{"report_id":"ff73b31f-8f28-4114-98ca-8dfa43282ffb","version":6,"status":"done","tags":[],"date":"2026-04-21T18:15:34Z","url":{"schema":"http","addr":"nymexgrouq.com","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":0,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"final":{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"title":"NYMEX","dom":{"size":24936,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (18718)","md5":"f452ca5fab40a85262ae0c8fa2bc4076","sha1":"f59b81d6461066fa3651f5420a79d91a93622675","sha256":"f0ebec3a7ef68d3df5c93edacdbd412df88402cd59bb1db62b7fc1b9f9ec9a1c","sha512":"10cf208de43b3836cc3ca5e0fd80d555a26709e1fb68ace7b7750652e0bb2863a3a700d35d966bda83084290c3e5c601cb09d09b035c3df5d77ab3a3a99a8229","ssdeep":"768:ZtQxP2YWq13QsR7GGOHKGlByGgiOGAJmRYkeI:Zto5W83Qa7GqDXeRF","tlshash":"afb2a821761020361a739ac9f4b27f29b9b1e32bc16d9ba076bc49960fd3db0f407579","dom_hash":"domhash7325571d12df56e2f30e153cf1a76a4b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"nymexgrouq.com","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":0,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-26T18:15:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"nymexgrouq.com","ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"domain_registered":"2026-03-29","domain_rank":0,"first_seen":"2026-04-21T18:15:38.985429Z","last_seen":"2026-04-21T18:15:38.985429Z","alert_count":56,"request_count":56,"received_data":11844787,"sent_data":24221,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"03a6735ce364082be8f3b5d41b31ab00","sha1":"3730a2ebd2f02023af2b0eed3189e84c915f6e26","sha256":"5a828b8ca1a38354dedb4fd9bbb724c9c9b54d9fd6d6b25f55d250ddb89f117d","sha512":"f82fef44c20747751e8cae8d8de1dbd432b3eb421646db360a0ceed88be98ccc96d4ccd4b700eeccdaf61abe20fce9872435d9ba6ea2d4769f991b8ffd85906b","ssdeep":"","tlshash":"1ac080c4a1d77d205726651161ff35d4903440977548575bdda4d8493ea24b49333ea8","size":171,"data":"","first_seen":"2026-04-21T18:15:43.990336Z","last_seen":"2026-06-07T18:30:52.967389Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2d3b2e064a569debef879fc71ddd6946","sha1":"5779479f2c8e4580c26cc70d1facf19b094c5072","sha256":"96d4b8641c72e40cfcc07b00d7ed63f7eaf1730c8ddcca73e06158032c272fc3","sha512":"b4b98da8549a6b2c3cd442fc6743a73b338f46dfaa2bf0753e03e9b23a0786edeec5f0cf906a186522f32b6d4659efa8cf7af51b83833dc1ced379d9afacdb0e","ssdeep":"","tlshash":"eed02b85f89268009bc51414a5ff15c0b16449667488570acdf6d9497e562b14227e9c","size":264,"data":"","first_seen":"2026-04-21T18:15:43.992572Z","last_seen":"2026-06-07T18:30:52.951522Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"bdc665a91ce354b6b29e1440c087da1b","sha1":"e2a5463d1f014bc22029584c8aeb0e264b8d3d97","sha256":"4be21bc4b7d50194efc45e563be8018f241e8948620b38a2c86d596e205aebde","sha512":"512afe3cce7434e775517b216f6cd9bada0c4042df8187442824db9fc27105294161070a39f550c6ca7af711269f882ed2bd40488e243b6ed1d928f6e0efbfe2","ssdeep":"","tlshash":"02c08cc4a0c27e101602641020bf28e89024