{"report_id":"f17477a5-975b-4025-8924-ff43d7a2bb61","version":6,"status":"done","tags":[],"date":"2026-04-09T12:08:16Z","url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":0,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"title":"Ledger Crypto Wallet - Security for DeFi \u0026 Web3","dom":{"size":291412,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10817)","md5":"a0139df7b9cbaaa350f592bd11306a33","sha1":"a1258ab7b8e400b19d25cbbb17f7117119d11097","sha256":"4c9dd214173c26c3c755f2c3c610acb7fb8e369243c8aa5e868a46e4c189ccdc","sha512":"53339c74ac3f347f5a23689a674745950a1795bdf26640598cc538bb265439b15c3e87ce7a3f477254420c5de3420265c51411927ad805c8696d06b8a2293d4c","ssdeep":"3072:40bFkJDRGXCyxbLy8+JDaAtFdh+PbtraFbRJ9vLzfQ7:PBXCyxbLy8+oAG","tlshash":"6254f7b291f0a4361043c3c0e531b62aef66e4a7ca5599c8b2fc47e9afd1de5cd1b448","dom_hash":"domhashe5cb879e686a82d675fc2d5ca2786e30","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":0,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-14T12:08:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ledger-wp-website-s3-prd.ledger.com","ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"1994-09-19","domain_rank":4505517,"first_seen":"2024-08-20T20:24:25Z","last_seen":"2026-04-08T06:13:07.182441Z","alert_count":0,"request_count":2,"received_data":2989,"sent_data":966,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"s.w.org","ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"domain_registered":"1993-12-01","domain_rank":27695,"first_seen":"2017-01-30T04:56:16Z","last_seen":"2026-04-06T02:19:34.817081Z","alert_count":0,"request_count":2,"received_data":3142,"sent_data":918,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.ledger.com","ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"1994-09-19","domain_rank":203249,"first_seen":"2017-03-23T14:26:33Z","last_seen":"2026-04-07T05:24:51.449268Z","alert_count":0,"request_count":4,"received_data":213000,"sent_data":2011,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-04-05T22:24:03.651898Z","alert_count":0,"request_count":1,"received_data":575514,"sent_data":438,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ledger-ecom-cdn-prod.s3-eu-west-1.amazonaws.com","ip":{"addr":"3.5.66.3","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2021-08-26T09:11:29Z","last_seen":"2026-04-08T06:13:07.094477Z","alert_count":0,"request_count":1,"received_data":39402,"sent_data":514,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"www.ledger-bank.com","ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"domain_registered":"2026-01-06","domain_rank":0,"first_seen":"2026-04-09T12:08:19.852874Z","last_seen":"2026-04-09T12:08:19.852874Z","alert_count":348,"request_count":116,"received_data":3923877,"sent_data":54528,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OneTrust","description":"OneTrust is a cloud-based data privacy management compliance platform.","website":"https://www.onetrust.com","common_platform_enumeration":"","icon":"OneTrust.svg","categories":["Cookie compliance"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WPML:4.8.6","description":"WPML plugin makes it possible to build and run fully multilingual WordPress sites.","website":"https://wpml.org/","common_platform_enumeration":"","icon":"WPML.svg","categories":["WordPress plugins","Translation"]},{"name":"Yoast SEO:26.6","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"Sassy Social Share","description":"Sassy Social Share allows your website visitors to share your content over Facebook, Twitter, Google, Linkedin, Whatsapp, Tumblr, Pinterest, Reddit, Gab, Gettr and over 110 more social sharing and bookmarking services.","website":"https://wordpress.org/plugins/sassy-social-share","common_platform_enumeration":"","icon":"","categories":["Widgets","WordPress plugins"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/globalisation-bar.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"8666ca61a1daba103bf620a856cf6811","sha1":"3ace9a80479b8f8266689512cb3f52c8cd2fe5b2","sha256":"f018c33d2b5aa73ad3452b77353e69352586d7729e3c98cac4a2ed91e5dc6c7d","sha512":"c333b0bc749190f45c69ae48c05532c14c9172d42f644eda1601d5fa0a5389082f4f081ffcc59897a57519671e526248827595348af7de2c31f5bcd77b1ee110","ssdeep":"","tlshash":"9941749230d0183390af4987b566978d7eb592c62d052c42f02e89a96befe44c953efd","size":2325,"data":"","first_seen":"2025-06-21T14:06:44.469302Z","last_seen":"2026-04-09T12:09:38.71693Z","times_seen":91,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/otsdkstub.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7d5ec92092a6d24e4621faebcfc71be","sha1":"b2c9502d5804e854e5e17bfbf00dd116e138fade","sha256":"57e99ffdcaa5df268c115fed41ce45490d1bfe8607151738e561292a5e2e5ca7","sha512":"065c9da88b5617ac73258a74e20209db6d2f4ca1f1507a3404bf2c9597b826f4352d5b43c7189179dce5d873499c0683e5b6ed6bf3f51f1f987a0d92bf6f23bf","ssdeep":"384:F58KNPpfxrLWMABwX/Ny0rkB+r58eYxcCLn2cVKZ5Q8eFKJx6yzGq:bdxfxvlABwXVyvB+r5a+CDhCWq","tlshash":"d4c2e8ddb144ee3446d361dc9a3be26ab23a786d3485d064b864dce0247cc4f6533bb6","size":26070,"data":"","first_seen":"2025-12-08T05:57:37.270424Z","last_seen":"2026-04-09T12:09:38.621386Z","times_seen":11049,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"eeab06c71f63e6bd621c830e521e6b6c","sha1":"60d6fa758ffdfd0cb876d659863f3f1839e2e066","sha256":"bac68d6838d8689935de9289dfe65272ce1bc4412c519f89384eb54d319aa4c6","sha512":"40b32ed7807eb32b9719e4845f43588e76ecebf498f8a0f8d41dddaa81add2e05cdd88991a3f78f54ed6b57c0a36aba290214d5ed3a675366805065a58b1c372","ssdeep":"","tlshash":"979002054d508a3d48da1ac752d947c565901c9ee849205500a5a90919409d5a6606d5","size":57,"data":"","first_seen":"2023-03-10T12:47:25Z","last_seen":"2026-04-09T12:13:26.480526Z","times_seen":218,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/30433690750.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ac5925e362904bffe0a911b3cb687a63","sha1":"6f16b5c9eb3cd999863066d695d2ff01fe852f97","sha256":"ec54b4a710a3c225e40f1dd17f1b8fad1bc8a886a11ffb0751097e40abb4d084","sha512":"5d8c096fa668f3fa81bf642670eb82ed6eef44749d0825c05e8292686337f32795d413596f4c9af387382fd049290e9e68a7726587b3c464c8db12562908b63a","ssdeep":"6144:EA9Yim4aAVELV9TqobhSrGOsPLS1VI9iLm:EYc799WJGxGk","tlshash":"5454089c75c1703707a370a4542f500aa23b6996a8dca0a4fa56f9d53d3d98ea337f3c","size":288593,"data":"","first_seen":"2025-08-11T22:43:56.647578Z","last_seen":"2026-04-09T12:09:38.672594Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/recover-block.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ddff25cf90cfdb2b2d309b8e258af5f5","sha1":"7a594d05639de31995ebd35655159b9a69bdf761","sha256":"1804554c25cf6109a361b9527aa90ebbc913bbb0f87218c8ccd92a72756ba3a8","sha512":"a6c3d6f7690e3d25aca9b59d16982524514fd1d511660fb29322110bb218037d6f2b6308825cf0a3c0677a10640ea49387cb109b1220699525a14049d24049a5","ssdeep":"","tlshash":"d8e020d4391574fe42579277925f73857a7a3002554114111934a9df0dec558059395b","size":329,"data":"","first_seen":"2025-06-26T16:08:04.027421Z","last_seen":"2026-04-09T12:09:38.679033Z","times_seen":63,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"eb604e52749d897f8737c54e6309e516","sha1":"e15ddb9741e57ce12682972758c744cd7bb19480","sha256":"4dec2416c2a8261ac5ed434f68f4ae3aff53e9d7220b2c554fc72ded36fe2b0b","sha512":"58093b13f7a42596f2c597e695d442f005ba7f4ca96b211ad3f02f1308bb497b4f14f469829967857137839865ebedafca5eee448acf48131ac2294415474961","ssdeep":"","tlshash":"ea314b6970e258254137b1380f6f820c752a10672489dc38bf9d87706f65a2b9bf77c9","size":1862,"data":"","first_seen":"2025-05-06T13:57:35.308938Z","last_seen":"2026-04-09T12:09:38.746523Z","times_seen":93,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"c2072e245743ac27390a6e580efb100a","sha1":"376da0984d7b3213b4586f9778d79c32d1a75d0c","sha256":"0c28ef9622d486e406c95e1e22d2a03d99fc59744a7be9a02bc43f138d6b7f43","sha512":"3d73c8b210b7a6f06c81e58bddf910c5094885e47d7cc4826d4e928babf8fd14a23ff2d142524a7fa892ca42b29bf521c62d831a9dacfedb3d0c29daefba73c1","ssdeep":"","tlshash":"d6e01a1bf29c8a3a95bb36027a1776581253169bc8143a0c27720df8605e28b92a96da","size":350,"data":"","first_seen":"2025-01-24T13:11:37.019743Z","last_seen":"2026-04-09T12:09:38.748567Z","times_seen":201,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/email-decode.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-09T20:23:38.294579Z","times_seen":297819,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/f8a71d88c0.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"722969577a96ca3953e84e3d949dee81","sha1":"3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5","sha256":"78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3","sha512":"54b2b4596cd1769e46a12a0ca6ede70468985cf8771c2b11e75b3f52567a64418bc24c067d96d52037e0e135e7a7ff828ad0241d55b827506e1c67de1caee8bc","ssdeep":"","tlshash":"26500000000c000c33c3030000000f000003030000030000cf000003000000c00c000c","size":9,"data":"","first_seen":"2023-04-05T07:39:32Z","last_seen":"2026-04-09T20:23:46.892368Z","times_seen":25251,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"e29c5bcd8ddf96d9007a6fb05fc6cd85","sha1":"36078c032343424132b04b094b7933fe2bb9c547","sha256":"1f2ba340dc6b913e7a09cd019dffb0d338ccc68ff0765b2b079e3b1128ea11e7","sha512":"7d4afc9d2fc5c9ea1d22f1dae8aafb38818f85bf706abf75594d96cc8fda6e6131df84e55a1ad26cc3c363f1e1bcef7182997aabfae3ed8552cc0c3f0b1e9a07","ssdeep":"","tlshash":"a361a89e3775348b32b604d26a3f4e07fb7248361a889034cab9a7541cb1463d37ae4a","size":3401,"data":"","first_seen":"2025-08-29T01:42:35.434257Z","last_seen":"2026-04-09T12:09:38.747332Z","times_seen":62,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/homepage.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"c7b833c6bdd7976709f1f09ba03891d3","sha1":"6d756493c2bd3bc521f35bdb401eb2f5d306a100","sha256":"88d796948aff4bafaf3d96c4277e0c27d7cae2d65442b8ed96249b0afedf0f81","sha512":"c564b1535518206c2f376097a2b315e832c715c44a7f29c8be18798734c589f0b8c3285946db937abeea73f21458e99c94126fc58223195c533c7cd639caa4ca","ssdeep":"","tlshash":"60219b64303075fc22f785bab03a27b0301f2958f3d249a464a3906099de9b402a77db","size":1149,"data":"","first_seen":"2025-06-21T14:06:44.35721Z","last_seen":"2026-04-09T12:09:38.650445Z","times_seen":64,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"487717eb6e2121b0235ade7c3d390efb","sha1":"2e028f8cadae682629b38e6214ad833cc5e4ff5c","sha256":"b563534817e1517fd66e0e3c9fd7bbf7804d5d3f396cd28d709c3e7361c51923","sha512":"68465bc11b18ab84afc27f103d2a23dae040056425310bbe841308eb2bbd12239d319d2cfb52a24bc626228efffd46e792aa3393bbb286c3c28561cb7ad1b6fe","ssdeep":"","tlshash":"4ad0122810c22c3bfe02368a2644270724b14ecc181b4d9e06d9dd41def2c098083f4a","size":203,"data":"","first_seen":"2023-03-07T01:24:09Z","last_seen":"2026-04-09T20:25:17.198075Z","times_seen":5799,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger.com/wp-includes/js/wp-emoji-release.min.js","fqdn":"www.ledger.com","domain":"ledger.com","tld":"com"},"ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","size":22762,"data":"","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-04-09T20:28:56.95086Z","times_seen":139462,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/sandbox%20eval%20code","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"8f2f978b9e8bb4ffce1dcf6cbc7ec45f","sha1":"c502e12fe427b823b7383282831f1ad2b87419d0","sha256":"7fd31c692f4e314ea159e25b0d13aa56d878cca222edefec165caf90708b85b8","sha512":"1ae9d648cdc413db6d45ab6f8da4cdbfa5dac1d43544f1650e2bf3d8c6f3f1266db8242367e4dad325a246b3336f5ff7e6d2c7ef9ab41261b30f0605511c299b","ssdeep":"","tlshash":"c6b02b339a40345c1e5026717800500393c553040ba74017f007002b1040fa22a58080","size":125,"data":"","first_seen":"2023-05-06T01:47:54Z","last_seen":"2026-04-09T20:36:01.337824Z","times_seen":20715,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/main.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"7b90093807953532f3fdfb8f3e5b9c87","sha1":"e49fae395e8f5207e7db6c69f8360a0af0a582a8","sha256":"00ed171e672008f342169f1c9d4f5e748bb3f6f6df556ed6c1052660092f1594","sha512":"22a27039081f71ffc9b1b55960e3d3b50c0bd4a7499c3b771878291ad8c7d0609c4a4c61ea67ef36bdf1f3689528d509725fbc954593cdcc8035876f3a555bda","ssdeep":"192:VaqUQRTkk750how73yRqWDBJA5bI78i7k:c/Ekk7lcAA5O8X","tlshash":"0ff1a666b61864fe01fb62a3f17f3370323b1557fb9144941426d4a62dace9802b3fda","size":7548,"data":"","first_seen":"2025-06-21T14:06:44.311309Z","last_seen":"2026-04-09T12:09:38.745219Z","times_seen":64,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/popin.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"b566a1ba6cfab2044a43aa3fc2ef753f","sha1":"a69a90d59d14d4fb3b2826562c1a2a34acf7f0d3","sha256":"642322c86cb6e471a9397cf8c859a9f03d13e4d7d0d4feaa124f695aea97bb0a","sha512":"97dcebe416a2431698747cd4833eb159500fa960f81061f29efe8c47cfa2295344a5f3f32b35c21d1cd947e61c8137c70353e036fc0aad07cc796168872e1eeb","ssdeep":"","tlshash":"ba713258f78827b000de42a9519f6789b274208d56984c983936cde51df8fca7272fb5","size":3590,"data":"","first_seen":"2025-06-26T16:08:04.026588Z","last_seen":"2026-04-09T12:09:38.647372Z","times_seen":88,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"7bb6a7c0dc2e3fea2a9d59e4391ca96d","sha1":"9dc7910c098346607e95852fd8f62884d44fbe9c","sha256":"dd243b54ed20e9c7eb89ac3e62eb28eae82e9ea30f5c3e94dd3d83684f12038d","sha512":"d32d6580e5af83351957e432b6cfe4c986eeba233689968f69acf5e3b6b447f03f521957ffada474739c4404952701feda5d69cfeb2ad2ceb597aa57fea73dde","ssdeep":"","tlshash":"b9f0dcaf789905323e4b8276aa3c4e0831e2312b604500337cfcc4366f0d66a0d21bfc","size":539,"data":"","first_seen":"2025-05-06T13:57:35.311915Z","last_seen":"2026-04-09T12:09:38.749252Z","times_seen":91,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/jquery.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87553,"data":"","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-04-09T20:26:15.914698Z","times_seen":698885,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/ioscookiedisable.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"28533cb162279eba36a01f44efe2509e","sha1":"f73daa139da69729c2591ba88bd42168c0591be0","sha256":"777ed4c86261c3682f931fe1d38b24f184abeb04708a122ea45ec630f0b5f3fa","sha512":"fbfcf8e4dbd3ae44014decc6b78482cf8d8db2d8ece5e66d70f5320e6e78bc16984d1910f0cb2f3c3ced93ae4861cb0b596f5ca216059086c04771f5e48461c4","ssdeep":"","tlshash":"88e027f4586157bd7e75410415c673a03171914e2d06ee459c57dc755958f0e0d52703","size":303,"data":"","first_seen":"2024-12-10T16:50:02.91277Z","last_seen":"2026-04-09T12:09:38.593422Z","times_seen":136,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/newsletter-form.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"80214692d6330e0c01b1f0ad45a2ed42","sha1":"1bdfe73f0b6da775678a12a37200d7ae6df99cd7","sha256":"2c41742531d36c44bc09f68a96902b9a9d634a552f27d267e6ae9a2eba1742bc","sha512":"9aab89e45f5598489d79bda059588ae90de5a4812f476eefd46b1c517efb86fdda1cf973a71836e8eb162724ee44ec6d2781fc879061d5f1921aa09bc305cc91","ssdeep":"96:hlI1D3ETVkHWluebd7FeHx6GuPDrDtWlJy3zlHGl+YeUSeu4k:T0D3AkHNkeHxe/DtWlJyjlm72ZJ","tlshash":"c7a1c8c9b392e97207eb7a72a01f109ae2352924f8899d003144c9f62d78cccc716f9b","size":5060,"data":"","first_seen":"2025-08-09T17:28:31.259339Z","last_seen":"2026-04-09T12:09:38.705347Z","times_seen":76,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/testimonials.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"aad194138515f5e1607d25be3436685c","sha1":"294e44e8ff518258af29006977be0124b290467f","sha256":"a7b675fa80afea28777e06db768278b53a3ef618f273d0e14121579a3bf23056","sha512":"99787cd9c75f9b43a9f9c934a0d8dc4f54b8d403aeafbd96e5807f0143ee884288944ed620406c277d1f4e821ee422cacd344abc866da1f65ddff634faa43e9d","ssdeep":"","tlshash":"70f0c0ba5705103683f75a79c649f1601e61e445e7c35f61d058ac43ddf4a2010ff0d5","size":528,"data":"","first_seen":"2025-06-21T14:06:44.257387Z","last_seen":"2026-04-09T12:09:38.706423Z","times_seen":69,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"241e05bc81d1ec5155a818f80755a99c","sha1":"ead99b3dfc8f728e592153a1f02a49f76f2d0d7f","sha256":"69ddc6f3695c6ad3f09b98fdc1e0ab45820b14a922c6d7f6051516da3d2fd3dc","sha512":"27df27200f566a9fe792fc7e12d0154e762cf0fa05cf6b019f4c579bf2e35c659756fd25ec3f7dc84451e05243a1d1ac578c3aff9d2f20a768dce9f16c5bb869","ssdeep":"","tlshash":"4fe02b220d1101ad1dcad95db43ef2c47cb93873a465d6453a4d92924fd1f323b66df4","size":362,"data":"","first_seen":"2025-05-06T13:57:35.312889Z","last_seen":"2026-04-09T12:09:38.750134Z","times_seen":86,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"41a5c62372667a743dec263a2e36f7f8","sha1":"5f82f09f0a8b88dab733a8ab6808bc07f200e624","sha256":"b8c31b3d45292143c996078eb863d76c3a564402266158cedddc9c1a8ebcc91b","sha512":"09a1831ee8d6340a7b035f9a0d297d64d2fd269711434f462d0412c7605e51cbc247604c2035fdd732082d13c5a4a607d91e0b4a0328f9d531e2e4538691e91c","ssdeep":"","tlshash":"43019098636c27ea01bb3644963ba0cca52a3072ee43ed1a9c1d5dd40cd853449979b6","size":705,"data":"","first_seen":"2024-04-19T09:31:26Z","last_seen":"2026-04-09T12:09:38.750843Z","times_seen":61,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"6ff3399e3fcafd4d5dc63f919e74ef7a","sha1":"f89983768564b2ae1f48d70f5113ce8b58874255","sha256":"a2060860c799388d2c83940c230d51725dc6014d517d1f523d3763f45c84fca8","sha512":"b95a464f52f5784ec1318d23c84bcb0b3f8d60500eaf83728b67e7499b6242c37be5ea1ca796f0097d42e45847261d2659874bbb6b63a2215dfce32be385c9b3","ssdeep":"","tlshash":"62d02b274a610e8c53b8d194feff4351b39f09d37d411882b15844f7a71597d9940e44","size":264,"data":"","first_seen":"2024-04-19T09:31:26Z","last_seen":"2026-04-09T12:09:38.752112Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/supported-cryptos-swiper.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"1e8861e834d83d08a1bfdbe18fdfc9a2","sha1":"7d0dded77c688c816ab835031184610d75f595d7","sha256":"6dff5b80d7e90b20b855658c07d4fb990ecd18ee4b281b5d27c9a82bba382160","sha512":"a741b717c0bd405c76ea6674402bb23f6d1783adb0cdf6ce76c9fd9685fcca78d322d497770465261d79db196c03a6a89cded508173b3a3d4f64573ffe2d5317","ssdeep":"","tlshash":"1ac012646f653573235b41f6027ff7ce24f6512919546011215a849d0ddc98402a3dea","size":189,"data":"","first_seen":"2025-06-21T14:06:44.368115Z","last_seen":"2026-04-09T12:09:38.739768Z","times_seen":77,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/faq-2.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"37187263bd9a782c33d7d75950f54c17","sha1":"31f1bc77eeeac909b01b2d5239a06cf79edd8d7e","sha256":"1e0c464d26e807f9156b09d64e15d861f1c7268387b09308228dce311f5cb1f1","sha512":"3e10ed87fb0cf14ad81a02e46c58b19e47adfd696338f2eb46955206d24a91d7934919aeaf4b15798738b3f5d1380589f2bf38e460686b20a13d5912ba180b65","ssdeep":"","tlshash":"f8f0c9f8ae48603321ab5633021fb34b3872184820014804014c88853ce8d9b4663dab","size":516,"data":"","first_seen":"2025-06-21T14:06:44.441857Z","last_seen":"2026-04-09T12:09:38.675824Z","times_seen":77,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"53c8cf80d63bffecaae9f3cf0f795498","sha1":"89ff6384ec6b4add534a31b748bbfd3274ec5f24","sha256":"dca04e481577655ff5a95ff84225f6826ec3bbe4651f84e8743536c01bb8fc9a","sha512":"d9dd5ac0740878e52749e9ab3f39ebd033a620caba9b7a167567ef07e488ece9edb526a3fcdda5c3ad53155e37a8fb92f9ba150624fc0ce9443a2b3db11ca4fa","ssdeep":"","tlshash":"5dd022fa1237c44020d223cf3f9c700024ba6023fa023aa33e1c12840f96a0bc0ba3b0","size":238,"data":"","first_seen":"2025-05-06T13:57:35.316206Z","last_seen":"2026-04-09T12:09:38.753472Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/sassy-social-share-public.