2a1f1a42af92e766552bb84a009fa1e1ab5854595d8b0cec019","ssdeep":"384:zxcveZQQET0RFqpexXD+9vwKfeHSMRw5+pCqNFaiE8E0QIQfJxf0fo7Qzzf2dmZd:aZQqpetsgkc9NwlJxfwPzUFLg","tlshash":"bb0305c8b2c3b06d127368b9453f6046b23a7d55746d8842c623e1957ca9e2e913bfec","first_seen":"2025-06-11T16:17:55.646767Z","last_seen":"2026-04-14T13:31:42.134127Z","times_seen":50,"resource_available":true,"data":null}},"time_used":313,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":313,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/assets/index-BGMXevfn.js","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /assets/index-BGMXevfn.js HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69734143-ce8d7\"\r\nexpires: Wed, 15 Apr 2026 01:24:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":846039,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (37274)","md5":"6ff72317baa63d16438f86ecafb81ff8","sha1":"63184b135a0cd449961806c5a88031440ea3a66c","sha256":"9ff87e0b9093e2a7f90deb2b94fcba71cbe4ef61dbfca02c73df9d504bf8a668","sha512":"7e9428edaa98cabcaf8cf8a63484aa0425db9d689eef28acbef1d30fe7c421f43ae85231e66a48107512492b78d3e3a2ecaa887d7c45cd2dac5c2f1e2be9aa84","ssdeep":"6144:XgVq6pC15hraeduF7CpJgGB/YXi6cIo6iQKEAiqcrED5KjaJ:QV9CZa+uyIo6iQKEAiqc8J","tlshash":"350529a81321b27c2d1bd263d624e9389165fb64ce19dbe5f075901a08eede4067b3fc","first_seen":"2026-04-14T13:25:24.124795Z","last_seen":"2026-04-14T13:31:42.172602Z","times_seen":2,"resource_available":true,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/assets/index-QfLHFo0q.css","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /assets/index-QfLHFo0q.css HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69734143-4e86c\"\r\nexpires: Wed, 15 Apr 2026 01:24:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":321644,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"1e973ab775749c3bfa7de5329b8bbd42","sha1":"b8cd4ae6b347539dce8a9de4857540fd99acfd59","sha256":"dcde89185e4eb46d12016e23e88f1f9473676b8f11b96b086fcdb9279c637aba","sha512":"bf11a6511e1f6b5252b4b1e3c4ed98a2bee75bc292859331add758684872e487b478713e585ddc637ffad72010e29682fb82c30acd73bf5e93d3e6a724f0c3b6","ssdeep":"1536:2YM26oQER4Awx8DKScKTyWoTWZ5fCGtOCRhHT1Jg5Dz3jqroc0lLUXo7RJocxu1:RVxZ5Pr0Txu1","tlshash":"43644f98f718542f7877dcf762dcdcd4520a7a87cd026aaab66372041af36b32db2141","first_seen":"2026-04-14T13:25:24.127416Z","last_seen":"2026-04-14T13:31:42.142486Z","times_seen":2,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/ae0f5614beee281a183f6e0d76be380c04e14a70-1024x1024.svg","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/ae0f5614beee281a183f6e0d76be380c04e14a70-1024x1024.svg HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/svg+xml\r\nsanity-inflight-current: 0\r\nsanity-inflight-limit: 200\r\nvary: origin, accept-encoding\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nlast-modified: Wed, 23 Jul 2025 10:02:36 GMT\r\nage: 2413209\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\ncontent-encoding: br\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=hbq8GeIUM30dUPM9LfOEy3RvZKYfmUH3XJ45BTXpG_k-1776173097.0178905-1.0.1.1-CwmVLY5hBBcBZKYqzoDsx8plr.C6F_KcCov026gRfx7cNsQOzaTOTjexWQbi8F9FhGkpyohsOG0EvXagDVCixw9uQklFt1MUPGhAoeBYCp0V97BSatM8jOh8AVzgZYkQ; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nserver: cloudflare\r\ncf-ray: 9ec308a05abfb50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":1758,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"97e947e218ba7ad8ddd19dd1b400f544","sha1":"7d88045587557a82a51bc4cd7ff215babe41a8cd","sha256":"1d2cdd81590e22bcd2f2ce6877ed77a73698dfc0f6e7fbc28e2de40e07954bbf","sha512":"1f52fa819f52fc4f54cc6195334fa6bd2022dffb9076a256aef9fb0fa8c3513c1c776a25eeb2016135bc492d17df251c4194ae6080af418f0d42a390c31c651b","ssdeep":"","tlshash":"263143acb1e8f79ee29d87fcbb25e099813305ee9549491ae1ccbf9d08b149e340c146","first_seen":"2026-01-18T20:41:49.922445Z","last_seen":"2026-04-14T13:31:42.174165Z","times_seen":5,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":59,"dns":13,"connect":3,"send":0,"wait":12,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/2076c63aed807d996a31e56337a41aac9e319918-480x480.svg","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/2076c63aed807d996a31e56337a41aac9e319918-480x480.svg HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/svg+xml\r\nsanity-inflight-limit: 200\r\nsanity-inflight-current: 0\r\nvary: origin, accept-encoding\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nlast-modified: Mon, 20 Oct 2025 14:17:52 GMT\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\ncontent-encoding: br\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=Dh2Ff4VP4qnwckuECC8FZiZB5MNCvXoRLLvTBhXUovI-1776173097.0285583-1.0.1.1-Fb6jRgRMMxaVnLTEg3urKLdPFnVaUp9VuJ0vgv7r.ryGjhyyw7rx3iuNhqJqwtKlMvKgUSbh4CASCrCcvUm0u.a9ABJaQrQqCrY93whabp9omM8mobPqYpxUE1CTP2dN; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nserver: cloudflare\r\ncf-ray: 9ec308a06ad7b50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":1311,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"818a51f9daad2f3fc0923bfb22fd6f8e","sha1":"051ddf6e88fdfe9e7777bfb15cbc5e3ffa334360","sha256":"2a846ebe3ff1ffeedd1672ba3c99af202be84e97c8f6a2665ea397cc6c7da1bf","sha512":"fc259119530f264546fc2236497b7b3bca2286928a45805b530bfd0afe3747eb92978bdc9abf44437a3b2456b56025172d198670c7ecda05cc230ed9a9896cac","ssdeep":"","tlshash":"7121e2bdd2426ec5cc458bc56e6141b7291b03fe85d48f8ed2a09735f6140dafc84ee6","first_seen":"2026-04-14T13:25:24.131779Z","last_seen":"2026-04-14T13:31:42.14608Z","times_seen":2,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":65,"dns":10,"connect":3,"send":0,"wait":56,"receive":0,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/Kraken-Brand-Bold.otf","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.277Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/Kraken-Brand-Bold.otf HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 79740\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-1377c\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79740,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"1f12b2447ed376b95b8397c7fc807e38","sha1":"1a5887629b5274c324153992c05043a9af976ae9","sha256":"edf7228ef442f2b4a7023bd838bca1fba67be33b33fe7ca552d0cc4a3cdfdf9f","sha512":"1a98aa8814614a4261e0e3450dbabcbe3e2c6b87d2ee5a903305b58bf796f9fd43aa37fcf97e19cdb756ee8124dbb65edc3a74ba8480e68927b8a658264de3da","ssdeep":"1536:T0Yn5DDxs9lmIjasTIBDgkz1ugaMaZ7sTHcWTr8U1:Rhs6IjasTsFz1taMA7U8Q8c","tlshash":"f673ae89ba05db00c9c34f36bda3d33153727a2adf1e2617b279a5d878d22c41f66185","first_seen":"2025-01-30T06:36:55.962091Z","last_seen":"2026-04-14T13:31:42.136426Z","times_seen":42,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":131,"receive":49,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/00d9685fa4627cc0abd8a2957e8efcfdffbbc2dc-1024x1024.svg","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/00d9685fa4627cc0abd8a2957e8efcfdffbbc2dc-1024x1024.svg HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1198\r\nvary: origin, accept-encoding\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nlast-modified: Fri, 09 May 2025 10:15:53 GMT\r\nage: 2089508\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\ncontent-encoding: br\r\nx-varnish-age: 13\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=0yRYITIpkjOK15Ep2Vnw2Ye8jKZxOdaK3OXiywjdbV4-1776173097.0209384-1.0.1.1-IQmegW5ThjthpzFKP806JPvG2bxH5AceMCafj8crufR6Waxlkkp7VSUA2DG6V1IviIsJSk34A8kzwy4_ZrBT.n1DReK7XKfEI9JoyiroRYMn8Bkz5xkP4bs5gKe4ZOJM; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nserver: cloudflare\r\ncf-ray: 9ec308a06ac6b50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":3362,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b48ec3e9dd0160388ddac5615ac4a995","sha1":"2e45d569fdfccd21c635a1cb83e977bce75833c5","sha256":"e84a9490dec19d2d56feb9d366156365231e31e951f69f7cf28117d3f817cbfb","sha512":"7935bf3031361f81c61446c3ec96c6994618f0c2f07e2fe7a42136509f19d5556477cdfdaad318a4b354dfae638f9b236b84fdb53181c11663a754b55f14eeb5","ssdeep":"","tlshash":"166163ed6ba8f1cc439d86cdbf75e6c9c92755dec68845c5c098bf2820a24af6d0c842","first_seen":"2026-01-18T20:41:49.927542Z","last_seen":"2026-04-14T13:31:42.11482Z","times_seen":5,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":65,"dns":16,"connect":0,"send":0,"wait":9,"receive":1,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/c8a90889d470969a2f7864a0bfa1814c28b21310-1024x1024.svg","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/c8a90889d470969a2f7864a0bfa1814c28b21310-1024x1024.svg HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 580\r\nsanity-inflight-limit: 200\r\nsanity-inflight-current: 1\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nage: 2286158\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\ncontent-encoding: br\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nlast-modified: Fri, 09 May 2025 10:15:56 GMT\r\nvary: origin, accept-encoding\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=uisqx2xMe1r1LU7zwMyRbJ.PULqG3Ob5EKEcU87t0g8-1776173097.0173416-1.0.1.1-J2_NDSrLk5CjLqTjOvYzUCQoKRPJXDBNV45LNCl03FVEzO53Xfhx7x3tOtxzonk9M.Ynn2fxCkKIaBnlG33lY0w7pNpqf0csSAEW6ElDp_y1ox9JGCq3WwqbnSS.UAMx; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nserver: cloudflare\r\ncf-ray: 9ec308a05abbb50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1463,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b82c1aa735f39faffacf8ef046b3b4d4","sha1":"4f3d64f6a281d956158b9675b0ade7340cefa4cf","sha256":"8ba305568241c3a8b732f5f8096b9381b6992814c6962b17eb426ad1a3953416","sha512":"bf0ee6a9b78b9a6c4c5de47c6ab11f4c35e88ca65521291de5183bb50c81ce7084111f691d7b2a6621acc863fccf6606e4bcfa35b8a75b24539ca68e7d40a897","ssdeep":"","tlshash":"b531e26c726de506c3e8d6e4663594ce43b286cbc549c84cc365ef8964c59fbdc0a202","first_seen":"2026-03-20T04:44:56.106404Z","last_seen":"2026-04-14T13:31:42.145056Z","times_seen":3,"resource_available":false,"data":null}},"time_used":135,"timings":{"blocked":60,"dns":14,"connect":3,"send":0,"wait":12,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/e17a901363782f8871427c96db8f98087190a7c6-480x480.svg","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:56.958Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/e17a901363782f8871427c96db8f98087190a7c6-480x480.svg HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/svg+xml\r\nsanity-inflight-current: 0\r\nsanity-inflight-limit: 200\r\nvary: origin, accept-encoding\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nlast-modified: Tue, 02 Dec 2025 19:05:43 GMT\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\ntraceparent: 00-b9cfec492423a56a4f788a6f031af904-c39b772417e9f99e-01\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\ncontent-encoding: br\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=doFneWUGiKpCHHIdEyPn2XewsGTKaKwPHO.ra3b3xns-1776173097.0227737-1.0.1.1-yQldjx9vt7LvgcHtkyug2GRAIqWcmff692CRL8C9rDuGbNUTcj4zwOWVStWPTdx8m5II.8jdx1Q_zmZrtgkt1H.ix2I8a4_etcNZalUbATxhmoIjkzvf3usvXwpYCnbQ; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nserver: cloudflare\r\ncf-ray: 9ec308a06aceb50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3511,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8d0e5c9e39f11b74c2c95362310595bf","sha1":"7dfe9070cba478ef1d66e14bc65553209f4cacbd","sha256":"b946f8e22d52adba0335e75522de14ce52faae043ba52d3731eab46be0db37c4","sha512":"345fb1da421383f72bceb33c932625a4fb1329525404f46f6f31c04a356a662c85c2f1940f0ceba00651a9cd48c691ee85b4bebce22501e4c48215669e04de0d","ssdeep":"","tlshash":"cd71858de7999ccacd8e82cafb1681963c3382f7fd864bc6d246cb1964848569c381d4","first_seen":"2026-04-14T13:25:24.139452Z","last_seen":"2026-04-14T13:31:42.12159Z","times_seen":2,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":63,"dns":12,"connect":3,"send":0,"wait":48,"receive":0,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/Kraken-Product-Medium.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/Kraken-Product-Medium.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 37128\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-9108\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37128, version 1.0","md5":"edf0df2d1378e39073417bbc91f42470","sha1":"30682c17381e680f233d075ebc18291649ddf432","sha256":"bb9f64211722a2e83aa7a86bc01f8cf2449a984873f1514d49d7e66df897f3f9","sha512":"38e6c50b7a8089496c8201baf87b17b1b61f4a8a3cb4e4d3e960fa211dba764d179fad585da7d608a4a7fc000873da94d7383da6a3f7c6d49bdabf4a49ccacaa","ssdeep":"768:SBX/M0n5OmDBOu79k79j8ZYs/3gC4vXgX+ZTBRxkdiv3h0Ha4u:8PM05OKE7CZBvgC44mbkM3+aL","tlshash":"53f2f222fbb87c8b8006a7c5ceb3391bcab4042ad9af1d43ff3b6558171c549187d2a4","first_seen":"2024-08-19T15:19:59.825193Z","last_seen":"2026-04-14T13:31:42.147739Z","times_seen":145,"resource_available":false,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/Kraken-Product-Bold.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/Kraken-Product-Bold.