403674481b029d94dc482e720b08237e98","size":139,"data":"","first_seen":"2023-06-05T11:50:58Z","last_seen":"2026-06-08T05:16:21.803317Z","times_seen":201,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2100db951f7aeae0032db312b0083bd1","sha1":"f0863a9bf07eaec8515caf0c71c9247b5b45d099","sha256":"9d53a79faffa7664d3f2508903e9a71a4265e0c4dcbff8c0051786bb87fbfe51","sha512":"6b6cdfc4687d48ac1e4c1deae7fcdd08f4032897729a9b4f7edca4b12acecec5fe28c06ba489e81808a5df9675b216e797124e9dce44a326fcfd49b6d0523b3c","ssdeep":"","tlshash":"92c08cc8a0c23e146a16686014bf28e4903c8426b49c1b4a8cd4da882e220b08233ea9","size":150,"data":"","first_seen":"2026-04-21T18:15:43.996443Z","last_seen":"2026-06-07T18:30:53.005054Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/TopNavBar-b4265c28.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"importedModule","is_inline":false,"md5":"c9c63fe838c5f68e5fd185a594750f39","sha1":"d4e7ca12bf20371b9e4664729f93913842356c39","sha256":"8f8ab9e186d4274eabc3fc9daa177b0a6486a3a4c18b61041c8a29b8fca55474","sha512":"b9cbe6f10c0e20942a7e6a7958d0de955c34e671d7ac1e83a91d5cef6fbffb48767b4eb0e32da8bcf269ce08ea077b3fbd8e3afe70bb8168841390719842f9cc","ssdeep":"96:2elCQedwUmOPCyyutuHTdTWoOj0dGWwic44tn/nMSF9NsNzmJ/e72UxkT8h:FTewUmOPCDUu5OqHkm29N4iJ/xUxG8h","tlshash":"60c1c415be188a3c401bb04d577934a4b76e27aab0444cc0c7fe04bc25a6e68f93fbc5","size":5751,"data":"","first_seen":"2026-04-21T18:15:43.921826Z","last_seen":"2026-04-21T18:21:15.495699Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"cc9b27c20df46a4d3dd5404010ad62de","sha1":"883a4dd3dfaaa6e613fa68ad7dc5cbb2c19442f5","sha256":"388cf388e3f35fbfe17af279d5d414008c7544c28686831c9c6e015d1bf9e5d4","sha512":"1d317964bb6299c2db6f4cbaf6644a84881f621b08c64e1f6af8cab0c343695a2cdd2636b085662bcc85fb334b0f5578b3e8d3213cd0638beed498134bfbe974","ssdeep":"","tlshash":"84c08cc5a0d23d109a06a41010bf24e49024402670486b128c94d8482e620b08233e9c","size":146,"data":"","first_seen":"2026-04-21T18:15:43.998684Z","last_seen":"2026-06-07T18:30:52.991333Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a85e4845c3d994bfd6272931937f9fab","sha1":"544bfc2d7d7aa7a98bc6fb35161d124fff6b3bce","sha256":"63b6928e8c718c0cb878a3e50458000e513442dcc1db1b9fe7e5cfc281c61fe8","sha512":"447aac1ab7690a7f4120873c51795426bce774c69e140417dc3232fd69652592bd01d67142c2038dbb2ec55e3b3676cd3ced2adc768fc0cdad360271c72901e4","ssdeep":"","tlshash":"4dd023d670973d201dd61455575f24d450295026731c6e06eedcdcdd3d710b48137f9c","size":206,"data":"","first_seen":"2026-04-21T18:15:44.000948Z","last_seen":"2026-06-07T18:30:53.023339Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"aa58c28d820b801d3811632a3e85a951","sha1":"f4aebe36d7b542642b53a58bd95ec168bdc081b5","sha256":"725ad109b036d8004ccd99ff5ad081d218908925cdb01516b3009a3978831209","sha512":"1d7acaed227f58017ae177a55c69212315d071f8e6add36f893b705d7e04d812a3693b620a37f43573c024f3d522cbee0e6d7264074407159fa406e6477b4274","ssdeep":"","tlshash":"44c08cc8b0d33e206616686015bf28e890348126b48c1b429