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"468130129e84f89f87f757e6398d4b6e","sha1":"22e6c328c2f9dd96a0116e50e0048c2f75b79d97","sha256":"73da82ec62ae521b8af6d827c29a6c187e1926f3c61d8115ecb8f653cbe89716","sha512":"cc95f8c8e073b9586428927e7a5487eee538b23ec676bfca541af8752b5af130937c4041091f5a7a1bfab1d9c6276ef17b33befe330e6af02548d67d7db6a985","ssdeep":"1536:xFz2FQ5deyEOOmWhuKY7YDSh9oQ4lnBFg5lL20bUhMBetKeTVFMHq9PFPn37VsUA:xF8cE+lKY7M83gBF9HKeTVFMHq9PFv34","tlshash":"4dd32ad9f364925c748f8f5cfb3b91c8360f60afe89686dce55e97282245ad4f842c18","size":142150,"data":"","first_seen":"2025-10-25T23:00:24.972149Z","last_seen":"2026-04-09T12:09:38.715855Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/swiper-bundle.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"9b52bcce0c3004d1856bc9a4d5042a8e","sha1":"37eaa556e6f385d951fd26c3b2558bcca794f9e7","sha256":"57fe9df5c1cb81e64f22718e83fcea01b465b958782d03426e83a6b3336bc5fa","sha512":"2810addec74539c16d6138047c4dee25c915a6f3ebd70f073ee8323e01c513fe2224ec21c23e9e49a176edb0c94c7457da3c8014e815dd57bdbce0fdeeb6e3ae","ssdeep":"1536:NIJWfG2cz8NgxMGCF+zzHolxUkyBkF+cu0FWvtnSxU9Xmp8MjMLaCW5YG7Qu3WEu:qJoNxBlyBkMsU9Wp8MjMel5YoD39u","tlshash":"84d3f9896220b57646e316db92e4c221b3b50544b80ac8f470bd4c9f597ec9813feffa","size":138272,"data":"","first_seen":"2023-04-01T11:04:48Z","last_seen":"2026-04-09T12:11:29.166534Z","times_seen":284,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"3f676d9322ca7972360135a93d1514ec","sha1":"c6e9400b17339855e40e226bd4bec0dcab32620d","sha256":"95984cb31060a0d04b38b8ea31901b611a3a66dff14db6bc46098f29fe0b64ed","sha512":"16d1226fee30b8fed19ef4ae0d194ae8c067f0af47ac5314f74fe6d453848cf82083a271f6e1f69a9371893a17087a055a6cab774070b59dd748506d78d7ef20","ssdeep":"","tlshash":"3ec012bc21e364008d3364e7975753c36420835364808a29732dd650cf7e4d8c50ce7c","size":135,"data":"","first_seen":"2025-05-06T13:57:35.317113Z","last_seen":"2026-04-09T12:09:38.755035Z","times_seen":74,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"f71737e9a12d9f1469647b180d89dad3","sha1":"b15a7a45711dd5a9da4a4df68b082f17f13ad927","sha256":"b40ee20c8641f7eb1bf3b5860db3362c905291e77553542d2c162e5137406778","sha512":"f427976861d0640ad774d844e47622ab06647f3cbc02fa9e79163625b034d32bebe2174dc739030852f4c6e7a5eaa09dbd29944cbff54a06253f919bca965284","ssdeep":"","tlshash":"6611210d90326407c19fee8b410bfd68de53ad7acc29c55ca85ac34d796010e4daf7b1","size":990,"data":"","first_seen":"2024-04-19T09:31:26Z","last_seen":"2026-04-09T12:09:38.755772Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"5694be47dde2ce56d228a2756b9bc154","sha1":"a897579876ac3f9abfe7e8e8ae1839cc9f06cabf","sha256":"52037f9bcd8eecc0bc7b3b7145eaa7d56d62b20962a2ec8198e8a5783524212a","sha512":"1366424132142e69ef998c1b1ce2e162a7e32392a709443525a228158bb5beed39406bf1cb3d349be4120b88e53f920d37775a8dbed44213629ed7bca42b1ebe","ssdeep":"","tlshash":"3fa02200c0833c8330f2a8bc338c208203c383000a28c82000ccc30f0e8a08a80cbb88","size":68,"data":"","first_seen":"2026-03-15T13:55:49.986949Z","last_seen":"2026-04-09T12:09:38.756511Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/language.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"325912ad023c3761ba77a58c3ed6c962","sha1":"6ba2a9df348553109c5145e39e471b47b6d9a103","sha256":"e02fc6ccd35d37cf28a5ebbe3f655cc69524bebe740826bc8513e40c96a3993b","sha512":"f45597afa496c35e5dbb5d0658519975e0579ff2bbc27c80b48b3958c326d6fefc53b0d9eb3c41ee79ad01a448228604819ed761aebfb59200238e04e1dd26f2","ssdeep":"96:ttd6zr95qnps9DCpZCLuXLDU4Dpvspi52TCJvhXS:ttEzp5OpACpZ3X/ZDpvspi5ewc","tlshash":"46b1b6ed31c0f432069711b2503f760ff1791a65a85df8448225ecf4a8b9d9b42b6f6b","size":5243,"data":"","first_seen":"2025-06-21T14:06:44.355463Z","last_seen":"2026-04-09T12:09:38.632002Z","times_seen":94,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en//static/js/language-cookie.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"f3606e4db5e156a1b086bcfeb3b2d9b4","sha1":"23220c5385d52aa1226568fa61390fae99b9c707","sha256":"e923165e0466e69b1e37ea031843f07029a2b4ce2f7aa133f807f020fea53217","sha512":"400a8d14e0e971e0f3077e6044426bb9f8ab3e542169a3ae71b4c046ab461921b2d2f62b402708311f8905f69c4c9cf13e081a624ab2fa8da666ad67e3a24b28","ssdeep":"","tlshash":"56d012183bdc462c053573153bfee2553d3575497082944e4784f4741de4e63ec688b7","size":290,"data":"","first_seen":"2025-03-05T15:00:38.97335Z","last_seen":"2026-04-09T19:36:55.604265Z","times_seen":12064,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/jquery-migrate.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","size":13577,"data":"","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-04-09T20:24:32.560506Z","times_seen":650759,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"2b5b0038c844664c7d58504ad3e208bf","sha1":"20a636d3ca24a7fd2914f824786ed0782e13770f","sha256":"95d75a69002363951803f970d0635964c71180c9e9e3f6d24d4e82ab4fe9856c","sha512":"46e975e4272bc0b2bb184f7e99753f01c17e97d819b62f84dd06214bc2c464dc78c6791d8819a564f17bd0299b8e288d428c42b0d2a8883a4ab130f8581cac29","ssdeep":"","tlshash":"13b0123026950f9143d042db2118a0f8ea9334c21da45ca13ccd82091da9c9057acd0c","size":100,"data":"","first_seen":"2025-09-12T00:45:26.065697Z","last_seen":"2026-04-09T12:09:38.757106Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/script-load-fifty-crypto-assets.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"0320d871ba95a5193760fa94350afd9c","sha1":"1af265885de4acb683422f44115ba4a392c9b4f0","sha256":"fc720af3ae7a5bbbbc0ed2a5c243f260df0fdd691f5c10a8dbd7b6c15b8688bf","sha512":"c4dfec00b17f900ec15c8556470a4b95ff07e52345516b3d0152c4a8d56e9de6b34476d22dd96822dec9280b7839e3bdcda140b4cb0b061918d394017e55177e","ssdeep":"","tlshash":"74e07d9b66c1f2292bdd30597e3f620daa72d6166446c335c032e5c63d7ce15c232e28","size":337,"data":"","first_seen":"2025-06-21T14:06:44.371868Z","last_seen":"2026-04-09T12:09:38.717885Z","times_seen":61,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/new-navigation.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ac81979556627033abc1bdc10e70a949","sha1":"d342c4297172018c37d0cd4b736dc5e1f09aa9e9","sha256":"9184a6d7c4e3f64540b1445873eb1957fefa1b355988d1fab57e506134a26328","sha512":"d0d0361b9a23544dc8067c883c55e6c9067ff639a3b1f3c2ca2fc8c2cebbdb6e0d20558e1762a5a90b4b521115a969e302576381df2be58c376960f06935322d","ssdeep":"96:yMHi+OE7rge1SwV5TnsTwb+/7eixS/WTxAeIW0awBm5:bHi+OE7rgO35bsUb+j/e6xAJW065","tlshash":"d2910f653520793700af17f3b2df7bc5767a28c9e84218206465c88d2eb9dd24772eeb","size":4223,"data":"","first_seen":"2025-06-21T14:06:44.440001Z","last_seen":"2026-04-09T12:09:38.734678Z","times_seen":90,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"6596137e598061b42c67fb00d0fbb110","sha1":"91155d593e8ddf2916b934279f60385820f96fa6","sha256":"9018f7a51eca04fb209a0a41f4b59026614dff38c7ead8cbfb9f51d27424373b","sha512":"857d49adbee696957ef61fbd2aa3edb1c40a7d304f6bdf9e5d685a5c6c0886f6d4a0bbd7b74a2f3f7fbe2d1fa804e8820ab44b3101ec60615df53fe271ca563b","ssdeep":"","tlshash":"45e0abb491e5c8331ea284e1212865f6fff71107f029cd822799db898ba14c9d46810c","size":421,"data":"","first_seen":"2025-09-12T00:45:26.066707Z","last_seen":"2026-04-09T12:09:38.757761Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-W5FKZ2N","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"72c06a713ae7c5bf059c53f12ad2ec28","sha1":"ea9a3ee8d0fac0e78d729e25f20f099f4716171d","sha256":"94f389f0aed48080b582fec6860a1634a03c4038794bb93439ba6e69d85297ca","sha512":"18ead444bba246c708e72ce8afd20035c589b40dd383f78c7e3fcbc12ab695a3e2981d7698a8d9e9508cfd714a18241d654e65cd907c3e2e50c0b06d156f3654","ssdeep":"6144:Yk/20g5/cOjjobF0QJecVbgcw78o/LWWQlcxhhgpCdhnwZH1:N/20g3oZ0keQgh8dShng1","tlshash":"38c419ceb3c674759396e424943f028e693e24e2b44cd895f0d9ccd42e7466a2163fbe","size":574908,"data":"","first_seen":"2026-04-09T12:02:33.516085Z","last_seen":"2026-04-09T12:13:26.469535Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ledger-card-face.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ledger-card-face.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2472\r\nlast-modified: Wed, 14 Jan 2026 06:32:01 GMT\r\netag: \"69673861-9a8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2472,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a33123b1e874ec57cd00d67b8f984462","sha1":"51440a1c60f59b2df5037838de547ad3b3a639a7","sha256":"f840dded5bcf609e06ef7f0c305b3b7f33e4deb70ac02cce9870963426258a26","sha512":"88aa04a55602f11aee62395667a5394fd14842c5d6e1fca43b2879e43858786e439fe03de3d8443895b9d88e1ef7bbc900a921462311871fdccc8dca621cd28b","ssdeep":"","tlshash":"495119fa07e8c749fe203975bdb32760f7eea511530b4da24583a6360b00ac6558e9d3","first_seen":"2025-05-06T13:57:35.187292Z","last_seen":"2026-04-09T12:09:38.712812Z","times_seen":88,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":70,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/classic_nanos_mobile.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/classic_nanos_mobile.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 4778\r\nlast-modified: Wed, 14 Jan 2026 06:31:55 GMT\r\netag: \"6967385b-12aa\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4778,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fde95b0b226ba6eaaf2d6cfcb543b801","sha1":"81f702cdd845e305adf547f8e3719b7396b9dbf1","sha256":"92e885c9753152fc83c66716ce4403ba88fa649d05cdb177b504fb0c1176abad","sha512":"1b343275e2f4a20962fbfa911aa9678c1a7d4ae6811688715ffa5b9d340f635706dd1617b04abff7122b1c271c0c69e2f65c818b085566d55996e04eebbc4649","ssdeep":"96:RElbw+iXgnCaFdVitdZ8+RKtD9gsjxliwKAIojbijAcVuQvEEJ2XDq:8wTNaHmdZnKtpViPlrkquQvzJsDq","tlshash":"97a15c507aaec6aef3ca0f715ab30f86df9bec1748a0bf3b13101536450848f2691957","first_seen":"2025-11-01T07:55:41.966395Z","last_seen":"2026-04-09T12:09:38.702213Z","times_seen":39,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/recover-block.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.320Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/recover-block.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 329\r\nlast-modified: Wed, 14 Jan 2026 06:31:48 GMT\r\netag: \"69673854-149\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":329,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (329), with no line terminators","md5":"ddff25cf90cfdb2b2d309b8e258af5f5","sha1":"7a594d05639de31995ebd35655159b9a69bdf761","sha256":"1804554c25cf6109a361b9527aa90ebbc913bbb0f87218c8ccd92a72756ba3a8","sha512":"a6c3d6f7690e3d25aca9b59d16982524514fd1d511660fb29322110bb218037d6f2b6308825cf0a3c0677a10640ea49387cb109b1220699525a14049d24049a5","ssdeep":"","tlshash":"d8e020d4391574fe42579277925f73857a7a3002554114111934a9df0dec558059395b","first_seen":"2025-06-26T16:08:04.027421Z","last_seen":"2026-04-09T12:09:38.679033Z","times_seen":63,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/new-navigation.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.311Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/new-navigation.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673853-107f\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4223,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4223), with no line terminators","md5":"ac81979556627033abc1bdc10e70a949","sha1":"d342c4297172018c37d0cd4b736dc5e1f09aa9e9","sha256":"9184a6d7c4e3f64540b1445873eb1957fefa1b355988d1fab57e506134a26328","sha512":"d0d0361b9a23544dc8067c883c55e6c9067ff639a3b1f3c2ca2fc8c2cebbdb6e0d20558e1762a5a90b4b521115a969e302576381df2be58c376960f06935322d","ssdeep":"96:yMHi+OE7rge1SwV5TnsTwb+/7eixS/WTxAeIW0awBm5:bHi+OE7rgO35bsUb+j/e6xAJW065","tlshash":"d2910f653520793700af17f3b2df7bc5767a28c9e84218206465c88d2eb9dd24772eeb","first_seen":"2025-06-21T14:06:44.440001Z","last_seen":"2026-04-09T12:09:38.734678Z","times_seen":90,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/chevronUp.svg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/chevronUp.svg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/main.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: text/html\r\ncontent-length: 138\r\netag: \"696708f6-8a\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-04-09T20:26:17.545112Z","times_seen":248155,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":31,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ledger-stax-face.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.940Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ledger-stax-face.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5328\r\nlast-modified: Wed, 14 Jan 2026 06:32:01 GMT\r\netag: \"69673861-14d0\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5328,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"060d984c0df049ffdfbb9d58e10d3eac","sha1":"4bccaabe92cd4a01bc08199c8147a87c1b27171b","sha256":"1bab9994a70c4c56cad4938df262e093654ab37c51694adae70a2411aa8e1061","sha512":"dccd76696371d3d98ea31441d95fca7da22b843e310ab74bdd57040a1a3b36e7c0a619ecdbb04ba4d01d511cb5c6d3028f4379e8724870d37c68c3ed25382751","ssdeep":"96:rElbw+iXIfMwSZbr4tVEz5CCqZvjoq6M3y2997QtjJ/4m3Fpiz/+ij5oGw:2wTIfwbrkVG5CCqZbojMRUtppiz/+s5S","tlshash":"c2b18fb8f724b768dfd6adf110640b12a469746cb11c972742db638aa8eccb11d2d507","first_seen":"2025-05-06T13:57:35.221568Z","last_seen":"2026-04-09T12:09:38.73754Z","times_seen":99,"resource_available":false,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/lng5_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.946Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/lng5_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5880\r\nlast-modified: Wed, 14 Jan 2026 06:32:03 GMT\r\netag: \"69673863-16f8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5880,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ebe4c2dcef20dba9da062acca73c240c","sha1":"c4b89ae25bab1b778f9a0e8d13c5c091eb7fb80c","sha256":"2f55da182e472e81aa4c8780326b41d79fe1f4b1cf8f9421f59e5b8dda0eec21","sha512":"b9aeee8de1186d122451bf09486059fc7f8a8c59e2f2b3bb994fc65a73e99708a5db681cdb59d190864096cb3ed74144a2d4cca299f087ddff958307e09bba6d","ssdeep":"96:hElbw+iXnZbaPesbTBe9rj43XeFPN6t4dNX70WerMNbnrXfb7XAQo6BWwXu7A1SQ:MwTZbNs3U9rjywNOOr05rMRrb7Fo6BnH","tlshash":"dbc18d8213655fb6e9291f7c84d50b07436ce9b1c22c2f0b6964032f178b9c6b7e689a","first_seen":"2025-11-01T07:55:41.968927Z","last_seen":"2026-04-09T12:09:38.69988Z","times_seen":40,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/globalisation-bar.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/globalisation-bar.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384f-915\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2325,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2325), with no line terminators","md5":"8666ca61a1daba103bf620a856cf6811","sha1":"3ace9a80479b8f8266689512cb3f52c8cd2fe5b2","sha256":"f018c33d2b5aa73ad3452b77353e69352586d7729e3c98cac4a2ed91e5dc6c7d","sha512":"c333b0bc749190f45c69ae48c05532c14c9172d42f644eda1601d5fa0a5389082f4f081ffcc59897a57519671e526248827595348af7de2c31f5bcd77b1ee110","ssdeep":"","tlshash":"9941749230d0183390af4987b566978d7eb592c62d052c42f02e89a96befe44c953efd","first_seen":"2025-06-21T14:06:44.469302Z","last_seen":"2026-04-09T12:09:38.71693Z","times_seen":91,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-wp-website-s3-prd.ledger.com/uploads/2021/11/Ledger_favicon.png","fqdn":"ledger-wp-website-s3-prd.ledger.com","domain":"ledger.com","tld":"com"},"ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:57.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 08:47:27 GMT","end":"Tue, 12 May 2026 09:47:22 GMT"},"fingerprint":{"sha1":"E2:DE:67:89:49:C2:8B:25:6C:A5:0E:B3:0F:47:F9:D9:D5:E9:41:CC","sha256":"65:26:B5:FD:83:A5:22:31:34:E4:DA:5A:9C:B3:60:3A:90:B0:52:38:02:B9:F4:52:3A:FC:7B:4A:D1:E0:77:EE"}}},"request":{"raw":"GET /uploads/2021/11/Ledger_favicon.png HTTP/1.1\r\nHost: ledger-wp-website-s3-prd.ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 09 Apr 2026 12:07:57 GMT\r\ncontent-type: image/webp\r\ncontent-length: 402\r\nx-amz-id-2: 0GugYDRfM4qSeWuZoml+O3X9zvJIp8uiqQcsRPCM/DRsggGLHie5i8A5HB+bXtE5zZOLfNEg090=\r\nx-amz-request-id: 0X1MK1B0V23N00S8\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Mon, 04 Mar 2024 09:59:32 GMT\r\netag: \"d2cc487e1baee412d24282cd76326b67\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: c0YzzGXb_FH8yQM1Y29J6JaRmyu3vJ3t\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nset-cookie: __cf_bm=G8aoP_nXEHEVa83MQdPZy_llpcY_oTyq.7.xJopOZSA-1775736477.289171-1.0.1.1-ySuaqQYwRgOW4JJos3ykLVMBIRArWwCvT5E9wwey7bmcuEs61mrfBihMYT9fJnpHUBWEKZB5Ipksl3VfPwxw2zI9LIXNZ6G1BfcQah.PpNiy4GM3gek9nT2VOPS5x3Hn; HttpOnly; Secure; Path=/; Domain=ledger.com; Expires=Thu, 09 Apr 2026 12:37:57 GMT\r\npriority: u=4;i=?0,cf-chb=(37;u=2;i=?0 421;u=5;i=?0)\r\ncf-bgj: imgq:100,h2pri\r\ncf-polished: ok, orig_size=2372\r\nvary: accept, accept-encoding\r\nage: 26393\r\nexpires: Thu, 09 Apr 2026 16:07:57 GMT\r\ncache-control: public, max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: 9e9964f708c456bf-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":402,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ae21ecb25616d3be96e987fe7af84d6e","sha1":"db559bfa16b130ab1b8c0b9b8693c807e29b3503","sha256":"7545b9667995fb98664f07b94793628ca6920fc953bb4eb924259480cae4bbe8","sha512":"02bbd8bdb2e77a6b39b14712828b719e7c036e006c792dd8f2d0150b09324dd2b2e7892cdbbe05cf7dc6d1d162af3ccadd65099806e857821de738228f2c3ef4","ssdeep":"","tlshash":"ede0f17081776c782de418f412ff520303ac0d5ed211021b43b5b82020f47d6134d193","first_seen":"2023-05-25T12:23:00Z","last_seen":"2026-04-09T14:33:13.232674Z","times_seen":1140,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":24,"connect":2,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger-wp-website-s3-prd.ledger.com/uploads/2021/11/Ledger_favicon.png","fqdn":"ledger-wp-website-s3-prd.ledger.com","domain":"ledger.com","tld":"com"},"ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:57.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 08:47:27 GMT","end":"Tue, 12 May 2026 09:47:22 GMT"},"fingerprint":{"sha1":"E2:DE:67:89:49:C2:8B:25:6C:A5:0E:B3:0F:47:F9:D9:D5:E9:41:CC","sha256":"65:26:B5:FD:83:A5:22:31:34:E4:DA:5A:9C:B3:60:3A:90:B0:52:38:02:B9:F4:52:3A:FC:7B:4A:D1:E0:77:EE"}}},"request":{"raw":"GET /uploads/2021/11/Ledger_favicon.png HTTP/1.1\r\nHost: ledger-wp-website-s3-prd.ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 09 Apr 2026 12:07:57 GMT\r\ncontent-type: image/webp\r\ncontent-length: 402\r\nx-amz-id-2: 0GugYDRfM4qSeWuZoml+O3X9zvJIp8uiqQcsRPCM/DRsggGLHie5i8A5HB+bXtE5zZOLfNEg090=\r\nx-amz-request-id: 0X1MK1B0V23N00S8\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Mon, 04 Mar 2024 09:59:32 GMT\r\netag: \"d2cc487e1baee412d24282cd76326b67\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: c0YzzGXb_FH8yQM1Y29J6JaRmyu3vJ3t\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nset-cookie: __cf_bm=vcVU2m17VC4yh2kMv8QLmsL5gmVRkGfRE60tTCaB68U-1775736477.2902424-1.0.1.1-SNLdhdA_DdHg0ZZZhMMJSh9jNbd7VE3TjPFhvwl4DFntZohtpIqktEpTV5_V7k3gVoJPzTncrijTvp2Ek2xxtCk_HrU1yY275.Uv8JYDH1omWlHIj7j5GO6W4EuoaPbm; HttpOnly; Secure; Path=/; Domain=ledger.com; Expires=Thu, 09 Apr 2026 12:37:57 GMT\r\npriority: u=4;i=?0,cf-chb=(37;u=2;i=?0 421;u=5;i=?0)\r\ncf-bgj: imgq:100,h2pri\r\ncf-polished: ok, orig_size=2372\r\nvary: accept, accept-encoding\r\nage: 26393\r\nexpires: Thu, 09 Apr 2026 16:07:57 GMT\r\ncache-control: public, max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: 9e9964f708c656bf-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":402,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ae21ecb25616d3be96e987fe7af84d6e","sha1":"db559bfa16b130ab1b8c0b9b8693c807e29b3503","sha256":"7545b9667995fb98664f07b94793628ca6920fc953bb4eb924259480cae4bbe8","sha512":"02bbd8bdb2e77a6b39b14712828b719e7c036e006c792dd8f2d0150b09324dd2b2e7892cdbbe05cf7dc6d1d162af3ccadd65099806e857821de738228f2c3ef4","ssdeep":"","tlshash":"ede0f17081776c782de418f412ff520303ac0d5ed211021b43b5b82020f47d6134d193","first_seen":"2023-05-25T12:23:00Z","last_seen":"2026-04-09T14:33:13.232674Z","times_seen":1140,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":23,"connect":1,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/banner_bg2.