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 37080\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-90d8\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37080,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37080, version 1.0","md5":"f604ca22836261453150898a86613e59","sha1":"c5955668324743436f16e02275e4dd15d9f496b4","sha256":"eaf856bd3277e2dd318937117903e21d701cadbdbdecc054b6d07c4838e9827f","sha512":"9789217c3b0697c43cce8e8b6b52ee3763ea2ed03e5436d22379219f9c561ed82dd17e39065fcabc01d99d8de322959bd6d3918f969fafc870c1646221d7878a","ssdeep":"768:ljpujB5SjGnweNd8Lh/zvsPetri/wH23nYfFMiuz:ljdjGnVNasPetYwruz","tlshash":"d5f2f2293c900c0bd6778eb67f986821d5548cdfad8f2df85bb69033787145e53d4096","first_seen":"2024-08-19T15:19:59.824416Z","last_seen":"2026-04-14T13:31:42.12623Z","times_seen":43,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/b904b70ac4cab516b0ac3d95b82f44a75caf6c13-2424x1614.png?w=1536\u0026fit=min\u0026fm=webp","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/b904b70ac4cab516b0ac3d95b82f44a75caf6c13-2424x1614.png?w=1536\u0026fit=min\u0026fm=webp HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/webp\r\ncontent-length: 86868\r\nsanity-inflight-limit: 200\r\nsanity-inflight-current: 0\r\nvary: origin, accept-encoding\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nlast-modified: 2025-10-02T09:53:08.345Z\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=EdNDwMD0jWIiFqevyek8Ai7a_uTMeX9sC_Ej7.cGcjU-1776173097.2754781-1.0.1.1-BNBtRqmFXVv1vs.0bq2CbGRliS_Fgx5j5cBQSLA2WECigBjH.cdmJKu95TAAjDoLWBLC9ZgsqqFWRm8w9Tdnt6XdOOxIWVT_g3GIHe0FT2kfoiTD6TUFSWN84NLR0OrE; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nserver: cloudflare\r\ncf-ray: 9ec308a1fc85b50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":86868,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f4edffb56cd38dca2b7eeec9e816743a","sha1":"e067497a9f37355a3d4229b1889647115516113a","sha256":"72cfad221971f9fdf2339aa61bd4415df5db560b7167de66f3abe89665395f85","sha512":"54a887fbd298cfbd8f079efc7833eba79483c8267168f376586388945c7bd3cade107ccd85b329a2a208132bf9088997551ab07685009e5315ff98ecafb45720","ssdeep":"1536:zZSLH/Bs22qv2fAyWO25xxaw/MuUXViQTBoqSD73FSFKJBXSCRu:zZB22qv2IyjmXawU7ViUohoFuhRo","tlshash":"16830265dcc0a944e864c3a4ff61b34d7a219dc2e5bd15c4677cedb68288fb60ee1848","first_seen":"2026-04-14T13:25:24.144088Z","last_seen":"2026-04-14T13:31:42.137376Z","times_seen":2,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets-cms.kraken.com/images/51n36hrp/facade/f018b3a3b29ffe0c7992092c1fa632d212242e37-2424x1614.png?w=1536\u0026fit=min\u0026fm=webp","fqdn":"assets-cms.kraken.com","domain":"kraken.com","tld":"com"},"ip":{"addr":"104.17.189.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.284Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets-cms.kraken.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 19:58:47 GMT","end":"Mon, 01 Jun 2026 20:58:45 GMT"},"fingerprint":{"sha1":"23:8E:20:CA:73:76:F9:F2:63:4A:04:42:EE:8B:00:5F:F6:41:A7:9B","sha256":"5F:B4:F9:E0:3F:CE:57:B0:9A:D8:42:CF:9A:F9:2B:E6:2C:CF:DD:64:14:22:E8:AF:BA:E5:F0:7B:96:00:AB:5E"}}},"request":{"raw":"GET /images/51n36hrp/facade/f018b3a3b29ffe0c7992092c1fa632d212242e37-2424x1614.png?w=1536\u0026fit=min\u0026fm=webp HTTP/1.1\r\nHost: assets-cms.kraken.