cd4ea892e624f09233e98","size":153,"data":"","first_seen":"2026-04-21T18:15:44.003226Z","last_seen":"2026-06-07T18:30:53.004008Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"fe7510e3eaa34db72da6cb3d28431c17","sha1":"a3eb0f18f5e2d2182ee8425fa80d58e9fcd2e118","sha256":"a686c18be648a1216795678db5cf9637a55b0157aa2d087ead69e96c54cf3204","sha512":"1412526c8a462a2e5a098b7e816f3be07595acc9853f05b68965ffe999ca64b47f520b4548ad130b66cc6f847dbf7fc0c3f381fe31068f3618e5c8962bf78448","ssdeep":"","tlshash":"b3c08cc8e0ca3d001a12641410af24e89024402ab04c2f128ca4dc883e220b99233eac","size":153,"data":"","first_seen":"2026-04-21T18:15:44.005714Z","last_seen":"2026-06-07T18:30:52.979999Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a9781d3d037abe76691e3bc8c3d12294","sha1":"b88f2a34b50c0c318c718019eb8a571b18c0cee7","sha256":"5673ca0ee0c65f707a255ddd819ab07d37a19ea6f193fd432135883b73e004dc","sha512":"4490f5b018b1be2cda9cd51af51a5f2eba2277e73fcf3519f126a4b82a8598c9805088cc109e859ab7bc6b5412ddc3c24f7176b1ca925b0e85ebc6db772f19d7","ssdeep":"","tlshash":"1bc08cc5b0c22d10660a651024af36e890244026b0481b9a8de4d8482e220f49233e9c","size":146,"data":"","first_seen":"2023-11-21T13:50:07Z","last_seen":"2026-06-07T18:30:52.998073Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d8f569611b9b53714a397946c92cd516","sha1":"394ee1e9c2fea86d264f7b6074baac765aba12b0","sha256":"a29b588bed2321259cb4b312564a49e78a8e5b05c75258e7e7c7bdcfbe579229","sha512":"d03340bef08fac05b8848ff2e8fe5d01699f9a4121d0cdb5f4519ab6d52f8e6394f157e03a80ebe9f91a3a4aef4bdd7f1e1de5216c416ea047fecb8e572fdccc","ssdeep":"","tlshash":"b0c08cc4a0e32e0126166a5420bf7af890344027708c2fa78ed4e8483e229f4a233edc","size":161,"data":"","first_seen":"2026-04-21T18:15:44.009003Z","last_seen":"2026-06-07T18:30:53.006354Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/HomePC-c1964b61.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"c1e6b97e7ea104c798b5a528b5318f97","sha1":"34342c3d3ca77501fed9ef4a05f888ad9e88bea4","sha256":"c5e4fdbb628905dcbd7857bf592a369a1040aea5315bb2e1a08cce11c15fc07a","sha512":"a13183d88741cab18460d55960cc83face4914a7675a5a5711819df20f89cde8cf2a330b3854680cc6bb8f7757ad245ca5e67fa05b4689168516a3603a3c1116","ssdeep":"384:2prv4b1v4wEE2mcjoT0JP3dU0xnGiy8riyyxdGP2X2ZFbUK7YkSrAcE:+D4b8jmFv2KI2mcM","tlshash":"51727204b513ec3cf1e3a486307925a47818af89c5981c9997fc8ced5fc5cb9b74aa29","size":16384,"data":"","first_seen":"2026-04-21T18:15:43.918093Z","last_seen":"2026-04-21T18:21:15.516674Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7746993e8adb9277ba5afa2584910974","sha1":"8e7e6d562fd56f594b40b6657156d483d7426e40","sha256":"833dc15f120cad89d5c0680edae217dbad02010e42af351959607df4170074ee","sha512":"10ee66e22fa45386057f1385e179955ad4fd4d53363c0aebe68aa9ba0547bf409a286e53ab6e678e5d0c3485d6cabcdd359f359c5258160b50a0a5a5496d6e6d","ssdeep":"","tlshash":"39c08cc5a0c22e101646641010bf28e49024402674481b028c98d8482e220b08233e9c","size":140,"data":"","first_seen":"2023-04-13T07:32:13Z","last_seen":"