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/banner_bg2.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 9550\r\nlast-modified: Wed, 14 Jan 2026 06:31:52 GMT\r\netag: \"69673858-254e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9550,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9dd4fd003dd4927b6d2e8db5e95ec359","sha1":"895ab674f3e257a8087e859f1d8bbde6f6ba0c5a","sha256":"049fbfa2514eb85da59d8acf9ca92c3d9cd9f9154d16e393a612822c8723b681","sha512":"690c560a5b477e8a450351c0048a133fbc6afb39d9feae78c27324cd4a203477fe23cc8b27a327a63699750bdbaf019a192a7dfc07b58b34533065b259afc71f","ssdeep":"192:swTmsloLpM7LUq6+9JJfY19p18UKhFfyB99blrgRaTDqiiVYfimBxM4ZJ3S:swTmsCqD9XfYPSFyZJrg06ilflBxni","tlshash":"1c12ae7d03fc22a2e475adf69e8f6be98368001ae21d790990d3899a5e1401556332ef","first_seen":"2025-05-06T13:57:35.245421Z","last_seen":"2026-04-09T12:09:38.651563Z","times_seen":112,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/partners_mob.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/partners_mob.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 7162\r\nlast-modified: Wed, 14 Jan 2026 06:32:06 GMT\r\netag: \"69673866-1bfa\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7162,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"08f202958618bfaa51829b318a495d52","sha1":"e3d79d13f2b9963a86326e8b94fafc5115a4ea71","sha256":"a78c4f1f0ed732745e68800a67ebc153c53bfd116b1f25cfa3968bb56a09c360","sha512":"872d1fb14d9d3c2703c8df013e07a87a4513c60bfadedfc9bfe8443091befcc03f8fc3474d8cf52c20a44211f68536b1c96f97c395877400c22dc91c33d89e57","ssdeep":"192:RwTs0Zmbh3Jg4c313h9nMdGmiHhg5tD81mMGg9py/6+EpM:RwTrmxJgf3RDeG058wMPbq6LW","tlshash":"7be19e3827f28b24d46c6c78b9f62f806b6dbc374ba450c33088e20a57b16d6d09f718","first_seen":"2025-09-20T23:45:00.606295Z","last_seen":"2026-04-09T12:09:38.697602Z","times_seen":51,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ledger_nanos_ranges_comparison.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ledger_nanos_ranges_comparison.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 12256\r\nlast-modified: Wed, 14 Jan 2026 06:32:02 GMT\r\netag: \"69673862-2fe0\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12256,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e39fd3b733c40012a9c69eb2634bef73","sha1":"4f2a973d04b2ab220c1659a1e21b0a283e9ac45b","sha256":"1fd0a903a0ab4d2ca78a995c5253e61297644f03f95401a7d894272fd63fcb87","sha512":"fc88d41bbeb6f5306b6906767a2577ec5ac3ef0b177b1a57f9aa270aad579418b03e896fe55e4fdd333fdfaeabd6419bd30136d07a5d1cbcd82ddd650d7cd1ba","ssdeep":"192:fwTElDq1kgc3INVXu0gC0Z9HBbkPjvUMCkzwL4iYG+J8pbXi5IYVFj9Wswj:fwTElO1kgLXvgCihbkrvUQzwMiYB8pTU","tlshash":"4e42c02153be2b42dd08a9791b4ab176a934ea65798072d393fc43009ba3f7d50fa941","first_seen":"2024-08-02T10:43:53Z","last_seen":"2026-04-09T12:09:38.743125Z","times_seen":321,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/supported-cryptos-swiper.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.319Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/supported-cryptos-swiper.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 189\r\nlast-modified: Wed, 14 Jan 2026 06:31:49 GMT\r\netag: \"69673855-bd\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":189,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with no line terminators","md5":"1e8861e834d83d08a1bfdbe18fdfc9a2","sha1":"7d0dded77c688c816ab835031184610d75f595d7","sha256":"6dff5b80d7e90b20b855658c07d4fb990ecd18ee4b281b5d27c9a82bba382160","sha512":"a741b717c0bd405c76ea6674402bb23f6d1783adb0cdf6ce76c9fd9685fcca78d322d497770465261d79db196c03a6a89cded508173b3a3d4f64573ffe2d5317","ssdeep":"","tlshash":"1ac012646f653573235b41f6027ff7ce24f6512919546011215a849d0ddc98402a3dea","first_seen":"2025-06-21T14:06:44.368115Z","last_seen":"2026-04-09T12:09:38.739768Z","times_seen":77,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/recovery_solutions_mobile.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/recovery_solutions_mobile.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3102\r\nlast-modified: Wed, 14 Jan 2026 06:32:08 GMT\r\netag: \"69673868-c1e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3102,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"10be3aba54a48e1f4d8591d4d3367c1f","sha1":"742106df0c492363a1591882b28302dfd1409195","sha256":"245dbfa0f2f03a0fdf4f3ba3bade93a86a1c95c3c0c856635377f8907e2e50b1","sha512":"9b71fda127b29e58512a4d8428788f5cc3fcf9eddbcaf7df5658e7e3546991d9fc18a5d0ef8eb7eb51fd9eca61e382e8a98e0ae66c7ab33ccbc518c37863c816","ssdeep":"","tlshash":"d6511a12f70d472ce242ab382b81ab53fabb3a06e44579418a1f082b1f5f5cc650dd92","first_seen":"2025-11-01T07:55:41.921783Z","last_seen":"2026-04-09T12:09:38.715036Z","times_seen":39,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/dai-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/dai-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 1012\r\nlast-modified: Wed, 14 Jan 2026 06:31:56 GMT\r\netag: \"6967385c-3f4\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1012,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"8b3ee826f96cf7148500cbc4aff416b8","sha1":"a9b9901d7afd9dacda80b7403b3e8637530a72ad","sha256":"5de46c0b089a0c716cbb2bdad6c64bc01453e1ad5685774a38d905c472e435e0","sha512":"4e025dc425816e1c7ab323b48b5996fe016f1433853d8c7f0fe54071eba7d29f47e9fa9ebb7fb43f17fff7bc2cae9cddca6dba63f0a479cd627ddf808e6aa85f","ssdeep":"","tlshash":"df11c400cdddba6aba4fa3808690f1cc2b70184a3084029a192f5ed0f88d7c80dfdd88","first_seen":"2025-05-06T13:57:35.210135Z","last_seen":"2026-04-09T12:09:38.733182Z","times_seen":331,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/jquery-migrate.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/jquery-migrate.min.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384f-3509\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13577,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (13479)","md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-04-09T20:24:32.560506Z","times_seen":650759,"resource_available":true,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/swap_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/swap_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 27590\r\nlast-modified: Wed, 14 Jan 2026 06:32:12 GMT\r\netag: \"6967386c-6bc6\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27590,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"35ff30554a9393002923c4cd76226e32","sha1":"1b8c8d82ba903c657df6596e4d4423da0934c464","sha256":"ed54c598676842d121198e2551a66d14cf804461e00c028c954f03caf31e53b9","sha512":"d575f7afd850dfe5fc227db94e170d05658de0a6eb7cb4f01328e5c80840f7bc5553821aab39c8de70dd4c8bb00ae2131f3b4ddda5e01115fe7c02240713d3a1","ssdeep":"768:ATJfKdtOByBpfJsOjHlNLmU9N6HP+cjuvvbxuK:SBQhRjHiXtjY9","tlshash":"a6c2c0a8cb1c23cde7113af0f5a9ced644712905bfb040aa111b4d51e711d4e2beea65","first_seen":"2025-11-01T07:55:41.951542Z","last_seen":"2026-04-09T12:09:38.592031Z","times_seen":43,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/3rd_layer_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.953Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/3rd_layer_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 38288\r\nlast-modified: Wed, 14 Jan 2026 06:31:27 GMT\r\netag: \"6967383f-9590\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38288,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"96acd446d478b2927ef00b750878f788","sha1":"6e0d7d44691c90dd368397111f281356768c4825","sha256":"f18b6806c54e05a0e2bd1c11eaca58faf3c4fe84f325c4dabfe1f3d554967b9c","sha512":"c0631ed78be40dbfa040e802f8ca639e85c3c1b0448b7d8bb7f2c070c1d24d51b6ca6d3de555d9915609718458dcb42ebc3f2fd4cd8bb67e1ac142daae5aa622","ssdeep":"768:JT1iBfycSWYKr6zBhiqNvMUEigcgb1a5e4YV1+MR0YuRLojdM:jiBEWgziOvMUglbk5DYH+ymRCdM","tlshash":"77039ef49126939ce0064178b7877326eb315409da5d6497fffe6c8d2b8eca38488c1e","first_seen":"2025-05-20T21:07:18.009909Z","last_seen":"2026-04-09T12:09:38.595047Z","times_seen":58,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":77,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/16.0.1/svg/1f4ab.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:57.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 19:44:39 GMT","end":"Sun, 24 May 2026 19:44:38 GMT"},"fingerprint":{"sha1":"56:DE:8F:AC:F7:7D:09:E2:76:F8:9A:D7:5D:9D:16:D0:8A:77:E9:1B","sha256":"F4:65:F9:07:07:7E:3C:D6:2E:1F:02:76:FC:58:8D:E2:FE:E1:4B:A5:5A:D5:4C:AE:78:56:62:41:A7:28:80:CC"}}},"request":{"raw":"GET /images/core/emoji/16.0.1/svg/1f4ab.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:57 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 19 May 2025 11:40:53 GMT\r\nvary: Accept-Encoding\r\nx-frame-options: SAMEORIGIN\r\ncontent-encoding: br\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 31\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":931,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1b3817ca3b1dc991baefdb3079ed0624","sha1":"1ad4ca7280fa4a8142d24c7f0ae5e72dcb3c3e33","sha256":"bdb9814ea0040dd485357741b3e0eadd3ad5d0b89244644f29be42c7b9e2f1af","sha512":"b7dab19a60c20e404cf1f76eacf28c3da3ed87d47c72cd84364ffa5b23015f33bb7adc0bb57d451cf9433f6365de59debdbb21041365af6b194ba76684233b51","ssdeep":"","tlshash":"1a1114c81762d380f98aef8eff1594c852a7e4fd4a6041e291918f1c6b8bd4cf400830","first_seen":"2023-06-22T00:11:49Z","last_seen":"2026-04-09T20:58:38.246494Z","times_seen":393,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":50,"dns":13,"connect":11,"send":0,"wait":8,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger.com/wp-content/themes/ledger-v2/public/images/homepage/ledger-wallet-mechanism.png","fqdn":"www.ledger.com","domain":"ledger.com","tld":"com"},"ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 08:47:27 GMT","end":"Tue, 12 May 2026 09:47:22 GMT"},"fingerprint":{"sha1":"E2:DE:67:89:49:C2:8B:25:6C:A5:0E:B3:0F:47:F9:D9:D5:E9:41:CC","sha256":"65:26:B5:FD:83:A5:22:31:34:E4:DA:5A:9C:B3:60:3A:90:B0:52:38:02:B9:F4:52:3A:FC:7B:4A:D1:E0:77:EE"}}},"request":{"raw":"GET /wp-content/themes/ledger-v2/public/images/homepage/ledger-wallet-mechanism.png HTTP/1.1\r\nHost: www.ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 37476\r\naccept-ranges: bytes\r\netag: \"dhnx758daz9c1pzh\"\r\nlast-modified: Wed, 08 Apr 2026 16:39:39 GMT\r\nvary: accept, accept-encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS\r\naccess-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization\r\naccess-control-max-age: 1728000\r\nset-cookie: __cf_bm=8jFkheq3gcpMg4J0Uh3I.WYqLb1T5sEWirQvcvglfPc-1775736475.9664383-1.0.1.1-M9kDxIVyhjTgVTRqkF195qlgNKz5wed8hr275yV3eRYIb_ucwlWaMXh1eztULzt1SeZvBM1PKz9KHqOhlMlenibZO2VFEbrmf2fp4gHr9fo7CGTAI_5XdZhLVZCbqzvb; HttpOnly; Secure; Path=/; Domain=ledger.com; Expires=Thu, 09 Apr 2026 12:37:55 GMT\r\npriority: u=4;i=?0,cf-chb=(105;u=5;i=?0)\r\ncf-bgj: imgq:100,h2pri\r\ncf-polished: ok, orig_size=80333\r\nage: 414\r\nexpires: Thu, 09 Apr 2026 16:07:55 GMT\r\ncache-control: public, max-age=14400\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 9e9964eecffb56bf-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":37476,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fea8adbbb1461ddfb478941488f4048f","sha1":"ec9f09658279c7bc3602eeb16c19dd746e3c61a5","sha256":"defb60af063d02d14f3b5f2efa903cdbd64b90ccc0b3fe9971ac0ea98c6d34cd","sha512":"a86c5bab3a5c12e0907a8316f260491a50f4993d8a557318ceceb8c55cf7fa048c87a1c5c729b7fe659622651240bca89bf4f884e456eef277d95b1c88248134","ssdeep":"768:lT6qsQOic/fwbNuzSxYo2HKMbBTeVJA00tndocTuL:lTPsmHbNkSxYojWFeVJA00J6","tlshash":"acf2f1c204509fdc902f94978d77cad685c4682f961e0e9f9eb52c4c85fec1a8a7e0ad","first_seen":"2025-05-06T13:57:35.217171Z","last_seen":"2026-04-09T12:09:38.619203Z","times_seen":305,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-09T12:07:55.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: text/html\r\nlast-modified: Wed, 14 Jan 2026 06:28:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673796-462b8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OneTrust","description":"OneTrust is a cloud-based data privacy management compliance platform.","website":"https://www.onetrust.com","common_platform_enumeration":"","icon":"OneTrust.svg","categories":["Cookie compliance"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WPML:4.8.6","description":"WPML plugin makes it possible to build and run fully multilingual WordPress sites.","website":"https://wpml.org/","common_platform_enumeration":"","icon":"WPML.svg","categories":["WordPress plugins","Translation"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Yoast SEO:26.6","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"Sassy Social Share","description":"Sassy Social Share allows your website visitors to share your content over Facebook, Twitter, Google, Linkedin, Whatsapp, Tumblr, Pinterest, Reddit, Gab, Gettr and over 110 more social sharing and bookmarking services.","website":"https://wordpress.org/plugins/sassy-social-share","common_platform_enumeration":"","icon":"","categories":["Widgets","WordPress plugins"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":287416,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10817)","md5":"038148caeecf3ba747f23af83cdfc43a","sha1":"e902aa5080c5ff75ecb5f2fdfe90925591f825ac","sha256":"060fb28d3d78e3f6a4a459e368332f3d2733baba8038632b1d45ad6a2a3293fa","sha512":"97f3e86591e999d061cb1f899c68fd4cc67f916f57b60a39da7694ee1bbc2d3aa560cc79fb1d4b021228b10091a34c32c98577c09d0f0bc48aefe7497c628a7e","ssdeep":"3072:6gLFkJDRpoayz9vyUM3AHd0TcEadh+PbtraFbRJ9vLzfQ0:Pmoayz9vyUMOd0T10","tlshash":"aa54f8b291f094761043c3d1e631763aef66e4a7cb4599c8b2fc43a86fd1de5c92b488","first_seen":"2026-04-09T12:08:25.769001Z","last_seen":"2026-04-09T12:09:38.687589Z","times_seen":2,"resource_available":true,"data":null}},"time_used":202,"timings":{"blocked":70,"dns":1,"connect":31,"send":0,"wait":62,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/css/main.css","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/css/main.css HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 14 Jan 2026 06:31:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967382b-2fc90\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":195728,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65518), with no line terminators","md5":"5ebaf798347212b05265ebcfac031a53","sha1":"6bee6eef87f43e9de10bd8d141db0c3591fa0d35","sha256":"76f5928d30eac99e9f3bcbf340f1178baed246028702c4e231f28681b22a28ec","sha512":"523edcd8f4ee28d7faab4c9344d77eef6ce8bed4ffa5f1394ce95ce603011156bcf269786c77eeb8b28afa1591b3315be77758e017bf7a291ca20cb5b5b1de60","ssdeep":"3072:g7h2LEyJvNJ1T8z1zQEXbF5GlhPwpX5S7RBel:C47T8z9QEXbF5Glhy","tlshash":"1114e8626f96216ca33bc527f5c0b1586a38d421d7672efbe492e129c6ce3560333b4d","first_seen":"2026-03-15T13:55:49.830766Z","last_seen":"2026-04-09T12:09:38.74168Z","times_seen":3,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/banner_bg.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/banner_bg.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 9624\r\nlast-modified: Wed, 14 Jan 2026 06:31:52 GMT\r\netag: \"69673858-2598\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9624,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"aec7ccdabbacd2a8eccda0a94b99ecde","sha1":"f364c003059634d655fc1633cd731faeecdda307","sha256":"e8531e1e4e6c0d028746a9b9f18da30fa352318dbb256fe0347f5e8c38823c94","sha512":"ff1d3d3c5043d29db57976677b622ef75a93b9449c559004889d7e7f9cdc8e916237a33e214778cd3de6c906d48650b7ad1b49f906b2828002117b1db730b21c","ssdeep":"192:6wTmsloLpM7LUq6+9JJfY19p18UKhFfyB99blrgRaTDqiiVYfiaDPYSXGX0u5z+:6wTmsCqD9XfYPSFyZJrg06ilfdDYSXGS","tlshash":"3212af7c13fc2191e4b7bdba6e8fafe993680417e24d7b0ac19245671b044065a231df","first_seen":"2025-05-06T13:57:35.268232Z","last_seen":"2026-04-09T12:09:38.732545Z","times_seen":112,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/side-image.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/side-image.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 43192\r\nlast-modified: Wed, 14 Jan 2026 06:32:09 GMT\r\netag: \"69673869-a8b8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43192,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"604e216ee99adb4afdf12d3d61be39ed","sha1":"e2ccd64088c8fc099267123fbdeefc1554fd64a0","sha256":"29cb1cfe1725c422c2c4b9130dd02e384ea0c4a7cfcb49975604df497c7d72c1","sha512":"a2f55ea6599111e1e9f1eb9085c6c3292652a82435caa775fbde08a9d71c18de6992c3bdf8a9d6e46681c67174d6dd0f5b36e7b5cd08baddde3c331793eff568","ssdeep":"768:OnTGDLESIwrN7x+xhW0pJ3YEXlPpF/qwzPvO3uwf/0x2FNs+xH:pDLE8JasiJIEtpdQP/0mxH","tlshash":"561302a4794768a5d6173a7631de0d07004eb2527b47cfaf761fb384476e6f200caa07","first_seen":"2025-11-01T07:55:41.904534Z","last_seen":"2026-04-09T12:09:38.670372Z","times_seen":42,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia0zl7suc.woff2","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia0zl7suc.woff2 HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/69ca37b5d7464d2d86edcc6cf49bd70c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:57 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 18748\r\nlast-modified: Wed, 14 Jan 2026 06:31:18 GMT\r\netag: \"69673836-493c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18748,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 18748, version 1.0","md5":"de93fdc85e3d9009340f44f401ce62cf","sha1":"9f73b2f43ea3bf37cc8e90a5aa8c7e668ec44504","sha256":"71d5ee93cc1e9f1d520a3a8b66456de18c7879d8df09d57fcd2eaff75fef0075","sha512":"1c10e80e6fcd197c5acb2b811794a1d13f7b025868349d1b261e02424e2f1970c7f03c502c6190d386f2e78cdb126a374c64ee6c25eb848f82c5ff1462b3a367","ssdeep":"384:+llEwUsRDydOWF3kczROPIMjvFyNBNaK8QXNkhgP0DXzY0me:+lSwbdDWHeFjtyvdjX2w0DXzY0me","tlshash":"0182e043eb7d80e02039ab687545cd6b76c84ac529d993c4169ffde6d6633c01e9f08b","first_seen":"2025-09-21T12:02:08.032982Z","last_seen":"2026-04-09T16:10:59.392777Z","times_seen":264,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/matt.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/matt.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:37 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673849-6447\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25671,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 399x399, components 3","md5":"017ffb52c4eeb07373f9bdba77f79ea1","sha1":"364a0060a7ab41c6f69d203558d6d065d9f11390","sha256":"e1140750b8774e0e443b586945a7ef9181fc05c6e16426ada353ec305ebff7cb","sha512":"f679f7b71a9032e3d3eafe56b503e2bee23df0d0e8c2c72725a7c7bc6c666475c97c59398d98999b91dfa07f9e39cd1474df1f7e779f038e68988affd145f1b8","ssdeep":"768:+3BaIyRGOvDg2OSgb4XPkqxao4zyNogjH:wBHWGO730bg8qQoTy4H","tlshash":"cbb2d0bbd357ad6de02cf7b858f83b5a93054b614dfb846b3e9352c60b3a640144823e","first_seen":"2024-08-02T10:43:53Z","last_seen":"2026-04-09T12:09:38.708354Z","times_seen":345,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/stax_3x.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.069Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/stax_3x.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 88668\r\nlast-modified: Wed, 14 Jan 2026 06:32:11 GMT\r\netag: \"6967386b-15a5c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":88668,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9e3a688d1c239e7cd6592c2a2a57d6dc","sha1":"7e0dff11bdb451235bc680950e676df1f3579793","sha256":"4f5fa6a48ca99b5a9a776d3dc1381879f255745c8d8118a1caac2b5f257e9087","sha512":"8cab991484f4569842e377c4274407c6a74e775fffe040d86b67db49d137721f423661f5a018b6cfee85b90e82fcb3cc2f3e8da799ca5f6bc12fb131f79c5053","ssdeep":"1536:SFVTtSReWFJVRUO9UtwFyAY9EbvFnO1118GvI8zAkLUXEosi8D:AWfVRJS6FBCKvFnO11+2c8D","tlshash":"048301f664e16241d013a370992b6c25737850dfa9e37b2eac5706f1f80e4ac6db42db","first_seen":"2024-12-10T16:50:02.864008Z","last_seen":"2026-04-09T12:09:38.666451Z","times_seen":320,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/sizexl-typecoin-assetusdt.