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: image/webp\r\ncontent-length: 186258\r\nsanity-inflight-limit: 200\r\nsanity-inflight-current: 0\r\nvary: origin, accept-encoding\r\nx-sanity-asset-storage: gcs-default\r\ncontent-security-policy: script-src 'none'\r\nx-content-type-options: nosniff\r\nlast-modified: 2025-10-02T09:53:08.602Z\r\ncache-control: public, max-age=31536000, s-maxage=2592000\r\nsanity-gateway: k8s-gcp-eu-w1-prod-ing-01\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nxkey: project-51n36hrp-facade\r\nx-varnish-age: 0\r\naccept-ranges: bytes\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=w.1J5Wte11aErOnT0ma3iZM_V3krU4a8Rg0ZN0eyXvg-1776173097.2768862-1.0.1.1-9ib7Pb6x.vcxcqR8kqkP4_5_KE01T5AHtbPFh9mb3Ob8kSp5MUnkW2dLuiF5s_wJn2SLfLIQxSAVzdcGvPeAlWAYty.IddlP8XmCBZbasjwmg2UfcH9xvxx9lgNlFgj4; HttpOnly; Secure; Path=/; Domain=kraken.com; Expires=Tue, 14 Apr 2026 13:54:57 GMT\r\nserver: cloudflare\r\ncf-ray: 9ec308a1fc8bb50b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":186258,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6f728d0f75d2e288c26e4b7de25c2613","sha1":"c47c7440ad038a71821769dace197c837e42ae1c","sha256":"9c2fb6a914c1c9735ab9f39d43f2f634988eac79aa8cb4c17d82d7d3a4b23dbd","sha512":"f7447731068b71745765e739ea8c53944b2e27fb19af10f67273afdc5653eecda21e17e248b922bd2fd306b5d8d9b8a0bfdaeaa3904e64e88720c2a0e776514d","ssdeep":"3072:fUohe/8b226wtV72k6wSJGWcu6XaT4PMe7RQ6MVnUQ+r8aascyE7DoJZYofeVzad:sa9226wtl6tgRX+6WnUQ+r8aascyyDG4","tlshash":"06041258e76620bfea7885d4a087c1b6a5e371373d499c54c212facc33a77683c935e8","first_seen":"2026-04-14T13:25:24.146541Z","last_seen":"2026-04-14T13:31:42.139068Z","times_seen":2,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"co8f.cc/fonts/IBMPlexSans-Regular.woff2","fqdn":"co8f.cc","domain":"co8f.cc","tld":"cc"},"ip":{"addr":"8.221.97.242","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://co8f.cc/","date":"2026-04-14T13:24:57.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"co8f.cc","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 05:45:08 GMT","end":"Mon, 13 Jul 2026 05:45:07 GMT"},"fingerprint":{"sha1":"81:F7:23:34:3F:A1:64:07:C2:88:40:E9:67:E4:76:61:A1:6B:A9:30","sha256":"11:86:0E:59:99:BB:04:3D:12:27:AD:3E:E1:43:3B:84:D5:C7:52:31:27:32:25:C3:0E:65:16:3A:BA:97:0E:FE"}}},"request":{"raw":"GET /fonts/IBMPlexSans-Regular.woff2 HTTP/1.1\r\nHost: co8f.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://co8f.cc/index.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 14 Apr 2026 13:24:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 56184\r\nlast-modified: Fri, 23 Jan 2026 09:37:07 GMT\r\netag: \"69734143-db78\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56184,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 56184, version 3.65","md5":"bb07700dc58a6d40a80c0632e0e09c38","sha1":"1588c41e9e71a29264e9a841b5cd0d74a37b337e","sha256":"dd6cd52bf15d2f5bf7519cd3d876ae2d37306e77d1a95a63e867e6c95ab9c49e","sha512":"ee27f031ed8288646668cdaf197f10415361709e64f8bd877dd902523cece4a7b537542610908a0fb295b34eeaacf2daee5c166540f285298b93133693790b04","ssdeep":"1536:yPpIdbTCFoOKOaWLFhTK7QGOf/Vh4UaW6UVbByf2e:yPmRpv7QGOfcbUTW","tlshash":"5d43f178ce667025bc87b458db35003e976c5b8c74ef1ea0a29e8f41b6ce10e731a536","first_seen":"2023-04-10T19:06:25Z","last_seen":"2026-04-14T13:31:42.140714Z","times_seen":263,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":104,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"co8f.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}