2026-06-08T05:16:21.760327Z","times_seen":3523,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2e87aacc5d6174d7d5b8410cebcd7aca","sha1":"d1f3fa42359c659d69743041b54d1769e8f9edaa","sha256":"a2b940fad59400b02cdc62999e59b617f333fdd13949e1132fcb094416103e76","sha512":"0c2a27588e86f325fedf9e024ed19b52a7ab31e3cb0fe129646d9f53908d7c96fe70ceb88bde8201938a772a6fa6b4481ebb39a60093478831d02c1ce57ff18f","ssdeep":"","tlshash":"c2c08cc9a0c36d001656751450af24e49024402774481b028ca4ec4c2e220b09233ed8","size":145,"data":"","first_seen":"2023-07-28T08:36:25Z","last_seen":"2026-06-07T18:30:52.978195Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d8a0b36a3bb5359d82373fd74ab0a55b","sha1":"109fcd2e9501021577ad657d5701aa40e771b723","sha256":"26b23c11a596c1301030aaa5e72296226d0b2c601ff7b24694d413a401ac9826","sha512":"ebb5fb5d0b9ad70253bc33b31f5fab9fa0efb74a89eefd5b900d6b956970a52ef306b8e62a73b47775339624aef7daf7f4779743b84394f80591c0ea8182f9fe","ssdeep":"","tlshash":"d8c08cc4a0d22d001a02641060af34e49028442670481b028ca4d8482e620b48233e98","size":138,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-06-08T05:16:21.767001Z","times_seen":1327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6514f3436b15d51612c61b68678e2564","sha1":"3846573374938e946753a5a11a7bfb9d7d3fca9f","sha256":"3b2358e6e07716420865757b0b78bacfd98d1e4cf116a1d90b38eeac6362d452","sha512":"9cbbe607e2895159d1ec5a786c5dac5abd7626f35f091c4154d1daa446c0b35a0475bb91393b18e433a986a7413ff494758caf0f17b7a1a7e65d111ef083a3c5","ssdeep":"","tlshash":"6ec080d470d62d006555595035ef75dc50244016715d1f969ed8dc4c3d720f45137d9c","size":164,"data":"","first_seen":"2026-04-21T18:15:44.014567Z","last_seen":"2026-06-07T18:30:52.953143Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0ee565d59371bb4dd99de62da0b0e0e9","sha1":"9b02e1943bd762c68a032525c37b42c4a1091ba4","sha256":"2701899321d1c016fb85526f9c91dd244e5947890241506a9f888f259ea5d927","sha512":"b69a34a10e28c54ea963c99dc58a5f05c308e7a71886d6ceffd51e6cc6f73c2dd835b5bbe9f6fdd28eacf8bcb996b568b340b8848a98a51cdf67e4f718a96485","ssdeep":"","tlshash":"1fc08ccab0c32e206616696110bf38e49034802a748c1b42ccd4ec882e220b08233eac","size":148,"data":"","first_seen":"2026-04-21T18:15:44.016733Z","last_seen":"2026-06-07T18:30:53.020426Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"13837fca78f06df3f0fe8569afc77dea","sha1":"ea050824c42fae442003639c6f7ab83fb95e02a4","sha256":"3873380c850d440a0f662a7fb2e506cad63e5aff5b9789d1e280e07a19843e41","sha512":"60947acfecd045f3f8ada85abe97a447e581f24b3b5719811c09be4dc6bef5a89a0f80fad6fc5e8178d7a626e9a0f91af0f8670001bd1c0199df61db71bcf0cd","ssdeep":"","tlshash":"f011cebe291a642d2307404fc76b7800742360a8001e1442778cdf9deb96b2d90cbb8c","size":1030,"data":"","first_seen":"2026-04-21T18:15:44.018977Z","last_seen":"2026-04-21T18:21:15.572506Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6c9ecbc460a4c41177b8c84cf441d509","sha1":"a18c65f05a843af5cd2bcdcd5c4f3861a770011d","sha256":"7ae71331f337fd19e5d1fdcc74e5e7aea2d6add982ce071