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/sizexl-typecoin-assetusdt.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 560\r\nlast-modified: Wed, 14 Jan 2026 06:32:10 GMT\r\netag: \"6967386a-230\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":560,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"cd53f84f6e70450efcca5e46d568f38d","sha1":"1515a6d05c6fda40dbad8197f7f6ec92c740fd1a","sha256":"2852d2f1d57955c86999ae5b141da011992217db46b140d086af52beae3b3315","sha512":"d79709faa3145d5553c15bc8051889fa483b5f8542108b0b128b6dcd60d7af8cc5aca83a32e8b46398326608371de5992c622a3c3b5c3d5576213cd404fbb695","ssdeep":"","tlshash":"06f041860140091ab8cf2a0ef022c20a80224006c8c2caf29342b063bafdec4a911d9a","first_seen":"2025-05-06T13:57:35.301026Z","last_seen":"2026-04-09T12:09:38.641823Z","times_seen":331,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/otsdkstub.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.924Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/otsdkstub.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673853-65d6\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26070,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (26069)","md5":"d7d5ec92092a6d24e4621faebcfc71be","sha1":"b2c9502d5804e854e5e17bfbf00dd116e138fade","sha256":"57e99ffdcaa5df268c115fed41ce45490d1bfe8607151738e561292a5e2e5ca7","sha512":"065c9da88b5617ac73258a74e20209db6d2f4ca1f1507a3404bf2c9597b826f4352d5b43c7189179dce5d873499c0683e5b6ed6bf3f51f1f987a0d92bf6f23bf","ssdeep":"384:F58KNPpfxrLWMABwX/Ny0rkB+r58eYxcCLn2cVKZ5Q8eFKJx6yzGq:bdxfxvlABwXVyvB+r5a+CDhCWq","tlshash":"d4c2e8ddb144ee3446d361dc9a3be26ab23a786d3485d064b864dce0247cc4f6533bb6","first_seen":"2025-12-08T05:57:37.270424Z","last_seen":"2026-04-09T12:09:38.621386Z","times_seen":11049,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ll.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ll.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 11220\r\nlast-modified: Wed, 14 Jan 2026 06:32:03 GMT\r\netag: \"69673863-2bd4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11220,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"580c11cc9848e5b97401b5e9c83d1986","sha1":"5ff66e69c14a2cac85e842f405f41a2dc2ddc646","sha256":"9a34224614147627aca7b34351e4dd3ccbf5eba460d6214b1d2b7783ac2863bb","sha512":"49a47aef85c9f1ee6bbf8b35c8d8685803efbed856d6abc690bb451b2213a5d9a102fdaab93de8dfdbf5e74487575705c7ae672894efb3f1893846fc335cffcd","ssdeep":"192:HwTAjsb69+HXupFX8G1o5aZuaCJkd9pcnwD68kk4uP6gM2yXDFVcGWo9Oa3DmXv:HwTAjOXupZ8GyaZnCJkd9nDC5tgXyXBa","tlshash":"cf32b0205763a0d6e39363350d28991a0e2ead6b4ac737b3728ae2a309c365ebc0d154","first_seen":"2025-05-06T13:57:35.147918Z","last_seen":"2026-04-09T12:09:38.590126Z","times_seen":87,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/matic-token-icon.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.203Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/matic-token-icon.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673864-170e\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5902,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"8c4107feb545528edc12cdb4764c9619","sha1":"0819587079d6ae99114fa42f023d6bd9c848eeec","sha256":"115208b6ee88ae6fc995b6833ad5c19a2ac4dab8f1d85871c28ca2de46c222a6","sha512":"328c1e89892b3084260a9df2fe60cd639bc34cbd33d2398da1483a380eb80f5cc85e70eed7398669626fef2e744198a727b6ed420f86cc4c7fe64cb997618a7f","ssdeep":"96:47ivxjt7QnMAqp5vHlUmJPSaFob8DzfbyJA8LxPhFO5baLYu3shsB4TAoZi+oBR2:DvltsnMAqPHltPj88POJfX8LCciHrBbk","tlshash":"d6c19d938f3c2452a2ef1e97bc4f59ebc6c9ef91175992a25c6eb1303274f129111c8e","first_seen":"2025-05-06T13:57:35.288717Z","last_seen":"2026-04-09T12:09:38.668494Z","times_seen":100,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/wrapped-bitcoin-logo-1.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.209Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/wrapped-bitcoin-logo-1.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967386f-5d8\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1496,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"1dcdb22a4f87ffea48f0e61ceee50be0","sha1":"5a3bf3cacc8d8402b09e8965a3b69f5cd2154375","sha256":"97af0475b276a67cf1cf6700a5d7323e0191429ef59258b316e697ec15b7fcc6","sha512":"0e1ba066ed6da8093635043875468074414d003dfd3bfcd83b08b2b76fe889c5186345d83ecfa875acfec6ae17cdc4e397ae4a22aebfbdc3ffa80ac02949503f","ssdeep":"","tlshash":"ba31d70f81e2d1e6229a0c306da3da60432c963c00f2b62eb27d5e0a15b290728f9146","first_seen":"2025-05-06T13:57:35.289639Z","last_seen":"2026-04-09T12:09:38.701431Z","times_seen":329,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/email-decode.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/email-decode.min.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:41 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384d-4d7\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-09T20:23:38.294579Z","times_seen":297819,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/ioscookiedisable.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.297Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/ioscookiedisable.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 303\r\nlast-modified: Wed, 14 Jan 2026 06:31:43 GMT\r\netag: \"6967384f-12f\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":303,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (303), with no line terminators","md5":"28533cb162279eba36a01f44efe2509e","sha1":"f73daa139da69729c2591ba88bd42168c0591be0","sha256":"777ed4c86261c3682f931fe1d38b24f184abeb04708a122ea45ec630f0b5f3fa","sha512":"fbfcf8e4dbd3ae44014decc6b78482cf8d8db2d8ece5e66d70f5320e6e78bc16984d1910f0cb2f3c3ced93ae4861cb0b596f5ca216059086c04771f5e48461c4","ssdeep":"","tlshash":"88e027f4586157bd7e75410415c673a03171914e2d06ee459c57dc755958f0e0d52703","first_seen":"2024-12-10T16:50:02.91277Z","last_seen":"2026-04-09T12:09:38.593422Z","times_seen":136,"resource_available":true,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/blog_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.980Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/blog_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 7798\r\nlast-modified: Wed, 14 Jan 2026 06:31:53 GMT\r\netag: \"69673859-1e76\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7798,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e62da81c8c08367bf83e562da1aab92d","sha1":"92a2ac8aa9684aad0ee3d85438ce00123dc42fc2","sha256":"8fda1bd82e863db06b918988ad68fc3c5a2e19de638baa5ff824be2037a45349","sha512":"e73bd296b8d0f623bfd9a08d869b09c4bcd02c5e5113704ccc30ccb15fc33c7161737475318512f00569fab0a9c74c93ba10abcc5daaf63bdb0aa230b5cd3d66","ssdeep":"192:ewThHZiE7sQRIe/KNwVxhLfsvB3RnR8tmXoV:ewT1Ps4ZDLoVNRdQ","tlshash":"75f18ea2230c410ef58082bbb477f75dafb8996ac7197e69c44eea510c29d87bf00c5d","first_seen":"2025-09-20T23:45:00.589664Z","last_seen":"2026-04-09T12:09:38.674224Z","times_seen":51,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/petrica.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.970Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/petrica.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384a-3ecc\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16076,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"899dd009b06dc6fb6f9cfaab92cb9989","sha1":"e949a8ccffb21f83737b09c5359c1747b02827c4","sha256":"8f82aeab718cb2a3c24d00eaaf4e0e2ef8a9a33b30da9e3af66fb25bac0dbff6","sha512":"4bb7b36e1d7d4c2b448e03e94d181be3de2e8257589fa0c20c723b3316c7fbd6819d5806a082e4aa64395a6e5ae954b907cbf08ab8f4ead0bb7208339860e786","ssdeep":"384:sHWouwrejhSKsIm1putUxKeuQNKh1UyqTX/GDQD6u5HfEWE9l:Wnrk0BIm7iUc1QNZyqTX/GDQD3/s9l","tlshash":"1372cf9d79d1ab47e8ae47700ccb5714d94d7e901c46a3bc8b481074efee28c186577a","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.677434Z","times_seen":346,"resource_available":false,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger.com/wp-content/themes/ledger-v2/public/images/homepage/ledger-wallet-mechanism.webm","fqdn":"www.ledger.com","domain":"ledger.com","tld":"com"},"ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:57.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 08:47:27 GMT","end":"Tue, 12 May 2026 09:47:22 GMT"},"fingerprint":{"sha1":"E2:DE:67:89:49:C2:8B:25:6C:A5:0E:B3:0F:47:F9:D9:D5:E9:41:CC","sha256":"65:26:B5:FD:83:A5:22:31:34:E4:DA:5A:9C:B3:60:3A:90:B0:52:38:02:B9:F4:52:3A:FC:7B:4A:D1:E0:77:EE"}}},"request":{"raw":"GET /wp-content/themes/ledger-v2/public/images/homepage/ledger-wallet-mechanism.webm HTTP/1.1\r\nHost: www.ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ndate: Thu, 09 Apr 2026 12:07:57 GMT\r\ncontent-type: video/webm\r\ncontent-length: 146278\r\nage: 416\r\netag: \"dhnx758daz9c34va\"\r\nlast-modified: Wed, 08 Apr 2026 16:39:39 GMT\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS\r\naccess-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization\r\naccess-control-max-age: 1728000\r\nset-cookie: __cf_bm=pwB7.BRNR6KrJUowD4CJRjphugb6Vt.Sp7N0W0cz9kI-1775736477.100121-1.0.1.1-v2lHIPDkWb2bLLfst_MppXuHETzUrZBGU3ZhN3zNqVt5owVC3xEXWNi4Bd.xj26YyOlxzkTaWQuyFWyX83dMchsk9IPcF.NNOsqUU68jua.gX_g5orNkXSVv.PnTKNAt; HttpOnly; Secure; Path=/; Domain=ledger.com; Expires=Thu, 09 Apr 2026 12:37:57 GMT\r\ncontent-range: bytes 0-146277/146278\r\nexpires: Thu, 09 Apr 2026 16:07:57 GMT\r\ncache-control: public, max-age=14400\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 9e9964f5df9056bf-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146278,"size_decoded":0,"mime_type":"video/webm","magic":"WebM","md5":"f6ca01c4ed2d5f56bd02fb4c3b618b6e","sha1":"2972b9f731c78f014d98f2a7eee0146ce914ce64","sha256":"2fe9c9e58aa7f5be61359f1a55e7f98e7519ce111863c5c0b109bb352f0dea2b","sha512":"2a5c99663fb6a1dc3143348c4945460d2aa57e14d81a3f371024cd56cd48af79d9118f35640645f1713180620808b4676c94fe376e9d0d843b8bf6fd86b414ae","ssdeep":"3072:K6s2VMLs0/cabLamnpaG/RGsF28fnpASiwZC6ta1QRd6fruM:Q2GLs0/cogG/sGTZZUqRlM","tlshash":"04e312e59574e6e1c9474eb7c2a393138faee4083a738419edb4791ae8e932c9037513","first_seen":"2024-11-17T18:55:29.929726Z","last_seen":"2026-04-09T15:06:00.087596Z","times_seen":339,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":16,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/chainlink-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/chainlink-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:31:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967385a-408\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1032,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"f75d2ef06922bf55a01596fcb4eb7036","sha1":"1494b78ec1a05a0e0e69b4b6219a35001ff5f349","sha256":"88dc65667008c89f31bbc28c701f47b23bbf784744532ac1ee7f8e3ce402d7b7","sha512":"06687829d3d23aa90e2e4b6cacec8f08b7916f9240d867575dd9d9b22e81fb1cde923a486848a4f7387d9d69108080ebbb1f6218166d48a412d6cb521e1ed607","ssdeep":"","tlshash":"8a11b205a0cc8828aa8216fe0911ff88675c5b2a8ad61a60ae9b6b30f6263f100c4894","first_seen":"2025-05-06T13:57:35.295318Z","last_seen":"2026-04-09T12:09:38.723378Z","times_seen":331,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/css/vli5gyn.css","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/css/vli5gyn.css HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/main.css\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 14 Jan 2026 06:31:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967382c-c12\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3090,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (516)","md5":"6856a9c589efa823ed886c27191bf71c","sha1":"eee76d3788874f146cb3ea5ffdd56b01ab044f37","sha256":"b41dcbcb0dd669d099b38715ec10c87341a6578db7219affeccc6d564ff67f5f","sha512":"a1bb97f3ad9cea2fe98abf2ed84affaca883733e510a33e6cded91833aa4f14e35c03fce2c4f07f319745a2dcbab1478d6e0fbda6afad9783953bb04e1cac695","ssdeep":"","tlshash":"1651eb61094841e2d0e44e7676ce7b58b41f312a39d0dc9281b58c78ddb6eb77341fae","first_seen":"2025-08-11T22:43:56.617049Z","last_seen":"2026-04-09T12:09:38.671418Z","times_seen":9,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en//static/js/language-cookie.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en//static/js/language-cookie.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 290\r\nlast-modified: Wed, 14 Jan 2026 06:31:44 GMT\r\netag: \"69673850-122\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":290,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"f3606e4db5e156a1b086bcfeb3b2d9b4","sha1":"23220c5385d52aa1226568fa61390fae99b9c707","sha256":"e923165e0466e69b1e37ea031843f07029a2b4ce2f7aa133f807f020fea53217","sha512":"400a8d14e0e971e0f3077e6044426bb9f8ab3e542169a3ae71b4c046ab461921b2d2f62b402708311f8905f69c4c9cf13e081a624ab2fa8da666ad67e3a24b28","ssdeep":"","tlshash":"56d012183bdc462c053573153bfee2553d3575497082944e4784f4741de4e63ec688b7","first_seen":"2025-03-05T15:00:38.97335Z","last_seen":"2026-04-09T19:36:55.604265Z","times_seen":12064,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/polkadot-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/polkadot-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673867-464\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1124,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"1f973069a2a0f287e4c9d28f7e99e196","sha1":"55ab5d6f90b2663df28bdea4670047221fd79b76","sha256":"6ef3606f0bff2daa61ff46eeeb605cc179b0ae89f381642edf505da05dc2bbfe","sha512":"e715529a38aee0ddfc13cdd38ab12146248823f8569e657b3610259d122f2ce30ad7f06b2254ccff0173fad0883d42d1595cc9120c9cfa3a3997575ecb8268a4","ssdeep":"","tlshash":"dd212c3d8e93700901637d41d9305f70db4462a510eacb048a7c0cc4554b55ffecf48e","first_seen":"2025-05-06T13:57:35.186302Z","last_seen":"2026-04-09T12:09:38.721419Z","times_seen":334,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/optimism.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/optimism.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673865-202e\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8238,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"98b7d247460497b1ca826672466e714f","sha1":"5c45301b370cb223e08ec6030d97b49e82fe80dc","sha256":"a6ec953e943b74ea84774846d976e90900244cb423948f7ab457602fe46fdd18","sha512":"3b9715ec85b0f8a4880cc0997871a971896cded3819d6e3de03caceee4d7fde30fd722f39b1a098693e8dcca8b7efa9d862413062cb1cfe16350419cb55e4c86","ssdeep":"192:4Bt1e7ANy5Jiy7zQgJTuV+/d0XOHdlqJTiWiPuy:ot1eUNmpsSwO9YJeW2uy","tlshash":"b002bf2a35170c875c6442c0d0f2c6ca8fa30d1ae03f1beadd03a6c251aff71b218116","first_seen":"2025-05-06T13:57:35.16277Z","last_seen":"2026-04-09T12:09:38.704545Z","times_seen":321,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/testimonials.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.314Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/testimonials.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 528\r\nlast-modified: Wed, 14 Jan 2026 06:31:50 GMT\r\netag: \"69673856-210\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":528,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (528), with no line terminators","md5":"aad194138515f5e1607d25be3436685c","sha1":"294e44e8ff518258af29006977be0124b290467f","sha256":"a7b675fa80afea28777e06db768278b53a3ef618f273d0e14121579a3bf23056","sha512":"99787cd9c75f9b43a9f9c934a0d8dc4f54b8d403aeafbd96e5807f0143ee884288944ed620406c277d1f4e821ee422cacd344abc866da1f65ddff634faa43e9d","ssdeep":"","tlshash":"70f0c0ba5705103683f75a79c649f1601e61e445e7c35f61d058ac43ddf4a2010ff0d5","first_seen":"2025-06-21T14:06:44.257387Z","last_seen":"2026-04-09T12:09:38.706423Z","times_seen":69,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/call-back-banner-desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/call-back-banner-desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 42182\r\nlast-modified: Wed, 14 Jan 2026 06:31:32 GMT\r\netag: \"69673844-a4c6\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":42182,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"17794845e7846ba01d4a57aa407b28b2","sha1":"ecb0cf97fa489f4a274ffff4baba19879cf24456","sha256":"64f08c21bf2f7e104c7a9cb9dc20b7f61caa850120928ddbafe8c4a2ca7582de","sha512":"fcc7efd25d54a8e7a35f6e25582c2a571dae25d92d3fb7998b4b196b978a7bbe74014fee34389c4bb31b4eb30295003a3c80e5152ae44b70d56c02502c2b1db5","ssdeep":"768:6TcJPAl++lwHJe45JqY5/r1FCIfDS2ZawLOUr6ETri8RkVXQPmag:3ydlwHo4v35j1FCI2eag6EK8RygPK","tlshash":"4813e07b5fa31970c2080430a6bc17a87e5c3f11ab74d2ee2f9743a0f3666740798d6a","first_seen":"2024-08-02T10:43:53Z","last_seen":"2026-04-09T12:09:38.72815Z","times_seen":324,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/jquery.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.927Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/jquery.min.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673851-15601\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":87553,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-04-09T20:26:15.914698Z","times_seen":698885,"resource_available":true,"data":null}},"time_used":56,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ethereum-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ethereum-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/png\r\ncontent-length: 1022\r\nlast-modified: Wed, 14 Jan 2026 06:31:58 GMT\r\netag: \"6967385e-3fe\"\r\nexpires: Sat, 09 May 2026 12:07:55 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1022,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"ff691e0b0129deaa9c266de47f3260ee","sha1":"00e3e2becb57d1410948a77f5a16927d722171d2","sha256":"727b0356d4864bcd3903ffe5029eb839e0831f338c16b47258cc19af135ca569","sha512":"53198f3a5505a2741921ce2efc2b76a6befa55b57de19fa8bb0211abb6efa38e0644cecba2c18392242f791886fd8fbd6953ec1eb09bc985bc79e1731dff4bfa","ssdeep":"","tlshash":"8011a868f305d4ee566178472600be51790969904b0ae0837d538bb13b45483fe554b5","first_seen":"2025-05-06T13:57:35.132536Z","last_seen":"2026-04-09T12:09:38.700602Z","times_seen":334,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/janet.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/janet.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673848-4ed8\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20184,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"726fb0f0fb85d8d75b73123c8e6d7827","sha1":"df03c01bd1b50a1248f226ba73413d9f804e8fa2","sha256":"b90f393ed06c7740bc028db8f4191923271496bc01bfcd4902323bd48f31bf96","sha512":"abf619d5fd82c662989f2e75f2ac8de4098af4047a0414aa8bfefb4269a7c83c57b19d266651e97fb8818dff61ad4b97d41e3a17254dba6e9bd52794fcafdace","ssdeep":"384:shQcmi57koMTkGu1BhpKnWPAMjaxMUF5v7rLmiFLveHYhmrQkfX3kNIE8WLxC1dB:eXNMTk1B0MjiH+iJve6Fkfn+Q1dB","tlshash":"1992e14f87ac9d63f9dc217900d81769bdc67b62102b29133042cdc73f399a9a5b4ec2","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.710284Z","times_seen":348,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/arbitrum-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/arbitrum-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:31:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673858-ade\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2782,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"e64b75bf8d9c3e74a9f578596ce0d758","sha1":"1b9b5d5d2951d593187e10ed93492de0fd89f9c1","sha256":"9ef715adabad33b1057770961765ab7c627bed30f6a6cd732bbe26d826e6297a","sha512":"d0ccd8bf6b6c3f6400bb66c0dd662b1297724167d1d0fd7fa1b44b304350dfbb0c2a95b84fbc69b023babbe9406646c5e25b0ea1bf2d38188aa960503021a4d7","ssdeep":"","tlshash":"ad517c039b3c413a6e64f8671d7919cfca07210584070af2c268d7ea52bce01ef1a79e","first_seen":"2025-05-06T13:57:35.155184Z","last_seen":"2026-04-09T12:09:38.678214Z","times_seen":329,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia1zl7.woff2","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.718Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia1zl7.woff2 HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/69ca37b5d7464d2d86edcc6cf49bd70c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 48256\r\nlast-modified: Wed, 14 Jan 2026 06:31:20 GMT\r\netag: \"69673838-bc80\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48256,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48256, version 1.0","md5":"260c81a4759baf163c025001c4f27872","sha1":"f11d729bb0a4d8350d2ea3d0fc062cf6ef2d5298","sha256":"3100e775e8616cd2611beecfa23a4263d7037586789b43f035236a2e6fbd4c62","sha512":"9acec3e7a411a1eb6d072c3773bb14e5aa74d85d334674ec0fb018b7937174d5b612b756b2ce7aa3993d31dfe172516e7aaec79c7dd209eac5fd15d9aea077e9","ssdeep":"768:Gp4Wb3wv+eCLRZRtq9uGHpHveBOX5qw/14X+5edVWK4afHSTle4MRhVUNMT/TQDt:Gp483wdmXRtqhJPeByj/f4WK4mHIj8xw","tlshash":"be2302df9e4d72d29271267045338383798e2d8a50aae7a1061c0fe6de05b69d31fb9c","first_seen":"2025-05-30T10:47:22.433446Z","last_seen":"2026-04-09T20:39:17.679153Z","times_seen":13938,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/entreprise_mobile.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/entreprise_mobile.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 12260\r\nlast-modified: Wed, 14 Jan 2026 06:31:57 GMT\r\netag: \"6967385d-2fe4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12260,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ecc41ed319fdfe2a85200230fd851d81","sha1":"2a57e0b566dd6c8480b3a9ad151eec80271aa20f","sha256":"6100859e02a0d02a032cbbb44b4ac523f6290ded2275e277d339a879408cb7b1","sha512":"6e13c8efd5958bc1ccf1b045273a49248273e7f1e6a30fd0f6db4336cf575c22a6d7ea05f6391580d885453b960bd48ad9dd5cfac13e04d39df86fb655499bc4","ssdeep":"192:suwToHKYHswu2PineUMoPPKisPnMOWMuOB+g88dKABcf0uiqxj8ZKz/mQmESYq:DwTgK7wcotPMjMogvKNaK3mES1","tlshash":"b442adac237489a4e52d3fb4aa905f2b97d48ad3ed5b0380e1d2a1155f28f99780c733","first_seen":"2026-03-15T13:55:49.957076Z","last_seen":"2026-04-09T12:09:38.696833Z","times_seen":3,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/fanzo.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/fanzo.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673846-4bd2\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19410,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"bc2f2f992451a168be205b8ddbafe13a","sha1":"0ce2173178cb86aedefb40a10ef183aecdfcc95e","sha256":"cc57f9b7379fbee57474c478d2d094b9fae96542850f690ee18ef6771e2b4c75","sha512":"0abce1ff47d115152f084ebcd5b29f63259883ca356536f28eba98dd84ac417b628de3d50d9c2bad30bd2ddc4b30d59fe1abbd14bc5a30ad6116bd818dada0b6","ssdeep":"384:sqAww4dRq8/apAJy8V0y0DpZMKh7F0XZfGrxhiqVvFP5k8si:fw4p948VJ0DpZTh2wKIFPL","tlshash":"c092c0f04b014615e0fc1931ba5f1e53d8f1aa9dba29c74b6490836a6bb6480c87b2cd","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.730608Z","times_seen":347,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/quest_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/quest_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 49734\r\nlast-modified: Wed, 14 Jan 2026 06:32:08 GMT\r\netag: \"69673868-c246\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49734,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"726a45eee075c1b9f70a552349402a8f","sha1":"9321daa904277f4c801a9a5a05b98351c8cee64f","sha256":"c03602e2a7230984e69cff86e30d6add8980f77b8d356f9a319bc80d8da7f773","sha512":"e56e5c49a3e4d95d3842925e99f655da994f7653e95efccc63bda6c6c1efb96037788e24db443aef86ed5e359ebe345635b0471a637c38aee0352e1bc8b5c617","ssdeep":"768:jTAlM3po6JaV1GBNsmWHZnexgmFveqhPiK+irZrTBPmVGc6V+qQnbywKWgSr:d5o6Jw1GBNsNcxg4vbhKh0tTBufqKfZr","tlshash":"a023f1a66b892652ef1143b23b733ec6c4775b24b462814ee6b9b4452dc40f4e4f5883","first_seen":"2025-08-29T01:42:35.42075Z","last_seen":"2026-04-09T12:09:38.695897Z","times_seen":68,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":66,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/css/swiper-bundle.min.css","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/css/swiper-bundle.min.css HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 14 Jan 2026 06:31:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967382c-3d70\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15728,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (15474)","md5":"ca986248e5603b528938014039d8253f","sha1":"c099d525b21d19bf6431c6f1c042abc169fc6025","sha256":"3827934e651513cff788460c15cb0a9951b7294e87c15df8728bbfc3cd4721af","sha512":"01e1ebce6ff311a2b08d76a753eb09763573da5c45c9699677003bcf25f26bcfb0e3cc8913030ba795272fb10850d0a6e1dde7a827b8b9b84015c3c08d612ff4","ssdeep":"192:qGJlXZHZ+SMS4nxep/a2GZb0Q5nfufKlAYfg5fyeesedOJ9A5Pz+c3At2/6:qGJdZHZ+1nZ24tlWfF4XYz","tlshash":"226203985340282753274f365bb1cbb9d67448c10f9389be91c0ee48d7f6dba136f2a9","first_seen":"2026-03-15T13:55:49.946536Z","last_seen":"2026-04-09T12:09:38.727004Z","times_seen":3,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/css/homepage.css","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/css/homepage.css HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 14 Jan 2026 06:31:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967382a-7acb\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31435,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (31435), with no line terminators","md5":"d16393f44b7bd83b15a9f9d63d3c8e5c","sha1":"fd05efc134a30b7ed5abb12ed880855d8021ee6e","sha256":"1df612da1a208c2500beaebb9c863a7537eed5b0b33224c4724554970d6bda4c","sha512":"a355001e334c0f9f185a2864d6bacec64aca64d0bac5554f4aae54379c4a32decf1359248dc71a19a5dfa7de6f0d4c8350e1624d8f6aff5a84597d4205734fc0","ssdeep":"384:QaxRgodo77jhJXmU2/FWcBokc/EkGwdiogoi06bT41JyNE/+AJ+wbkmANJ1DJwTG:AD6tNy1qV4AOOW/996","tlshash":"5de284119f713239f1bf447e746271553e24d829eb0b68ecea51e914e7ed68202b338e","first_seen":"2026-03-15T13:55:49.939462Z","last_seen":"2026-04-09T12:09:38.731835Z","times_seen":3,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/multisig_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/multisig_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 31052\r\nlast-modified: Wed, 14 Jan 2026 06:32:04 GMT\r\netag: \"69673864-794c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31052,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d63bc5870cc4dc763dcb1e1abcb16798","sha1":"cce34e61026d0bcc56075d12e5d84c54694fad72","sha256":"10e888197380fa4cbef8cd86bbb79bc468a906c34518e611f580cb0f7ededd04","sha512":"940f380c0ec580ef23b4101ef239fd44c4710dfab0417a9f36a7b22b814d2c8557b230ec554749e37e75fea569c3f5162aafbdef9a441904c359bdb4fd0e4449","ssdeep":"384:fwTxVplOFOinR1ljNhHbKUVxYyXs3MqA7lnhuOVyl3bzuQ80VhXO4VQhO6POxNER:4Tx/EXRrj2IYyW2o8yl3K0ze46hRgER","tlshash":"bad2e0de42a90356c3dbc5f9dda86f1bd24a39a9e7e5d30c14c40e22755cc721ec31a8","first_seen":"2025-11-01T07:55:41.882645Z","last_seen":"2026-04-09T12:09:38.623419Z","times_seen":39,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/academy.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/academy.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2192\r\nlast-modified: Wed, 14 Jan 2026 06:31:51 GMT\r\netag: \"69673857-890\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2192,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d29a16be5ee0859d7e1bed8d9d65db40","sha1":"8ccf8bfeb336ad753be3a4ae61a13bf04c4b73cb","sha256":"205f900cb1c9742ede38dc791b6299ac55b2983e467322192ef9e5882069da95","sha512":"77bb58a876992077357f932b04b27820a2415f3ab1a8ee1f003dbff0bb8502e6f6ed500cb257c770aab5aad6b876741693eddd41f87ce724ff340e00e00de0df","ssdeep":"","tlshash":"ba411a211718c304d62a643468714b2aeb70b923ed894b5b700344110f1faefbbeecbe","first_seen":"2025-05-06T13:57:35.232977Z","last_seen":"2026-04-09T12:09:38.736546Z","times_seen":88,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/dapps_desktop_section.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/dapps_desktop_section.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 19932\r\nlast-modified: Wed, 14 Jan 2026 06:31:56 GMT\r\netag: \"6967385c-4ddc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19932,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"8998f9c67edc3babc276e964334c0664","sha1":"7bce519dae914f404936f68784876a8ad9755019","sha256":"c5063552e96983d2ab6fbd3dfc9239e995533c8adb3343f38ca99caa6caf2935","sha512":"3bfff79c455854b9349da3857f0b452af898af41bd2d609ea3e557634dcc5b6c7c1f58828140ee4681608201eef831141c7294148211ffaf33068858bdf0d194","ssdeep":"384:XwT2dn235irtVoaxP3ODmlRUPuHk+bR3II3XtCVlwIAEjedm:AT2dairtiaxfODmU2EUR4M4Dxho","tlshash":"5292d00b936268daf1fd83b6e488373d0637bb3eac3650ead95b0157ab054b710d9e10","first_seen":"2026-01-03T20:43:02.960847Z","last_seen":"2026-04-09T12:09:38.685546Z","times_seen":35,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/blog_mob.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/blog_mob.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3076\r\nlast-modified: Wed, 14 Jan 2026 06:31:53 GMT\r\netag: \"69673859-c04\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3076,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"feb2817f6205a641fef5796ab6d58b63","sha1":"eaa2291b916019565526d36c05347f79cc432744","sha256":"6eb3f90ee3c53066d5fc0829879cf5b0183da549a8d5d8fbfc038dc9b436fb24","sha512":"5a05e1dd5481a93246293d9e8ae85a702a5a7e6fbae6e5c341f5505fff2efe789d06bf183059f5bf2d4f0d01d4d057a82c5293c66388ffa669b25a45c38d6d15","ssdeep":"","tlshash":"c6512ae3e3f6339dd16222392971ab82c7f9f523c1698337a3902ba39714ec621485d5","first_seen":"2025-09-20T23:45:00.621509Z","last_seen":"2026-04-09T12:09:38.639723Z","times_seen":51,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/payment-methods-logos.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/payment-methods-logos.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 10008\r\nlast-modified: Wed, 14 Jan 2026 06:32:07 GMT\r\netag: \"69673867-2718\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10008,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f7abbc67881c110f009050420c0f5525","sha1":"55472e3c69a4a0aca5f32f665c8379f0e2a57159","sha256":"f4ab2ed610d4060edea08a4e2355006504858826c0666cf6d02e0105dd448adc","sha512":"3dc18e0e8444ad69437bbf92f6adf0d502faef061a25621a0b89f6715088c1ea115f747496c8c81c20cd2cc68e65f3dd34e2721c21e4a3268dd6dd963d56113d","ssdeep":"192:ZwTJQNWxZqAhxmKuUVkYc+ylMdAqdgK6EXBf6o8XquN5G3PgWThhKpEO:ZwTJQGq0Zu8kdIpt8oo5D23q","tlshash":"63229ee59724431fdcb51efc70361713d27b2820a1763a6366d50f8feb202696a2c92d","first_seen":"2025-05-06T13:57:35.25619Z","last_seen":"2026-04-09T15:06:00.089999Z","times_seen":388,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia1zl7.woff2","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia1zl7.woff2 HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/69ca37b5d7464d2d86edcc6cf49bd70c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 48256\r\nlast-modified: Wed, 14 Jan 2026 06:31:20 GMT\r\netag: \"69673838-bc80\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48256,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48256, version 1.0","md5":"260c81a4759baf163c025001c4f27872","sha1":"f11d729bb0a4d8350d2ea3d0fc062cf6ef2d5298","sha256":"3100e775e8616cd2611beecfa23a4263d7037586789b43f035236a2e6fbd4c62","sha512":"9acec3e7a411a1eb6d072c3773bb14e5aa74d85d334674ec0fb018b7937174d5b612b756b2ce7aa3993d31dfe172516e7aaec79c7dd209eac5fd15d9aea077e9","ssdeep":"768:Gp4Wb3wv+eCLRZRtq9uGHpHveBOX5qw/14X+5edVWK4afHSTle4MRhVUNMT/TQDt:Gp483wdmXRtqhJPeByj/f4WK4mHIj8xw","tlshash":"be2302df9e4d72d29271267045338383798e2d8a50aae7a1061c0fe6de05b69d31fb9c","first_seen":"2025-05-30T10:47:22.433446Z","last_seen":"2026-04-09T20:39:17.679153Z","times_seen":13938,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-09T12:07:53.178Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-09T20:28:36.10929Z","times_seen":13552824,"resource_available":true,"data":null}},"time_used":1213,"timings":{"blocked":1213,"dns":0,"connect":31,"send":0,"wait":0,"receive":0,"ssl":41},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/enterprise_9a3e3afb-5112-4fb8-aa8e-bcaa1e238bc3.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/enterprise_9a3e3afb-5112-4fb8-aa8e-bcaa1e238bc3.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 43082\r\nlast-modified: Wed, 14 Jan 2026 06:31:57 GMT\r\netag: \"6967385d-a84a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43082,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"214d8a8a871bd7d78021c8753bde22f0","sha1":"72c25733459151011e19956ebfae7ae75d68b72a","sha256":"3a951a412d4362ea2431349efe581f0fa6658cd56b1ac3ac3614c19c52054b7b","sha512":"6aa529c90bb8f56e9ed5e010c1a057e629fa9583b61c2d885dc42a14747d885bd10fdf69b0fb54a97fe11dbebad82ea9f702cf27a03187be2c8b8f92074a6f1b","ssdeep":"768:coTvRiAo02YSIsprtVDnEamb7JALqCiG26vPW7HjHSM7d466VK5ebntl4rVZ8/ll:rFo02YP4VbAHAq3GbvO3yM7K5VCebntz","tlshash":"ba13f1475fb38091d6358b3e0c4ff9e5f400ea1ae9916929c6ccc7a2baf5494617980f","first_seen":"2025-09-20T23:45:00.585058Z","last_seen":"2026-04-09T12:09:38.637021Z","times_seen":53,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/entries_visuals_mob.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/entries_visuals_mob.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 8756\r\nlast-modified: Wed, 14 Jan 2026 06:31:58 GMT\r\netag: \"6967385e-2234\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8756,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d3b0a693abcd9062949c2c2f11dc6980","sha1":"85f09ca662a48e777451a8341110cd2a245de638","sha256":"e78d12148e1f32508c249f23456ef95523fa6d956d98e9d198d13382f668733b","sha512":"bc59362182899747c4ebc799a8a3f43d0c8d76e93c05075e5a165322479e456e2aeed814e9fe1050c50f76517facd71811396a37411175f92989c4f711161ecb","ssdeep":"192:6wTOLc70ZeGAzIEqhmn7EQp26Cq5WNfBv:6wTOLS0zAzTw2xQ3","tlshash":"25029e7057915399c1a08b3af6517f18e4fc78062e0fadef84d681da0d30d74f96a29e","first_seen":"2025-05-06T13:57:35.223855Z","last_seen":"2026-04-09T12:09:38.71869Z","times_seen":88,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/visual-14.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/visual-14.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 47142\r\nlast-modified: Wed, 14 Jan 2026 06:32:14 GMT\r\netag: \"6967386e-b826\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":47142,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2d63540a941ee082fbe0ff40db5ab131","sha1":"3b7ca0a8de095c24c509d51898dd58b143abbeba","sha256":"cca63c403f2f2dceacc6e84852319d871888a75dbb2381acbbcf782a4243198d","sha512":"e52d7321f4b5dcb617cf9d91f97e41549eaf0e7eb26bd36ef7b149364c6a04f6ab16a245f3f507bf47b5eb0881774de1e7c2d1def6585eb9661e6d5ab0880496","ssdeep":"768:h+TUu7OBS4VmJXDu6+RklQvYf5j1M18mQSHqoLpT1JGHHeaDjTPQg:zuCBgJuxRkliYxjODNHqoL1nqeaDF","tlshash":"912302cae6eb0b46ce14cb7aedf49c4796c60d0ab9b24ed724211573e51b35b3e88481","first_seen":"2026-01-03T20:43:02.908947Z","last_seen":"2026-04-09T12:09:38.720013Z","times_seen":17,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/cardano-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/cardano-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:31:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967385a-4d2\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1234,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"bb48e94647673ab8d13806359ecc5a34","sha1":"780ad3974f2f11df789cd359cb52ecef7c21d492","sha256":"8bcda425b6a5dc497ebd1ccfbe779ebbcf15ce53e306c428aa407a9317981bba","sha512":"a59bbe08b9074a4e5ec0f4b4d000b6159d3909d83d992b6a4083b1907a8d83a8c68b30d6927e19e0746cda41242c1c023aec10af43e0f716c2b66f3ccb456973","ssdeep":"","tlshash":"ac21e7adfc086ab942d3b85ecf30b7898269231c5a8d3d2d543df8c1556d06cd3202db","first_seen":"2025-05-06T13:57:35.262131Z","last_seen":"2026-04-09T12:09:38.720672Z","times_seen":331,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/lkmland.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.972Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/lkmland.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673848-6e2a\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28202,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"93f0d969af6492575ec2ed6e22305da5","sha1":"b970aa482a9aa13bec249b054c57821a0d56badc","sha256":"1f3305a2f9b4d65a42d8bdd271f0e3b38125fb1f4f5433d16faceabc4eeddbf4","sha512":"23fb5854c5ba32f5ec96dd8211f1e0db7169e823c6c80ab08fc4c40286b26552b81243bfac5ad7c176a6b5b467ccba59d76f59f796f60ed37f580e0e52c1a0aa","ssdeep":"768:hdcI7N/P5+34i6L838Ik+d1GuhBnBjDH70cX4XBH:hdtP5+3+8M8d1GuhBBjH2H","tlshash":"b0c2f1c54b421257fd65653c3548dd6a7e4f2d1c81c297c3808e5b9feb382e4ee8607a","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.59829Z","times_seen":347,"resource_available":false,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger.com/wp-content/themes/ledger-v2/public/images/ledger-logo-long.svg","fqdn":"www.ledger.com","domain":"ledger.com","tld":"com"},"ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.934Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 08:47:27 GMT","end":"Tue, 12 May 2026 09:47:22 GMT"},"fingerprint":{"sha1":"E2:DE:67:89:49:C2:8B:25:6C:A5:0E:B3:0F:47:F9:D9:D5:E9:41:CC","sha256":"65:26:B5:FD:83:A5:22:31:34:E4:DA:5A:9C:B3:60:3A:90:B0:52:38:02:B9:F4:52:3A:FC:7B:4A:D1:E0:77:EE"}}},"request":{"raw":"GET /wp-content/themes/ledger-v2/public/images/ledger-logo-long.svg HTTP/1.1\r\nHost: www.ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 894\r\ncontent-encoding: br\r\netag: \"dhnx758daz9c1jd\"\r\nlast-modified: Wed, 08 Apr 2026 16:39:39 GMT\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS\r\naccess-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization\r\naccess-control-max-age: 1728000\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=wKcCHOavZWJS7ZDKTOluhnxcQrc0QpzyFd1eVoN2lSg-1775736475.9408734-1.0.1.1-QCqMz0q6Xr2kvouZSWK8TTUn_5RrIlo7DyFml7P1WBrRy6Nl4P_nnEE_2iFQa1jWem74o11m8OkIXg2MoVwGhDv1Iq2ZZKHMbjw835p8g8fbpZt1s8xx_UfQbirENHZI; HttpOnly; Secure; Path=/; Domain=ledger.com; Expires=Thu, 09 Apr 2026 12:37:55 GMT\r\nage: 26057\r\nexpires: Thu, 09 Apr 2026 16:07:55 GMT\r\ncache-control: public, max-age=14400\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 9e9964ee9fcd56bf-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1993,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bab631a2479c23c7727cf637c7e005e4","sha1":"8314d7bb128be21c1b40ce9de4c76b524b651bcf","sha256":"088d1bf639f9a9e3f2ca38cf1ea4c88002c79d6f3e4706868aa3d9f27208109f","sha512":"f9cc6d7447d4ab817cbb5e516eb4f28982a1f30fc727f8551eab06ebb772b269b0e0afe95b28bb56a3d9ef31d59a0b3e491963fe6a2480f7b1ee5dcb0119a2fa","ssdeep":"","tlshash":"a941b4d84ab002fdcc58e9fe0b68312c696651e5f409449df7e39e2ead9844c8c4a2f2","first_seen":"2023-07-02T01:08:01Z","last_seen":"2026-04-09T12:09:38.72274Z","times_seen":584,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":8,"dns":34,"connect":1,"send":0,"wait":17,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/cobranded_mob.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.060Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/cobranded_mob.