b3480b0271240ff8b","sha512":"84fc55fa8470f05fc5a1f5b1d0953d6f47d8b7fdffdffc1add7f12062c020032f9697b656d2c6945da63df342f3e72efec330c0f03c1032ef45cca458c9961b9","ssdeep":"","tlshash":"e3c08cc9a0c23e001602741112af34e89024412770482b42ced4d8482e220f18233f9c","size":148,"data":"","first_seen":"2025-09-12T08:50:03.466535Z","last_seen":"2026-06-07T18:30:52.959361Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a5098911c06d7157605dd3b899679de2","sha1":"84de6941df9069d65274ebb86209afe2de4cf428","sha256":"5132dcfef5d98b1b951e3a4f1bbaae148d55bbc591632ffbc15c5d7ef5639a11","sha512":"8f8f3eeb86093d036702d0e0b4041281b2bb4d974554c7badb63bc00cac3428fba0e8220bf82dd748c8ca58f0c0558bdf08aaea46bed6b01a691faae13188194","ssdeep":"","tlshash":"58c08cc4b0c22d001602681020bf24e49024802670481b028d94d8582e220b08233e98","size":137,"data":"","first_seen":"2024-08-20T15:10:19.332214Z","last_seen":"2026-06-07T18:30:53.003038Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9b9672bb9c3086b6f8ad66d803f5a23f","sha1":"59ece9b53e4d1a036bfd2fc4fd6abf6cb442891d","sha256":"edae8850d6969aece65fb5a9be8164d8d4c96c42be0d3966b2899585d827d8bf","sha512":"fcbb7cb98f2181edb2bbc2cc0bc132046b5850e64c807bb8cfc3f9702fa7b906f290d3f29f777fcf7236b3b8f19266429faace60e210bb7eeb337a2d122b8abc","ssdeep":"","tlshash":"23d0a783b1e66a006741e41568bf15d88024421a75482757c9e8c8182e520f08133d58","size":209,"data":"","first_seen":"2026-04-21T18:15:44.025146Z","last_seen":"2026-06-07T18:30:52.994578Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0a61d2132406f5e4863a1ebd447a2062","sha1":"d8b450a93006b3f1b98b8314fc64e359e73fd44c","sha256":"5ebdf50d63b1ff2ca1f103adf28d558c06ecb7cc0b250dc49df2df42696efd28","sha512":"6fdc185adca174d5f116f77f5898916f9b81eaedb53d827bc8c9b87eeb0dabc07739b45e2c85257f387bfc1fb22a05d50e1f8a39edf45cf7fab3f2ea0d3073ed","ssdeep":"","tlshash":"2dc08cc6a0d66d201612a42010af24e8a024402670881b078c95d8982e221b09233e9c","size":143,"data":"","first_seen":"2024-08-20T17:52:18Z","last_seen":"2026-06-07T18:30:52.995532Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3e8eea6baf0ce717ced4a95e877e8967","sha1":"9b8484757c7300975c066b460cd57b816a3e1077","sha256":"9afd4b991929c8507a1e912825959df51cdc19046fc2212641709e51703b9955","sha512":"5e9ecf9c77ec9e1c59f5c0b4e3d77e06853254895db4056603413767244552412b658984ee29851de544849273fe8cf65df5e9ca65d31c0b52ac94396e70824a","ssdeep":"","tlshash":"d3d0a7c6e0892e311612589024bf18e850348036b04607567c99dd143a564f9413bdd8","size":209,"data":"","first_seen":"2026-04-21T18:15:44.02872Z","last_seen":"2026-06-07T18:30:53.012276Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9d379fc52463f2b630c6894900da5180","sha1":"b33fecceae6c1ef97518c6ad7159534d78e7b2f7","sha256":"6c3288c6af4396096b1a8a927fbfaf05ac8cc29658fc97d13cf036ba6bb38ab3","sha512":"49b43b0c253e26c135bd5009d73c537cf2e78342ef6b116ce6efbd3627152ac804449ec5cbe637a544b5557b52a50213a19dfcf33158a4f6b0a8ff91d79372d5","ssdeep":"","tlshash":"61c012c5a0da29102951595424bf28e8a024c026b55c6b169de4dda829e64fcc627d98","size":190,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-07T18:30:52.990769Z","times_seen":666,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d7bfb18e0764bdbdd50883305b93961f","sha1":"27e0aff99ba94b593b15445bdf10a5bcb63076de","sha256":"1d65b14006f00c41cdaffc3b77187d7d762cfcd19f13a924ce6f4a276357fa8e","sha512":"d32f5f14608a740ff853a995d4f9e0aab880eabe5d44624f1b6d30d3d575ad58cf07958c2a5671a732c31c8a2fbd9744120f76fe42bc2945f3950eb9bb253c38","ssdeep":"","tlshash":"cfc08ce4a0e27d112a06a45560af24e4a024403ab4489b0a8ce8d8493e230b4823bea8","size":156,"data":"","first_seen":"2026-04-21T18:15:44.031702Z","last_seen":"2026-06-07T18:30:53.03414Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5dbe7043fc976a64c634407dfa276e73","sha1":"b0912014a4dccff99896443da986e3a1ab3c63c3","sha256":"6bd82dcc98107e4a2703f6986cabbc4d98e0bc769f4fa9261b9bee61ab613c9f","sha512":"94a457838610010de102ebd89c36555a88430d22d5c2d74418dea7f987fc21b9f8161a70ab1088b6a5afdfe4a24123d0f07b802af1193a11723844a83dbfa2b8","ssdeep":"","tlshash":"65d0a784a0863b245746549165af31e4d0250826645647139ba8d99c2a620784267e9c","size":205,"data":"","first_seen":"2026-04-21T18:15:44.033677Z","last_seen":"2026-06-07T18:30:52.960696Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d5aa20cbbe8933729218f017d1bc40b3","sha1":"dd3fea064f0bc162938e94e53dafdcaa59d48f23","sha256":"f60958c8334b0650ae1b14ead09ba1ce76ec3dcdef2eb305639ca767c302cb0e","sha512":"8d891f3abc321f7f8b2360e062d045ba7af13fb1ecaa40411cd86c5c062209ed7e7d074d9917db7166f7530d4f3110dcbffe78c7f6d49aea94015998a16f470e","ssdeep":"","tlshash":"06c08ce4b0cb3d209602685150ff38e89024842770481b13dcd8e8483e620b09233edc","size":152,"data":"","first_seen":"2026-01-21T23:54:58.502176Z","last_seen":"2026-06-07T18:30:52.963809Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/en-28a8004a.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"5c26ffcd1dfffa4dfd983cc9d1143bca","sha1":"942afe3e18f17f97f535c9862b8b81bb7d7096c8","sha256":"4d53a2aedd4dfa2f433dda3eaf46a9299bf9d485ac3442d8ce12f6924d3cce86","sha512":"e3835bb1a932eb96fd79c95bbc6c410d3fd5c28b52c7ba8f6284c8f7925ddfafefd90a0538fef2a5fc0357b43d0016fdae66bd0f196bdb8b7250490ae3553058","ssdeep":"1536:N1HDSoDSs9JopoTuQRxMu1FzP1Y5+LN0xhttezrnaB:SoD9mWuIxMu1F1Y5vtWaB","tlshash":"02a3e84d6d15cd9e28e3172670ed1bd325f8c1c6c259881e4aeccdbc73e2a66e29721c","size":97712,"data":"","first_seen":"2026-04-21T18:15:43.988176Z","last_seen":"2026-04-27T17:21:22.652327Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/PCFooter-d63c3c72.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"importedModule","is_inline":false,"md5":"00384d560d090b8c38789a2f976eb903","sha1":"a99417d08ae1718e092d8f469cbbc9954f8e9bd7","sha256":"ae209aea5e33c0553080984cf0b6bb15f77483d87714e033d84c0997a4754448","sha512":"d49345c594f911a294a513acc55e46486bde167256fc1694684b1912906181256b102de366d064009e37cf91e0a1e57def991201edc6314deadd2193c61420b3","ssdeep":"","tlshash":"b651fd287c07da7df4b35978602e05842026a955a0da3e76f