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5608\r\nlast-modified: Wed, 14 Jan 2026 06:31:56 GMT\r\netag: \"6967385c-15e8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5608,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a37afc190f7b879378be21ae9cb17bdf","sha1":"61f199c2cfa7c93b01e5bcf3a0a07f43ee3adbb8","sha256":"51e2255e0e8a214182bf03e5a0ea3203232acc2a27c18ebe4d6674e99b4ba8c6","sha512":"515fbf1c17d530dc60b61917ae1e71cab91b14a105caf6753a38d8b87e997630f71f83f6b83241afbe4cbbb2090470d44759f0eccd68e102d25f75da3ad83806","ssdeep":"96:cElbw+iXa7N/zyO6fSBV7Ws7af/9VODbocxEtBsg+dxBByQmnyHVhB/:pwTa7t4a6F9zeE75+pBpHB/","tlshash":"e8c18f4917805109df21e17a209b8c55f21107c06c88780781acd6d21ecfbc5feeca8f","first_seen":"2025-09-20T23:45:00.631286Z","last_seen":"2026-04-09T12:09:38.612323Z","times_seen":51,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/tron-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/tron-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:13 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967386d-50c\"\r\nexpires: Sat, 09 May 2026 12:07:55 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1292,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"9288fc6b6d82015f031fe8ea3c0db40d","sha1":"605a61fb6d9f4c544596df8526af2d9d3e45d482","sha256":"8fbc289849e8e8527e7fb927995e01ed04b2bc02331f3dc7e3530d740b3f91b2","sha512":"1f4ecec958301048ee2a83336027db25ff875b75fbc9ca759df6ff1416847d22fafe0d56d1fd7b820e4e294351b1a86584a6f6065ac9d3abef11b1a824c77e38","ssdeep":"","tlshash":"2d21a5f1fd9184a626cffa7ac5415c84a1bb050451aed00682cb1e568865911ba6421d","first_seen":"2025-05-06T13:57:35.275267Z","last_seen":"2026-04-09T12:09:38.74392Z","times_seen":335,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/usd_coin_icon.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/usd_coin_icon.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:13 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967386d-2484\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9348,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"42a17d8c2dad5e493480d455b8d7e7db","sha1":"9867cb4cb68a6f40f7e400ac78370ea7a32812ad","sha256":"afcaf5f1e29f0f14827e78dabadbf27798d5475686527437cc5dc81541002ca4","sha512":"c1ad27e451a7fe22f7c96f279ffb36ac3eb8e2f79b77ff07f2b5bc72c02ee5342897d7e22660eadea61e59c7e2a93cccd757a519d4e3df65770fd61612c81b20","ssdeep":"192:Tpkn/9Z/Dn9xGeLVlOjqscRcBo6MYh8Zrl1x2VaRs1s0btWdh7O/VpMQ6xS:6n/ryOsIH2horIIRsm0btWKoE","tlshash":"9c12af2ed4e6509be44beaed6291fe468d20cca00130743855992fd277b1eeed46bcf0","first_seen":"2023-07-07T05:08:35Z","last_seen":"2026-04-09T12:09:38.669417Z","times_seen":389,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/language.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.299Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/language.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673852-147b\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5243,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5177)","md5":"325912ad023c3761ba77a58c3ed6c962","sha1":"6ba2a9df348553109c5145e39e471b47b6d9a103","sha256":"e02fc6ccd35d37cf28a5ebbe3f655cc69524bebe740826bc8513e40c96a3993b","sha512":"f45597afa496c35e5dbb5d0658519975e0579ff2bbc27c80b48b3958c326d6fefc53b0d9eb3c41ee79ad01a448228604819ed761aebfb59200238e04e1dd26f2","ssdeep":"96:ttd6zr95qnps9DCpZCLuXLDU4Dpvspi52TCJvhXS:ttEzp5OpACpZ3X/ZDpvspi5ewc","tlshash":"46b1b6ed31c0f432069711b2503f760ff1791a65a85df8448225ecf4a8b9d9b42b6f6b","first_seen":"2025-06-21T14:06:44.355463Z","last_seen":"2026-04-09T12:09:38.632002Z","times_seen":94,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/swiper-bundle.min.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.303Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/swiper-bundle.min.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673856-21c20\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138272,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65282)","md5":"9b52bcce0c3004d1856bc9a4d5042a8e","sha1":"37eaa556e6f385d951fd26c3b2558bcca794f9e7","sha256":"57fe9df5c1cb81e64f22718e83fcea01b465b958782d03426e83a6b3336bc5fa","sha512":"2810addec74539c16d6138047c4dee25c915a6f3ebd70f073ee8323e01c513fe2224ec21c23e9e49a176edb0c94c7457da3c8014e815dd57bdbce0fdeeb6e3ae","ssdeep":"1536:NIJWfG2cz8NgxMGCF+zzHolxUkyBkF+cu0FWvtnSxU9Xmp8MjMLaCW5YG7Qu3WEu:qJoNxBlyBkMsU9Wp8MjMel5YoD39u","tlshash":"84d3f9896220b57646e316db92e4c221b3b50544b80ac8f470bd4c9f597ec9813feffa","first_seen":"2023-04-01T11:04:48Z","last_seen":"2026-04-09T12:11:29.166534Z","times_seen":284,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/script-load-fifty-crypto-assets.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.312Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/script-load-fifty-crypto-assets.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 337\r\nlast-modified: Wed, 14 Jan 2026 06:31:50 GMT\r\netag: \"69673856-151\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":337,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (337), with no line terminators","md5":"0320d871ba95a5193760fa94350afd9c","sha1":"1af265885de4acb683422f44115ba4a392c9b4f0","sha256":"fc720af3ae7a5bbbbc0ed2a5c243f260df0fdd691f5c10a8dbd7b6c15b8688bf","sha512":"c4dfec00b17f900ec15c8556470a4b95ff07e52345516b3d0152c4a8d56e9de6b34476d22dd96822dec9280b7839e3bdcda140b4cb0b061918d394017e55177e","ssdeep":"","tlshash":"74e07d9b66c1f2292bdd30597e3f620daa72d6166446c335c032e5c63d7ce15c232e28","first_seen":"2025-06-21T14:06:44.371868Z","last_seen":"2026-04-09T12:09:38.717885Z","times_seen":61,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-W5FKZ2N","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.645Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:36:34 GMT","end":"Mon, 15 Jun 2026 08:36:33 GMT"},"fingerprint":{"sha1":"2B:85:76:FF:73:EC:64:41:FB:26:DB:EC:68:F0:41:6B:E3:37:11:5D","sha256":"52:B3:B1:11:B7:C1:E7:3F:EE:BB:16:D2:1D:6D:28:EF:98:6C:F6:48:31:A1:82:61:F3:23:B4:E2:1F:A5:D1:B7"}}},"request":{"raw":"GET /gtm.js?id=GTM-W5FKZ2N HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\nexpires: Thu, 09 Apr 2026 12:07:56 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 165279\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":574908,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (35283)","md5":"72c06a713ae7c5bf059c53f12ad2ec28","sha1":"ea9a3ee8d0fac0e78d729e25f20f099f4716171d","sha256":"94f389f0aed48080b582fec6860a1634a03c4038794bb93439ba6e69d85297ca","sha512":"18ead444bba246c708e72ce8afd20035c589b40dd383f78c7e3fcbc12ab695a3e2981d7698a8d9e9508cfd714a18241d654e65cd907c3e2e50c0b06d156f3654","ssdeep":"6144:Yk/20g5/cOjjobF0QJecVbgcw78o/LWWQlcxhhgpCdhnwZH1:N/20g3oZ0keQgh8dShng1","tlshash":"38c419ceb3c674759396e424943f028e693e24e2b44cd895f0d9ccd42e7466a2163fbe","first_seen":"2026-04-09T12:02:33.516085Z","last_seen":"2026-04-09T12:13:26.469535Z","times_seen":5,"resource_available":true,"data":null}},"time_used":396,"timings":{"blocked":126,"dns":2,"connect":30,"send":0,"wait":51,"receive":91,"ssl":93},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/nano_gen5_front_mobile.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/nano_gen5_front_mobile.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5794\r\nlast-modified: Wed, 14 Jan 2026 06:32:05 GMT\r\netag: \"69673865-16a2\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5794,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"1bab6f532df915a43bb26dec970f5d28","sha1":"5425f912a369e0493b15e43771ad4ecad11342a1","sha256":"8a7ba75d97b7c64528da64c8e7f721c8c2fd73b885541be27a94d1b2543d5f4e","sha512":"8c4886bb31dd809c904e3983c5b801d5f4537a5e1213d956acd1b0e2c9d5bd68cdb90a50edc9b5096f3bece631758329e7d0e167888a40eb19b548b2e1f69b44","ssdeep":"96:9Elbw+iXV7VZgOLVBF8nN3Flu+N+xKUFsDbPpa0KSTxGT6hGls7lHMS8Bp:wwT3ZPt8BFlJ+xSbP/40HMS+p","tlshash":"b7c19f913361a30dc3927f70ae661f41f5efdb288c7957c9a6068ba50f509c38ed498a","first_seen":"2026-03-15T13:55:49.899858Z","last_seen":"2026-04-09T12:09:38.714333Z","times_seen":3,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/quest_mobile.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/quest_mobile.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16320\r\nlast-modified: Wed, 14 Jan 2026 06:32:08 GMT\r\netag: \"69673868-3fc0\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16320,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9db98b88eba7aecbad6673a22e89332e","sha1":"952dc6fbba0603715362d8e66aec644a7fc375a9","sha256":"f63a11ec2321996774536f990c6280b304e13034c81e4d0a167a4c710d5a5507","sha512":"c7d62802decc96f91ee1c774e8da2c60f507a5286c5a742a90679aa83094731bac3e9e7def40acc7ddb21a49b634818b67f70a32d9ab21790979c9e22fb88a2f","ssdeep":"384:/wTID7Bq/o3eGlYx39bblDxvAdxkEYhJ4+rdbzRQ:YTM7s/o3eHTx9qkxJ4Ydbz+","tlshash":"ee72e10c2767a3c1f0a7937584726ab0e6b63f61bea90f1a5103b41523c97d25ce43ae","first_seen":"2026-03-15T13:55:49.858241Z","last_seen":"2026-04-09T12:09:38.70378Z","times_seen":3,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/nano-gen5-visual.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/nano-gen5-visual.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 93112\r\nlast-modified: Wed, 14 Jan 2026 06:32:05 GMT\r\netag: \"69673865-16bb8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":93112,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"0b579c5f8a915df5cbb5002a208c1b6e","sha1":"ec2628584159c6e890566fae61a383b033f3006b","sha256":"baa73596d200c3163123cf48a4071f1522b530f34ed5b1a381086cb714ff9f9a","sha512":"f52bbfb50774a0cbfe8b9c2d2524a806d53d062827605be5f42718d7b368ce6c1a95c5378e17057085db277be3c1c216b3b5d32db2a646ea0649f01fc4b15214","ssdeep":"1536:BDxXp44da026vlf7XEKgnHK5S12Y/L+7mtdyuJt/CjfCcK6xR7x+isXGl:5xZ44a02m7X/gq5S12YDqXQ4fg61VsXI","tlshash":"e3931260074847c3f7c96331589b7afe4b697e8b96c6a383de91985307b0af98313535","first_seen":"2025-11-01T07:55:41.927686Z","last_seen":"2026-04-09T12:09:38.617545Z","times_seen":48,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/bnb-logo.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/bnb-logo.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 11918\r\nlast-modified: Wed, 14 Jan 2026 06:31:53 GMT\r\netag: \"69673859-2e8e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11918,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a897a71c2e5f4c1610050c0401df78c6","sha1":"572962f3b789be3515d69320f767ffe73218e79d","sha256":"43c954312230a84630631330eda60a2641f3987bbfae03a378d548f82ce4288c","sha512":"3858e7db7f959ddb43682ab80b6e2161291da6fb84bf99255400aabb1656dcf21e9e61f9f8988a2e6c476d71b058266219d7ea67cdfccfe2aa5f2b557d1931bc","ssdeep":"192:uFwMKyP21sLYHrtG737fDxKyldba9iosVMcJK1SixZMZnHh/yBpAAtFupMzT71mH:uFwM/QRHZUndHWiXpK1pSZnBKBpAiP7M","tlshash":"ca32c0efef8ed6ce49d87e121a3520fe0d5bca86487b4a3ee90514440c4a5fd271ad91","first_seen":"2023-06-17T15:49:31Z","last_seen":"2026-04-09T12:09:38.733963Z","times_seen":446,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/doge-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.199Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/doge-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 1014\r\nlast-modified: Wed, 14 Jan 2026 06:31:56 GMT\r\netag: \"6967385c-3f6\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1014,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"543d65e670d876c84732f514ad97f32e","sha1":"089a44db5438955fc5569504be0c975508688ad9","sha256":"f3d364665d9bf70838a2d825043b70a343a1bdef9ce9d73203d4733527e85223","sha512":"3f5d1686d46cfbcb0cd67f3385d57702a4f99175a7ca76ac8eb572cd23207ee426007d55c09b0bf21b1c066e31b0015c4ae17294335b4d2d69e34d72a792cebb","ssdeep":"","tlshash":"b611a88a55f34b0a2765f7b96e10cb1f91ae570021912c399fe77f1d3076431d40e457","first_seen":"2025-05-06T13:57:35.218716Z","last_seen":"2026-04-09T12:09:38.602935Z","times_seen":332,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/main.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/main.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673851-1d7c\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7548,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7548), with no line terminators","md5":"7b90093807953532f3fdfb8f3e5b9c87","sha1":"e49fae395e8f5207e7db6c69f8360a0af0a582a8","sha256":"00ed171e672008f342169f1c9d4f5e748bb3f6f6df556ed6c1052660092f1594","sha512":"22a27039081f71ffc9b1b55960e3d3b50c0bd4a7499c3b771878291ad8c7d0609c4a4c61ea67ef36bdf1f3689528d509725fbc954593cdcc8035876f3a555bda","ssdeep":"192:VaqUQRTkk750how73yRqWDBJA5bI78i7k:c/Ekk7lcAA5O8X","tlshash":"0ff1a666b61864fe01fb62a3f17f3370323b1557fb9144941426d4a62dace9802b3fda","first_seen":"2025-06-21T14:06:44.311309Z","last_seen":"2026-04-09T12:09:38.745219Z","times_seen":64,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/primenic.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/primenic.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384a-5d1c\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23836,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"111469db5232a37d7ca84f490b56508d","sha1":"e7bb0adbcb724694948463abb9dd415a4ec4ef9a","sha256":"53373a50123dd08a1519fb65f59aa2ab7adde8cd6f554c36bb5192cf6d5ab5b5","sha512":"8c596274dc2b2aa52458c00f4f2b44b6369e0a0bb4c019bc30dbf094d8f9578fa930d45659becf040303e3de49b457a8babebb40b749cf406edeebfe1f139083","ssdeep":"384:sLysUrVeaiSOdGK8YDfdtVB6H3I93EEcqRL64SJ4D3nioI4Ok:PHua2HV4I93rOGOk","tlshash":"4bb2d16656d46be4e18f133df89daa42cc6f3d91d23bc60dc17072931390d65a68dce8","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.724615Z","times_seen":348,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ledger-live-app-face.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ledger-live-app-face.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 10178\r\nlast-modified: Wed, 14 Jan 2026 06:32:01 GMT\r\netag: \"69673861-27c2\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10178,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"dcc158a332b3888b1a4011101ddb4cda","sha1":"c7cb35a59a54e5623a054ec4cbf4d82e9ca0b6ab","sha256":"10be72f57a81db0e4c8322e71b9c266a8c40aa0ced2d7e5959331b8eec3322a3","sha512":"e87992be7819eb11dc7acd29e67ef5888771b497323d6f5ed39190ea579a8b281a77e711e72f18c98109a55442dde2e8a89d66720e7aed7df16afd5698374723","ssdeep":"192:TwTOZVtRcmXCUqPp+LRDK5w+9VLldtZ9mheIPL4TimRyc6Ju3lErJM:TwTOVRcbUIpODidtZ9OZT4Tx4u3lsO","tlshash":"7a22af299384fbc9caa9b5bb90c40b69dc78d2010a44779227c7cf7a0e984cebd5572c","first_seen":"2025-05-06T13:57:35.196995Z","last_seen":"2026-04-09T12:09:38.608198Z","times_seen":95,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/homepage.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.313Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/homepage.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384f-47d\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1149,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1149), with no line terminators","md5":"c7b833c6bdd7976709f1f09ba03891d3","sha1":"6d756493c2bd3bc521f35bdb401eb2f5d306a100","sha256":"88d796948aff4bafaf3d96c4277e0c27d7cae2d65442b8ed96249b0afedf0f81","sha512":"c564b1535518206c2f376097a2b315e832c715c44a7f29c8be18798734c589f0b8c3285946db937abeea73f21458e99c94126fc58223195c533c7cd639caa4ca","ssdeep":"","tlshash":"60219b64303075fc22f785bab03a27b0301f2958f3d249a464a3906099de9b402a77db","first_seen":"2025-06-21T14:06:44.35721Z","last_seen":"2026-04-09T12:09:38.650445Z","times_seen":64,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/classic_nanos_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/classic_nanos_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 10882\r\nlast-modified: Wed, 14 Jan 2026 06:31:55 GMT\r\netag: \"6967385b-2a82\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10882,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"affaaba1bd3d48a333432f3d80ba275f","sha1":"28389f7e1fba5eb0b1cc7f49808426520a26bc95","sha256":"10fbd976aa800970c5413aeff37f00286248fc20610ecd06110329f383d7fb50","sha512":"a3558618c4d464f95306dec3ce2c3903eb6a4eab9039e651fb93a322aa22dce330d06a4037ca274149eea5213101a75b66c171ea86a38a9c9cbbfaeb396f76b2","ssdeep":"192:uwTcBU++NS5Xl5nJE/oPFnrrneVp99/g7sknOr5dggzHc1j7OjiHapUBQ:uwTQ+NKXlxQunrLeVv+skOvzLiHagQ","tlshash":"1722b0a43b402225f30991795521bf1dbf4a52121bda3fe3860d31c41f026c87a918df","first_seen":"2025-11-01T07:55:41.860559Z","last_seen":"2026-04-09T12:09:38.673461Z","times_seen":39,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":76,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/recovery_solutions_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/recovery_solutions_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 11284\r\nlast-modified: Wed, 14 Jan 2026 06:32:08 GMT\r\netag: \"69673868-2c14\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11284,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fea93052ead755c862ff492116214d66","sha1":"65b17ed60598bd5c6c4943a0990fc14b03e19483","sha256":"1f845a7309ad0856889ae5c4936147e48da3e8cb6a6022c4324d2c193cd10038","sha512":"07d99301cabfabcfd4cac8fc5f63090970c6ecb002c1057ec37ce2f6c2b170fafe5fea1715a474e8e11f484b9e134f59a7948aa78db8a7f7088ad1ebf9e38e20","ssdeep":"192:CwTWuV75QnHKXvknlmHeD60VT3xWewnIB+lPhibyx85kzye2osH:CwTxVtQnKMnle0VTBWeiW+jII8+z52oW","tlshash":"5b32ae74977841bce424553eaf9803c193e6516bcbad3efa1f5355394ac584eb6008c9","first_seen":"2025-11-01T07:55:41.897859Z","last_seen":"2026-04-09T12:09:38.609903Z","times_seen":39,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":72,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/partners_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/partners_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 18304\r\nlast-modified: Wed, 14 Jan 2026 06:32:06 GMT\r\netag: \"69673866-4780\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18304,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"07e8e103ed04c1277d73b9b7116cd6c8","sha1":"8cf8fa7e6dea09f4eb60edb37629b0769472d825","sha256":"2a680802cd2f3b732bc0ee91fa4f3e5eaeccc8b3784b55240b3474b492c33de1","sha512":"d1c8ca290d254e75f8825de3b63edbebb1d78f93933a3d928a6125035b1e35a9d6bd754bc82ab10478b7705b01f10c97df190e5b609465bccc7e3aaeda91d174","ssdeep":"384:9wT6O2dr6VUqixP/3s4w1QMFFqXjY0PIDLOO9Fxl0/Nfz263Ohr1VHp+x/vkAZ:CT6dsixP/W1QMGjY5DLfHz01L/yl4/v5","tlshash":"d882e14a03199205f8e4393c24d7b20446fe23ac625662d19b97d1bb8ed9c37cc85fb2","first_seen":"2025-09-20T23:45:00.635412Z","last_seen":"2026-04-09T12:09:38.684912Z","times_seen":51,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/top_up_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.260Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/top_up_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 35764\r\nlast-modified: Wed, 14 Jan 2026 06:32:13 GMT\r\netag: \"6967386d-8bb4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":35764,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6b66ba9cf8d4a7bce54709c854a8727e","sha1":"9ca7d9be1c4ee0cf0d9a135ed52bf9e651e92e4b","sha256":"f54e942c3077e69af994e2fbfde05ca2ff53daa2f1f4a65f3cc8732b96cee9bf","sha512":"d0cdaa4b2f1e6adad093f7c8faafefce18e44789c7c3c567de6fbf3caedbca76f26e29e6e424627c6faa2554769097c62718942d3833167829132a27b356ec97","ssdeep":"768:PTF/aUXsKGKsE6DvQ5F2pX0m707+hUB8fgHQitMFtT6:l4KsE6D+85m+WB8fuQ9tT6","tlshash":"83f2e11d7a018ad4f299fafd24e4cf53d38ed72fb479340b820ab1119bd29e939588d1","first_seen":"2025-11-01T07:55:41.858815Z","last_seen":"2026-04-09T12:09:38.722057Z","times_seen":43,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia1zl7.woff2","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/fonts/ucc73fwrk3iltehus_nvmrmxcp50sjia1zl7.woff2 HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/69ca37b5d7464d2d86edcc6cf49bd70c.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 48256\r\nlast-modified: Wed, 14 Jan 2026 06:31:20 GMT\r\netag: \"69673838-bc80\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48256,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48256, version 1.0","md5":"260c81a4759baf163c025001c4f27872","sha1":"f11d729bb0a4d8350d2ea3d0fc062cf6ef2d5298","sha256":"3100e775e8616cd2611beecfa23a4263d7037586789b43f035236a2e6fbd4c62","sha512":"9acec3e7a411a1eb6d072c3773bb14e5aa74d85d334674ec0fb018b7937174d5b612b756b2ce7aa3993d31dfe172516e7aaec79c7dd209eac5fd15d9aea077e9","ssdeep":"768:Gp4Wb3wv+eCLRZRtq9uGHpHveBOX5qw/14X+5edVWK4afHSTle4MRhVUNMT/TQDt:Gp483wdmXRtqhJPeByj/f4WK4mHIj8xw","tlshash":"be2302df9e4d72d29271267045338383798e2d8a50aae7a1061c0fe6de05b69d31fb9c","first_seen":"2025-05-30T10:47:22.433446Z","last_seen":"2026-04-09T20:39:17.679153Z","times_seen":13938,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/visual2.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/visual2.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 27758\r\nlast-modified: Wed, 14 Jan 2026 06:32:14 GMT\r\netag: \"6967386e-6c6e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27758,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"0e3b03832dbd6f5d9cdab48ef113bbdc","sha1":"5b93fc5bad9f122b7ef2b8b6415cd1d02ee7d338","sha256":"c8a946444064116d4ff7a7a03a214976ad1b8a5c7f7b010d280a4ac197908123","sha512":"9fa74c6c38dfd79c6b1d6c10b16fe79c515f4e16632e660c649004933993ff331b9a00808dfd502a05a9b30f0692ba9dd8190e6ba3284b54c8f5b403a65e5f96","ssdeep":"768:qTi3c+xvzIyFlMqxBCw5GPVxG19+2AXOAag43QCP9:pMsTMq3R54S/ABadP1","tlshash":"86c2e1ba9746a62adf811df9c62543519348f28f7c27c93dd0803d5e8a0e7c83f85662","first_seen":"2025-05-06T13:57:35.284153Z","last_seen":"2026-04-09T12:09:38.713544Z","times_seen":112,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":68,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/f8a71d88c0.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/f8a71d88c0.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 9\r\nlast-modified: Wed, 14 Jan 2026 06:31:42 GMT\r\netag: \"6967384e-9\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"722969577a96ca3953e84e3d949dee81","sha1":"3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5","sha256":"78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3","sha512":"54b2b4596cd1769e46a12a0ca6ede70468985cf8771c2b11e75b3f52567a64418bc24c067d96d52037e0e135e7a7ff828ad0241d55b827506e1c67de1caee8bc","ssdeep":"","tlshash":"26500000000c000c33c3030000000f000003030000030000cf000003000000c00c000c","first_seen":"2023-04-05T07:39:32Z","last_seen":"2026-04-09T20:23:46.892368Z","times_seen":25251,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/popin.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.310Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/popin.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673853-e06\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3590,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3590), with no line terminators","md5":"b566a1ba6cfab2044a43aa3fc2ef753f","sha1":"a69a90d59d14d4fb3b2826562c1a2a34acf7f0d3","sha256":"642322c86cb6e471a9397cf8c859a9f03d13e4d7d0d4feaa124f695aea97bb0a","sha512":"97dcebe416a2431698747cd4833eb159500fa960f81061f29efe8c47cfa2295344a5f3f32b35c21d1cd947e61c8137c70353e036fc0aad07cc796168872e1eeb","ssdeep":"","tlshash":"ba713258f78827b000de42a9519f6789b274208d56984c983936cde51df8fca7272fb5","first_seen":"2025-06-26T16:08:04.026588Z","last_seen":"2026-04-09T12:09:38.647372Z","times_seen":88,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/css/p.css","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/css/p.css HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/vli5gyn.css\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: text/css\r\ncontent-length: 5\r\nlast-modified: Wed, 14 Jan 2026 06:31:07 GMT\r\netag: \"6967382b-5\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"83d24d4b43cc7eef2b61e66c95f3d158","sha1":"f0cafc285ee23bb6c28c5166f305493c4331c84d","sha256":"1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb","sha512":"e6e84563d3a55767f8e5f36c4e217a0768120d6e15ce4d01aa63d36af7ec8d20b600ce96dcc56de91ec7e55e83a8267baddd68b61447069b82abdb2e92c6acb6","ssdeep":"","tlshash":"e630000000000000000000000000000000000c00000000000000000000000000000000","first_seen":"2023-03-12T07:28:04Z","last_seen":"2026-04-09T20:30:16.036849Z","times_seen":123526,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/css/sassy-social-share-public.css","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.916Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/css/sassy-social-share-public.css HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 14 Jan 2026 06:31:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967382c-2696\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9878,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (9878), with no line terminators","md5":"31ff961cea4017f60de0f13457bb4f0d","sha1":"aab200f73254a1613ad65d04454a689e19875efa","sha256":"88b02f4d946fae0f0bf587d07e1c3458b62e5cffbb2719898357fe8120c3616a","sha512":"483d24f3db60abf3f5d9c2121788959597d1876e217a1a918d17e8377948ebc46e74df3997056e78095d4ffdcd5ccbb94891615fbfbec8cd7c7d0fc1d63cac99","ssdeep":"192:ZClNImYGqKYsTA0T+TuTHTiaTiTdT3TUTCTrTmyrHQt/o:QltYsfCqrua+J74O3DrHQt/o","tlshash":"b412f126ebca547a6123ccf7b31377bcf42828819f9709aed911e33d47859d70e69540","first_seen":"2026-03-15T13:55:49.911427Z","last_seen":"2026-04-09T12:09:38.600164Z","times_seen":3,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ledger-logo-long.svg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ledger-logo-long.svg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Wed, 14 Jan 2026 06:32:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673862-7c9\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1993,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bab631a2479c23c7727cf637c7e005e4","sha1":"8314d7bb128be21c1b40ce9de4c76b524b651bcf","sha256":"088d1bf639f9a9e3f2ca38cf1ea4c88002c79d6f3e4706868aa3d9f27208109f","sha512":"f9cc6d7447d4ab817cbb5e516eb4f28982a1f30fc727f8551eab06ebb772b269b0e0afe95b28bb56a3d9ef31d59a0b3e491963fe6a2480f7b1ee5dcb0119a2fa","ssdeep":"","tlshash":"a941b4d84ab002fdcc58e9fe0b68312c696651e5f409449df7e39e2ead9844c8c4a2f2","first_seen":"2023-07-02T01:08:01Z","last_seen":"2026-04-09T12:09:38.72274Z","times_seen":584,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/2nd_layer_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/2nd_layer_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 18338\r\nlast-modified: Wed, 14 Jan 2026 06:31:26 GMT\r\netag: \"6967383e-47a2\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18338,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b54279dd447ef182b2c80bdc9173fe25","sha1":"05f899b9dbcbfd18a4025fffe2573136b7e85362","sha256":"f8c506ffff0d25e69356de2e6a36c2d97843e0035fd76a053af8b33451a7eda6","sha512":"6ab79541e3f1809ba3f050ff14362fc3ad97554406d77892007ca6a100dc8fa5ee76d444f17b9b3e1e6694313cfbddc270dfb5ca45c59d151d228de1f7de8576","ssdeep":"384:AwTgnussbAm4OrPs1ChuaZaCaManfaanLNabaLYaZJ44O8aq7aaaaaaaaaaaaaa6:VTg/sh4IEyuaZaCaManfasLNabaLYaZR","tlshash":"be82f78853375beee3641a78adb18d9fb2b53c984cb9446a1bcd02ad97873335135cb0","first_seen":"2025-05-20T21:07:18.112603Z","last_seen":"2026-04-09T12:09:38.684102Z","times_seen":58,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":76,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/30433690750.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/30433690750.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384e-46751\"\r\nexpires: Fri, 10 Apr 2026 00:07:55 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":288593,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65468)","md5":"ac5925e362904bffe0a911b3cb687a63","sha1":"6f16b5c9eb3cd999863066d695d2ff01fe852f97","sha256":"ec54b4a710a3c225e40f1dd17f1b8fad1bc8a886a11ffb0751097e40abb4d084","sha512":"5d8c096fa668f3fa81bf642670eb82ed6eef44749d0825c05e8292686337f32795d413596f4c9af387382fd049290e9e68a7726587b3c464c8db12562908b63a","ssdeep":"6144:EA9Yim4aAVELV9TqobhSrGOsPLS1VI9iLm:EYc799WJGxGk","tlshash":"5454089c75c1703707a370a4542f500aa23b6996a8dca0a4fa56f9d53d3d98ea337f3c","first_seen":"2025-08-11T22:43:56.647578Z","last_seen":"2026-04-09T12:09:38.672594Z","times_seen":20,"resource_available":true,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/css/69ca37b5d7464d2d86edcc6cf49bd70c.css","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.500Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/css/69ca37b5d7464d2d86edcc6cf49bd70c.css HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/main.css\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 14 Jan 2026 06:31:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967382b-4fbc\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20412,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"e38b4910855be33e279e89b789dd869f","sha1":"2ddf7659ada9948971f5050659c6211fcc052c8a","sha256":"16edb729b5939f1d2f21f30ca3610a41bfc29593ddf3abc777a4a6aa1a9adbdd","sha512":"1d8257e0a353392659056fe26878e0b93bb7b1af9c1686c77c0ca9464439a8222b85f970dda6f8585e14aaca84bb73ac5871e7870d10b6eabc958781d0080338","ssdeep":"192:WpVmpZpypu3tpbpJYpkVn6ru3G8JRLVApEu3lDJiqVN05u34iJDZVObKu3/RJ8gr:WbmzYatNAsRPSdvbI99fuVLz0P","tlshash":"4b927680852b2104e6871dd2b3ca3f326d9d6146b085da3e6ffe19956cefc62136270e","first_seen":"2026-03-15T13:55:49.850059Z","last_seen":"2026-04-09T12:09:38.707438Z","times_seen":3,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/fonts/icomoon.ttf","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.721Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/fonts/icomoon.ttf HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/main.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 42452\r\nlast-modified: Wed, 14 Jan 2026 06:31:17 GMT\r\netag: \"69673835-a5d4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":42452,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"OS/2\", 14 names, Macintosh, type 1 string, icomoon    ","md5":"0925ccec4a80beede826072d6c95fed9","sha1":"06c5afae46d02bf266ae07db0118e34b157a6296","sha256":"a927919c5e951f3dc518cc59732d73bc7284226581561d8778c5ed8241b158b2","sha512":"8b2d8bcfb7b8e3cf686b153d3ed12001a2490b0a38bb0052f0d54ac77102c71318480743269a53ad1d4350f4d20ee41e8c714ddbaad7525ff1d37eb281b0a851","ssdeep":"768:VoNjxfRdiFFMSC/ZGg0ItI0dq4qNLHshb9wAKNcmiqflxB7dcrJA41GgXeUE10vI:GN5RdiFFMSaZX0YI0dq4qNjshb9wAKNS","tlshash":"25132907e7c7df1ac8178a348e7262718dca9531c17f62d9ea422e0aa0dbdf64cd8615","first_seen":"2023-05-28T00:04:54Z","last_seen":"2026-04-09T12:09:38.683126Z","times_seen":415,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/banner-desktop.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/banner-desktop.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:31:29 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673841-c4e02\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":806402,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"c9a50aa5b277f9590b3efe070daf4359","sha1":"51bb0fee036b8d0c68d2081f3595b9ed4470660b","sha256":"d60c54a96b8ed41c657fa4559937ce9081c3119f615f9501cdc2b4da51a81b39","sha512":"380269592651988743e1a947b08d3685cca10c8e093157e3735a11e2f81dcdd83e1476b119f68479b7d04165ef0a077fd9df834508b496ddf830736db4a4cb80","ssdeep":"24576:Ptwqaoh2dmMuJTmsuig9alh2m5A0lcsPu:PJf2dANF5ArsPu","tlshash":"1405233994a7149c4ea1deccce4831e9988843cf6f434b09d868fb5b36f6d11a57278b","first_seen":"2025-11-01T07:55:41.925495Z","last_seen":"2026-04-09T12:09:38.676689Z","times_seen":30,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/bg-layer-desktop-scaled.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/bg-layer-desktop-scaled.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 309570\r\nlast-modified: Wed, 14 Jan 2026 06:31:31 GMT\r\netag: \"69673843-4b942\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":309570,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"26e060e55104b4d48a07a851f7bee9fa","sha1":"cdf911440e789b5b4db79f9da1bc5e7e1a5e0b48","sha256":"6addba64f5f7246b789ad42fd9a85d9b288e516ba628f119bd291f94bd0799df","sha512":"ded79e6f0dd961795f7b31d30267249c5052953991225a9c777d0608327deaf5e525a14892d04f5e3806f6ce6b89e52142ace590b0c01e98c2a3d190565880f8","ssdeep":"6144:835wb9vurwKv0XxNc/MNHuOPl5zOIA50vOE5dULzfb:+yvurtv03BNHFPzA0p5dcz","tlshash":"446423f5e8a47474ec2ec4fd70b5f6ed85a086a3f3fa7c90418126a910be1157dea10e","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.724016Z","times_seen":350,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/card.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/card.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 8254\r\nlast-modified: Wed, 14 Jan 2026 06:31:54 GMT\r\netag: \"6967385a-203e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8254,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"abe4c41746259b3928a349ee68c63f87","sha1":"c7ff7a209ab324162c2d5530c42fedfbd713a513","sha256":"a31ed785a0b164c9443d7faa991be7e16d1b951a00acb4f499063641875d07da","sha512":"644e57183e6cb0fff6de741543dff709fc781a149a3530db50eb137831508c2c5074c90135862d1979e800167067d2864e41557075ec95a0d0ed1470fbe98ace","ssdeep":"192:GwT5zRR/UiUEnSapCgRzEjJNtFeBPoZjwF/kFPgW:GwTFRtUzwVtR4PaFcFoW","tlshash":"dd029e8b6f537b4ae9281db589217e85d0b23e6341537b4ac194193c4d434caecc873e","first_seen":"2025-08-29T01:46:36.998718Z","last_seen":"2026-04-09T12:09:38.727592Z","times_seen":8,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/hero_visual.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/hero_visual.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 108418\r\nlast-modified: Wed, 14 Jan 2026 06:32:00 GMT\r\netag: \"69673860-1a782\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":108418,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e92b0c130bef0593418fe4e2a3f5a6ce","sha1":"101eb5f9ef88dfa67241419df83ceb4939e9feab","sha256":"89c11103f9d21472ffd0089226bc838b24c3602f411aba67624275df5bdad519","sha512":"84a34e27a043925d1d0dde64df29e3f8c6c110fdcc29b7fe2ae925fd4ed5838098066bc654318dadfc7d27ece26461fe9e9a3b79affce8d0891fe043c59f88c9","ssdeep":"3072:CtO2of4mAVuMOh4YE1oYCsZwJ314WhxDLTuy0De:CrzmagVmoJsZHW3Lz0q","tlshash":"fdb3123d97582390fd0d79bdc6df99277c233b9b89b77021c0744b4a450d13a32e499a","first_seen":"2026-01-03T20:43:02.943053Z","last_seen":"2026-04-09T12:09:38.628158Z","times_seen":24,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/newsletter-form.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.308Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/newsletter-form.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673853-13c4\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5060,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4987)","md5":"80214692d6330e0c01b1f0ad45a2ed42","sha1":"1bdfe73f0b6da775678a12a37200d7ae6df99cd7","sha256":"2c41742531d36c44bc09f68a96902b9a9d634a552f27d267e6ae9a2eba1742bc","sha512":"9aab89e45f5598489d79bda059588ae90de5a4812f476eefd46b1c517efb86fdda1cf973a71836e8eb162724ee44ec6d2781fc879061d5f1921aa09bc305cc91","ssdeep":"96:hlI1D3ETVkHWluebd7FeHx6GuPDrDtWlJy3zlHGl+YeUSeu4k:T0D3AkHNkeHxe/DtWlJyjlm72ZJ","tlshash":"c7a1c8c9b392e97207eb7a72a01f109ae2352924f8899d003144c9f62d78cccc716f9b","first_seen":"2025-08-09T17:28:31.259339Z","last_seen":"2026-04-09T12:09:38.705347Z","times_seen":76,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/flex_magenta_front_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/flex_magenta_front_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5714\r\nlast-modified: Wed, 14 Jan 2026 06:31:59 GMT\r\netag: \"6967385f-1652\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5714,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2455d5e75cd47d5b54b79accc1b3129e","sha1":"e1bbac4730235c113d462f7cdd27a3a56e2194b8","sha256":"f5626e57903d03448c1c69ab477a5c007a4931e9ee31c24ed7802b331e337eae","sha512":"d3a824e6f0a0259f5b3be8448c06be0fe00d693e05f48cb9535b786649401f3019337791c0c015e61c4818af467072157daf8095d9c66f3412a7ba1c98ff0fed","ssdeep":"96:/Elbw+iXbnq0kE0Mmi0fvRVWSkJz8/NmpidoHyP+hIKRPFw31ciJvXpOByYDE2+4:CwTb5kE0MKVVkqmBOGPFBCXpJYDBu4SI","tlshash":"ccc17c902f00170ce60207b8f9118fe2b362dd66d44ebafea58c574b5d452e2a6fbd47","first_seen":"2025-11-01T07:55:41.896221Z","last_seen":"2026-04-09T12:09:38.622685Z","times_seen":39,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/stax_multisig_mobile.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/stax_multisig_mobile.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5860\r\nlast-modified: Wed, 14 Jan 2026 06:32:12 GMT\r\netag: \"6967386c-16e4\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5860,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"bd234e5bd01239fec594732e66298e63","sha1":"29b222062c060530a829c47f49f8d4390945e85a","sha256":"2743516a23a6be815a66d8f421118d7c36a8c262740c288712712b9a5b0239cb","sha512":"572bffbb04d2e0536b03987f795dcaca44bb92b6bb0d9600c2eee86e3c69cbc63597f631fc46bb51ffeeaf300019c09cfcd1b439f700cb8cbf6320ec5a65c681","ssdeep":"96:s+Elbw+iXIJxRN1ffY2kF0PKssttJFtRpsLIGBOi6hjns0lDDvG+gfLBago+2fS:sLwTIlffY2kAgtxRu7v6hA+DDmLAgo+t","tlshash":"9dc19f7ac7a16315d731733a606d6bc0e2557007ec88ca4de3c9c0b50fd5bc64a2a5ee","first_seen":"2025-11-01T07:55:41.928683Z","last_seen":"2026-04-09T12:09:38.703021Z","times_seen":39,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/solana-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/solana-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 926\r\nlast-modified: Wed, 14 Jan 2026 06:32:10 GMT\r\netag: \"6967386a-39e\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":926,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"a828c90fb2fcb3788711b09dfb695591","sha1":"7b0fa881ce054bbe31892a1b252ebb91380e16d1","sha256":"7521112b5a6bc302a5e2102cac7f643a0a5f8f61dd20765cae1e73e5d9ef6bb1","sha512":"cbdd8cebd399178700b049ec609b4710531c3e46293605b4d9c8f67b6da6daae61e846abdb8b4658023a64b20a7e47d642454c465cff84a71f33d12cc9768d2a","ssdeep":"","tlshash":"bc11b79f157562420bf2281fb358531a0f58a2f1eec0e9df0123297baa2fca11b6595d","first_seen":"2025-05-06T13:57:35.296393Z","last_seen":"2026-04-09T12:09:38.738573Z","times_seen":334,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-ecom-cdn-prod.s3-eu-west-1.amazonaws.com/website/assets/cryptoAssetsShortlist.json","fqdn":"ledger-ecom-cdn-prod.s3-eu-west-1.amazonaws.com","domain":"ledger-ecom-cdn-prod.s3-eu-west-1.amazonaws.com","tld":"s3-eu-west-1.amazonaws.com"},"ip":{"addr":"3.5.66.3","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:57.098Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-eu-west-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 05 Sep 2025 00:00:00 GMT","end":"Fri, 07 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:6F:C1:FB:1F:1E:AD:F5:AB:FC:A0:9C:B4:0E:C6:91:D9:B2:CD:D4","sha256":"E5:79:9A:D8:27:48:04:B2:15:F7:4D:13:7B:45:41:A1:87:CC:8A:D4:88:D0:BB:3C:CE:18:FA:64:4C:6C:57:E2"}}},"request":{"raw":"GET /website/assets/cryptoAssetsShortlist.json HTTP/1.1\r\nHost: ledger-ecom-cdn-prod.s3-eu-west-1.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.ledger-bank.com/\r\nOrigin: https://www.ledger-bank.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Pd83c9vVBYfQWjmyoklB91Zcuqf/vX7AQ69NtoRCWFHRDsi/ihD+WW2vAC2cg6nzdSjiEyu1HzeuywvU0xXSjYh3xkmR2D4v\r\nx-amz-request-id: H3NRJYGC3JTGPEV1\r\nDate: Thu, 09 Apr 2026 12:07:58 GMT\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET\r\nAccess-Control-Max-Age: 0\r\nVary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method\r\nLast-Modified: Thu, 16 Jan 2025 16:57:55 GMT\r\nETag: \"ec8967eb8136673301c4cd1f33ca4d29\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: application/json\r\nContent-Length: 38808\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":38808,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"ec8967eb8136673301c4cd1f33ca4d29","sha1":"1848eb105c3d727db1396e3ed8eb0e1b669669cb","sha256":"6ec9815e93ed6e4fd1dd9bc4528f475d47b270c3a32ab7177cac264e685190f6","sha512":"55e26001d8b43c095b69da9d0ceef75e8e4bc30b41ce847f384dd9143c449139433fa26dc4baab169c1703ff48cd696d265cba3aa0ab5950d0e4a863eda8565e","ssdeep":"96:O38YZv6Gu9YuZ2O5NTcGzYrG6Ge/YYHlY+en4TNTcGEYbN6GuYzjcaY1pA76GuYq:ZZDkF1J6+T9Jj2uID0x+wNtabKX7Ed","tlshash":"380370ff436ceabf4b403fc5511f7a5da2a6740768c8a49ab34c9e5d90f44a2063e0d6","first_seen":"2024-08-02T10:43:53Z","last_seen":"2026-04-09T12:09:38.709279Z","times_seen":92,"resource_available":false,"data":null}},"time_used":426,"timings":{"blocked":164,"dns":71,"connect":33,"send":0,"wait":61,"receive":34,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/shiba.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/shiba.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673869-2d2a\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11562,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"d8de0ed4c56491a3e369487a82c787cf","sha1":"a73a3164675c6d9440c1a28d904577e96398ef08","sha256":"9a7cf5f021050369e32bb8ac4a5603b85b42472475bba80760b45be53bc5b173","sha512":"da660ac1524b049d27a65ab7ea944f5712e2cd9d6b26783c6e777624c1fde7f2edc89d6126eef44642a01416994260841c6da2ccf839ff4693f0974ee4c61f41","ssdeep":"192:S9xq2cc919VUgQce2SUQAZsn86peSFJlFUndgUMcvMJKlkl3SJf76U:QjGcTQD86hFJLUd8yMJKlxJfN","tlshash":"5932c0b351b09ddb0e30f6dbe62c2b8a248946d3ca4456256ae3442e44737eb5ffe160","first_seen":"2025-05-06T13:57:35.28629Z","last_seen":"2026-04-09T12:09:38.675054Z","times_seen":337,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger.com/wp-includes/js/wp-emoji-release.min.js","fqdn":"www.ledger.com","domain":"ledger.com","tld":"com"},"ip":{"addr":"104.18.34.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:57.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 08:47:27 GMT","end":"Tue, 12 May 2026 09:47:22 GMT"},"fingerprint":{"sha1":"E2:DE:67:89:49:C2:8B:25:6C:A5:0E:B3:0F:47:F9:D9:D5:E9:41:CC","sha256":"65:26:B5:FD:83:A5:22:31:34:E4:DA:5A:9C:B3:60:3A:90:B0:52:38:02:B9:F4:52:3A:FC:7B:4A:D1:E0:77:EE"}}},"request":{"raw":"GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1\r\nHost: www.ledger.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 09 Apr 2026 12:07:57 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-encoding: br\r\netag: \"dh0qu5vh0hz4hka\"\r\nlast-modified: Thu, 12 Mar 2026 10:49:16 GMT\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS\r\naccess-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization\r\naccess-control-max-age: 1728000\r\nset-cookie: __cf_bm=u.xtQfkzWeyCqWS6HPy_TJmkiyZ0Um_Gghw9wiH8KjU-1775736477.1429691-1.0.1.1-BO4bjGD98bdg6y5ypSolZ2iUcXlO7rpdCGkUmkBBTWcQOUXIK1iQ1CDAduEi_d8Kcx26NPGzC6RWJ37yFGn_f_KDnTKo4GHlRXIlQjcFwzxSSpFThpPCahUo9QtnVpXJ; HttpOnly; Secure; Path=/; Domain=ledger.com; Expires=Thu, 09 Apr 2026 12:37:57 GMT\r\nage: 26057\r\nexpires: Thu, 09 Apr 2026 16:07:57 GMT\r\ncache-control: public, max-age=14400\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 9e9964f62fd756bf-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22762,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (19823)","md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-04-09T20:28:56.95086Z","times_seen":139462,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/uniswap-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/uniswap-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:13 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967386d-52c\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1324,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"4ab66a62d9f1ecfe2c878252d2255197","sha1":"4a23fdc98864d05a30a2487d228fb95545e96e8d","sha256":"9f0bdd5cdba94323b4afc5d8aa70931c88f9871d805cc883d0584d460f6b5a26","sha512":"01d5633dd860b21943d85c3f71e34032a18a97abd85fc1ca67b357e079e389d43257adb4831d2f72b26fca64fe32db0c21d2f7a569b121de394d469fa862d274","ssdeep":"","tlshash":"0d2108699cd2b495c2abc03fb61b80916033a2cdf89e470eddd6c7c31715e0a2ac1e0c","first_seen":"2025-05-06T13:57:35.299969Z","last_seen":"2026-04-09T12:09:38.729323Z","times_seen":330,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/visual_banner.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/visual_banner.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 9472\r\nlast-modified: Wed, 14 Jan 2026 06:32:15 GMT\r\netag: \"6967386f-2500\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9472,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f8a2a7eb6216442cb59ce11b5de02a6b","sha1":"2f814a6d33bdfe92bed197f0c7254d51f1121923","sha256":"a113fde7a332941f82f8e86d7e9982cfadc546d288399ab02b12fecfd2cc9c61","sha512":"45871681f846a21dd782bfed9d13d60d094a4fcdab14062d030326f7aeab9a6e07c8d439f0cb504a4a53db7422e153e0eba3f99326320511d6c83da5be71bb10","ssdeep":"192:LwTWNby3g0bPT23wDyDSZFFwjLl4uncBFu/ef1/8GmGFn:LwTEyQ0rFDy2Fyh4uJ/eN/8Gm","tlshash":"e8128e15770506e8d46baa7d80500f52cfbb4f84d67a119b03ad060735ad6ccbeff05a","first_seen":"2025-11-01T07:55:41.957862Z","last_seen":"2026-04-09T12:09:38.742441Z","times_seen":47,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/xrp-logo.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/xrp-logo.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/png\r\ncontent-length: 914\r\nlast-modified: Wed, 14 Jan 2026 06:32:15 GMT\r\netag: \"6967386f-392\"\r\nexpires: Sat, 09 May 2026 12:07:55 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":914,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"cca29cc82f5ca28787e33f7d4f91b1a3","sha1":"83d7518517cd9199fc43d9ee5baab9dc62a15695","sha256":"7f6806d4063f271566f3d51f9203e0b8d8f10fb04424b75e695626e80795b22b","sha512":"5b87ffd4a68c57865390461ca96001ec2df094ed9c8d3475c7ace0ffe2cf97c4ff2b9f7b8a172310cbc9bad5a145a525a8fd808e7e39d6442dae85ec05c5e636","ssdeep":"","tlshash":"e111843e3b8757fe765e70536f9124e490d8164a712031425602ecb7d0192b3640e220","first_seen":"2025-05-06T13:57:35.161145Z","last_seen":"2026-04-09T12:09:38.638305Z","times_seen":331,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/litecoin.png","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/litecoin.png HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 14 Jan 2026 06:32:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673862-f9c\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3996,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"32bc100d8c906d7f234f9307858b1eff","sha1":"cbe91411d6b5a901b7894dc1d69f0066d3d57158","sha256":"5baf49bbab196cf63b0bb296d0d7c0a03b1521b41f9d7b2295404ce7951e1d5a","sha512":"9ae39b326c4518816b3ac5ba6f2dfe693d030ffbf7b26c7e6586b0671037639acf551a459413664725d4e3f0e1b242be6a8dbf575e7fed697824b5eb567005a2","ssdeep":"","tlshash":"23817be8aeb64aa87c1c798020ec8a05c11e3116e2b14ff2cdf84b54437a8437cdc86e","first_seen":"2023-05-14T08:25:50Z","last_seen":"2026-04-09T12:09:38.654991Z","times_seen":458,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/2160.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/2160.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:26 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967383e-9c66\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40038,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"d484364aec61451ba0309a70981bacdc","sha1":"7c30904bd78d1dd43c574416076f4ccc8402c2b2","sha256":"61c3321d491a38adbf9ef9c9ebbd7cd6530d53fa58d439abd39f224bb3275b6c","sha512":"07f05d3c146e4980defbf6a271370ed8b8d533054bf346706821c8653d15a7f757dbfe3a64c522ca6fd6a05376f01f1921ffe81922cfce3944e12256406b6a19","ssdeep":"768:F/7eX4iKCo8u+SNZhF799ciPa5M9BxKKXl8jqxQlrO3d65j+:F/aIUooSZhF799P4M9BCjqxt65j+","tlshash":"e203e18d429dba94f32e09f44cf1b172ae5535600ca4b69ebf5a54048b1face870b2c5","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.596403Z","times_seen":347,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/16.0.1/svg/1f9e2.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:57.439Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 19:44:39 GMT","end":"Sun, 24 May 2026 19:44:38 GMT"},"fingerprint":{"sha1":"56:DE:8F:AC:F7:7D:09:E2:76:F8:9A:D7:5D:9D:16:D0:8A:77:E9:1B","sha256":"F4:65:F9:07:07:7E:3C:D6:2E:1F:02:76:FC:58:8D:E2:FE:E1:4B:A5:5A:D5:4C:AE:78:56:62:41:A7:28:80:CC"}}},"request":{"raw":"GET /images/core/emoji/16.0.1/svg/1f9e2.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:57 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 27 May 2025 09:57:56 GMT\r\nvary: Accept-Encoding\r\nx-frame-options: SAMEORIGIN\r\ncontent-encoding: br\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 31\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1157,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b1b58b6b04a9f27b37c712060c06c145","sha1":"cb444a59197d1336ec19b21a7e8f07b9c759d010","sha256":"4c8de148f2e0ee1ac72587acd2e7d99d39042e1a87a07025a998bbac86014f8b","sha512":"dbdc1dfb432d908ca08ef3926f690103b54795fc2650623b9c54e15f02f22353a7b466d0a084f0282bf1ccb76da30f91bcc1fd48e6edb09e955ab48ba12a65f1","ssdeep":"","tlshash":"8f21a3cf3878e4e854cb8bdcffa678c1554a32fca63281cd920dea54a6c27cb9141d20","first_seen":"2024-08-20T03:49:47.120897Z","last_seen":"2026-04-09T12:09:38.741071Z","times_seen":100,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":50,"dns":17,"connect":7,"send":0,"wait":8,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/sassy-social-share-public.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/sassy-social-share-public.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 14 Jan 2026 06:31:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69673855-22b46\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":142150,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6380)","md5":"468130129e84f89f87f757e6398d4b6e","sha1":"22e6c328c2f9dd96a0116e50e0048c2f75b79d97","sha256":"73da82ec62ae521b8af6d827c29a6c187e1926f3c61d8115ecb8f653cbe89716","sha512":"cc95f8c8e073b9586428927e7a5487eee538b23ec676bfca541af8752b5af130937c4041091f5a7a1bfab1d9c6276ef17b33befe330e6af02548d67d7db6a985","ssdeep":"1536:xFz2FQ5deyEOOmWhuKY7YDSh9oQ4lnBFg5lL20bUhMBetKeTVFMHq9PFPn37VsUA:xF8cE+lKY7M83gBF9HKeTVFMHq9PFv34","tlshash":"4dd32ad9f364925c748f8f5cfb3b91c8360f60afe89686dce55e97282245ad4f842c18","first_seen":"2025-10-25T23:00:24.972149Z","last_seen":"2026-04-09T12:09:38.715855Z","times_seen":21,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/flex_comparison_block.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/flex_comparison_block.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 10590\r\nlast-modified: Wed, 14 Jan 2026 06:31:58 GMT\r\netag: \"6967385e-295e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10590,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2358d932633663611572d0a8d485bb3b","sha1":"f917763ee36ea28142121c19c1a79a6e490bffec","sha256":"04787b25f65a570ce56d7598b729d7c6c101d42d086e6baaeb469032ffa18a2d","sha512":"13a3d2f5effe2db6840bb6ec43b9441b7874a39bd08ef583398e500d90fb939664f822bfdbe0cf736ecc25540279ee95d958a7e37f37ecc4a2f09884376db022","ssdeep":"192:bwTi7Pv93tQD2MTM4qxJAPKHHmy8RslNhOQfEsbztXBQ2QFbm:bwTWv937MTrqwkHwSUqEiztW2Q5","tlshash":"6022afe883799a84fbc3d5365bd16dd477cc9e08d7d896c1a12282172a53edf02a9708","first_seen":"2024-08-02T10:43:53Z","last_seen":"2026-04-09T12:09:38.738066Z","times_seen":40,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/bitcoin-logo.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/bitcoin-logo.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 6516\r\nlast-modified: Wed, 14 Jan 2026 06:31:52 GMT\r\netag: \"69673858-1974\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6516,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"343868ca9fb7701613ec9e0180184728","sha1":"9f8147e8c3667ca207f06e4704c7519f2424b448","sha256":"24851fb7592d7bbfc727b1f048bb661d8e7342fa5657c0a5f20b682137b9b433","sha512":"b7b9ff3e07f2c8fe70e43c0a3c4fd28936e938285ec3136b67d922e290591291fd63c778e5314f0387182390f27b7e1cdc5011d79b06999e9fc30ba5d3227758","ssdeep":"96:dxu8UuVsjvdT+fODGtWLbCR+Lx+IPOwgWbNo5BO8VeM7pVlAyUSwRApiMOxWu/1b:dxtUPjVfrbCMxT2wguGsmeMpGOiXZRHx","tlshash":"66d19ffc7cf38948530170a6375a478ed6af00b1aa81a3f69fe3e92e4b743c15b99540","first_seen":"2023-05-14T08:25:50Z","last_seen":"2026-04-09T12:09:38.667496Z","times_seen":523,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/ledger-academy-face.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:55.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/ledger-academy-face.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 6582\r\nlast-modified: Wed, 14 Jan 2026 06:32:00 GMT\r\netag: \"69673860-19b6\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6582,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e03a5860a6062d19db5e27b884cbe6f5","sha1":"e66a0558f92eab158002a85f583f4fd846cd464c","sha256":"041986446a705512c18eca24c75c06a6ab348d357054ea4aba7a5c7e9743b883","sha512":"23ecbcac9442aa4aee0268a64c83b45b365d196ccf3b2bac5d185b6647f38af0f79b26872afe8122d04db5611426d18521dd90fba3e915bf076dba8fcd48d411","ssdeep":"96:EElbw+ip6gUwiWOymaaxceO/8fhQagR9pV0QyX26/cE5IRQOxhoburiPJ7Hv0LXb:Bwl6gXi52khobWqRVxwurAl4Z2y","tlshash":"06d19e85e3140a8efb61e23fa85f0f6bfd448979329a179a210bd5a7430568d119e4ce","first_seen":"2025-05-06T13:57:35.307215Z","last_seen":"2026-04-09T12:09:38.725275Z","times_seen":95,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/cobranded_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.006Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/cobranded_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 11214\r\nlast-modified: Wed, 14 Jan 2026 06:31:55 GMT\r\netag: \"6967385b-2bce\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11214,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9d8819aa9e582fca7ca901fc37fbd62f","sha1":"a950f8e48651f2b26e07b5ad7d0c6b437bb6351f","sha256":"84d35134d6ef3907a130b575a499657366754e85b58c20f08f0fb01fd1954d9f","sha512":"079fdc676da1a746c73455beb67a9d6358488e3e5edde22c3906f6d690ec62bff428ea935fda9cdba60c2ec9f8b1c9b61cb1de8e0abc6257574c6760e794a4d6","ssdeep":"192:DwTWDu5LLkfHWT+8x6+5TKy7PCEMlnmonsScgla7bylmaVrFhE3rZTRZO6Dluaa3:DwT3LLUudf/MmesQla7byitTnO6Dlha3","tlshash":"0032af7d123a0b89ed338570a82ee313d77c04554bbb89467524fa23182df98fa8c1ed","first_seen":"2025-09-20T23:45:00.563416Z","last_seen":"2026-04-09T12:09:38.728753Z","times_seen":51,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/js/faq-2.js","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.318Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/js/faq-2.js HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 516\r\nlast-modified: Wed, 14 Jan 2026 06:31:42 GMT\r\netag: \"6967384e-204\"\r\nexpires: Fri, 10 Apr 2026 00:07:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":516,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (516), with no line terminators","md5":"37187263bd9a782c33d7d75950f54c17","sha1":"31f1bc77eeeac909b01b2d5239a06cf79edd8d7e","sha256":"1e0c464d26e807f9156b09d64e15d861f1c7268387b09308228dce311f5cb1f1","sha512":"3e10ed87fb0cf14ad81a02e46c58b19e47adfd696338f2eb46955206d24a91d7934919aeaf4b15798738b3f5d1380589f2bf38e460686b20a13d5912ba180b65","ssdeep":"","tlshash":"f8f0c9f8ae48603321ab5633021fb34b3872184820014804014c88853ce8d9b4663dab","first_seen":"2025-06-21T14:06:44.441857Z","last_seen":"2026-04-09T12:09:38.675824Z","times_seen":77,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/flex_magenta_front_mobile.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/flex_magenta_front_mobile.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:55 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5768\r\nlast-modified: Wed, 14 Jan 2026 06:31:59 GMT\r\netag: \"6967385f-1688\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5768,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c5b51f2b1d63226d9c7086c970445c2a","sha1":"503cd7461a72f49969dca49dedae42ffa8c8b9f6","sha256":"056de713c306db5520bcbbaa13e147bc8405dfeff756fff1c709c5601e77b268","sha512":"adfe1097b5655fe02121307c38b0c78f421bbbc0c41b18347059d22196c3fa3f69e881d7272071b4d1a7c982e1bc27a9126e21bda374f0a513f87ab2a88ee869","ssdeep":"96:nElbw+iXqfqvnwYuAAHdg9OGqSsZXwVVYRF77SS8RXxLJD19/g2NTDCV6Zf1lE4s:awTqfqfrAHu9OGqYVuRF77ihLJHTTb9s","tlshash":"33c19e984b5cb7e0c230ae78f0e211aebada7448cee703fa114081637f586d11ba11d2","first_seen":"2026-03-15T13:55:49.927761Z","last_seen":"2026-04-09T12:09:38.601872Z","times_seen":3,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/picture/stake_desktop.webp","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/picture/stake_desktop.webp HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/webp\r\ncontent-length: 14552\r\nlast-modified: Wed, 14 Jan 2026 06:32:11 GMT\r\netag: \"6967386b-38d8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14552,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"28042dc4851fbeec27744e52103174ba","sha1":"30a8a0efad03929609c2b2f37106f73c74ddddec","sha256":"d1429294d4ac01c2243ef0d48eeacadd830f31bfd5e2cbb9fd2fedc8bb30316c","sha512":"3717fece21fcfee90ad72e2d9320f064694766438201cbdf74fbd38c5b7aeec9ed1d111b4f21c84c49fe206f0c5e45e57be9a356ba34f5d9b98e00477e74845f","ssdeep":"384:dwT0PPFK8oIL+3UTjb6Tl+kafqD76Gsnuj+:iTJuL0Mj+T0kya","tlshash":"4562c07753c8d34cc439cb3d408f67b946c19c9a0e963ba8525caf6352048d53ade7c2","first_seen":"2025-11-01T07:55:41.955019Z","last_seen":"2026-04-09T12:09:38.605457Z","times_seen":43,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/fonts/HMAlphaMono-Medium.otf","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.807Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/fonts/HMAlphaMono-Medium.otf HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/en/static/css/main.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: text/html\r\ncontent-length: 138\r\netag: \"696708f6-8a\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-04-09T20:26:17.545112Z","times_seen":248155,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ledger-bank.com/en/static/images/winny.eth_.jpg","fqdn":"www.ledger-bank.com","domain":"ledger-bank.com","tld":"com"},"ip":{"addr":"82.38.129.32","port":443,"asn":5089,"as":"Virgin Media","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ledger-bank.com/","date":"2026-04-09T12:07:56.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptoledger.top","organization":""},"issuer":{"commonName":"宝塔 DV TLS RSA CA 2025","organization":"广东堡塔安全技术有限公司"},"validity":{"start":"Fri, 23 Jan 2026 12:00:00 GMT","end":"Sat, 23 Jan 2027 11:59:59 GMT"},"fingerprint":{"sha1":"1B:75:AC:7C:F5:DB:2C:8D:98:5E:C0:68:B1:FC:62:9B:9C:11:B6:70","sha256":"41:5B:03:74:5B:D9:22:27:CA:7F:FE:0E:84:FD:96:B0:8E:41:39:F8:44:F9:2B:1F:49:3C:52:07:2F:1F:C8:07"}}},"request":{"raw":"GET /en/static/images/winny.eth_.jpg HTTP/1.1\r\nHost: www.ledger-bank.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ledger-bank.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 09 Apr 2026 12:07:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 14 Jan 2026 06:31:39 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6967384b-4c78\"\r\nexpires: Sat, 09 May 2026 12:07:56 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19576,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"30fadee421516613a0a273761b018541","sha1":"f4765bf5eaf287030816d114ef03ab61ad0e6281","sha256":"2752893fae850f1c97155f2dafa2378a7fa0c173d3929809379cb99675ec4c29","sha512":"a535ec6d59faf4b4cbabfcea4e87c14749575beb4d8aef0f82723f90746b424ff376a300e1bdf230b962a62422feac15218f76b7f6f7b414c5bdd31a2c303dff","ssdeep":"384:sVKlQrnhgW5ofCoZWoXGpBFXrvGRe2OuZqBdJEifzJJ+X:EKlqlo5g5pLG0uGdTlJQ","tlshash":"8c92e162a3109255ef2f51be30c0d39baac6e814c4ad6c51b16f5e1e3b5c9c9c6a4be0","first_seen":"2024-04-19T09:31:28Z","last_seen":"2026-04-09T12:09:38.686249Z","times_seen":347,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-09","alert":"Phishing Block","trigger":"www.ledger-bank.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"www.ledger-bank.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}