3fc008cb31bdb57463f2a","size":2520,"data":"","first_seen":"2026-04-21T18:15:43.971121Z","last_seen":"2026-04-21T18:21:15.517574Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"00065f61f241e13592be1a4f424c6054","sha1":"d64f1684cb54f3ba9ab8deec3d2a265a45ab2f58","sha256":"6522ad2af222f06eb0ececfda463120a6992bf2558b3bbc163bbad7c00039303","sha512":"7417bfd53159f0f04a5c28a9e2ab8444efd2e743242a2667543b52b6a151eeb0495056b96bf9fea8a08eb2bee9e8c92a6ecfed44ce1b1edcbc4ac854a63abe18","ssdeep":"","tlshash":"6dc08ccab0c23d007602681060bf24e8a0248826708dab63ced8e8483e230f08333e9c","size":154,"data":"","first_seen":"2026-04-21T18:15:44.037723Z","last_seen":"2026-06-07T18:30:52.958437Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c6d24244f0bd48b69e16521833ac9994","sha1":"38d343ba2d1fc6651a88e84fe17090f080daa530","sha256":"c7eb32fd530134381e061675f075a3e1b3d38d2076a24bafd0ec25adc6ce199c","sha512":"afab5035f59e9ac0f6bc670b2b9830ccc9a17d568176061024ff9d7ef5be675163a3d2d52dfc2ac115922574607a5c902ccf2a95f85dcebf0c3b5080764d1b70","ssdeep":"","tlshash":"37c08cc4a0c22d001a06642120bf29e4a0244026704c5b128cd4d8492e231b88233e98","size":143,"data":"","first_seen":"2025-03-05T15:28:53.468189Z","last_seen":"2026-06-07T18:30:52.959837Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"fef82b4abb2c353da2dfe96cc879f7a2","sha1":"59a542088effa27c3f79ad2b0a3d3965ac292e99","sha256":"0ad0c2c1a0f1bb9693ceac6c25ba7d12d24185de713a94e5714b8a5022dbe957","sha512":"3560a85180f963310b8cf117ae4e8075b0eafb79a793128330a89d95581e169fe4fc2b3b2365b0e5a1ff29d925ecca83fef79f683046d7e9ea98cf436d2b3a38","ssdeep":"","tlshash":"47c08cc4b0c26d001a16645011af24e4a03440a6b04c1b038d98e8482e624b08237e98","size":143,"data":"","first_seen":"2023-06-06T19:23:29Z","last_seen":"2026-06-07T18:30:52.964726Z","times_seen":115,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"17dfc021fc7f414fefb195bc0a1a601b","sha1":"6564f19f3d0523d1ca904f3edb709a5967ebb9d9","sha256":"151e3387b07218d42d5371d4d2fd885d4710b12b665b2bffbbb34d1b5160c563","sha512":"e7cc685d8b6c6c99b7c3dc2dd1bd053afd44f6588f0e970501d65360612eee495d2d71811773e6f2efe7564861bd65d32a4db381729afac82fae83b8cbfc554e","ssdeep":"","tlshash":"a5c08cc4b0c23d102602651110ef25e4a0344026704c1b129c94d8482e330b08233e9c","size":139,"data":"","first_seen":"2023-07-09T00:15:38Z","last_seen":"2026-06-07T18:30:52.952319Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0fddf421c3cfabceabdf2b03d395872f","sha1":"941a263acc08eb7a545b15b32498bab074b21d95","sha256":"37fab742119a505f8f03dac74e95e6e286ce649a02a06b180d7bd138cad44098","sha512":"e18cd2bee992f727c55c01577ff63aa104b42ae6cb51f974dfeaaab988a01b94bc954fa46fa3802262d38a5c2aa04647a188d24e8ac294e277db220b7c5f6782","ssdeep":"","tlshash":"55c08cc5a1c33d0026037a6021bf3ae4a02684277488ab528cd8ec682e230b49237ed8","size":159,"data":"","first_seen":"2026-04-21T18:15:44.042953Z","last_seen":"2026-06-07T18:30:52.978706Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2a78d1f7334ecf8ceb583857e08bb59f","sha1":"a232a5cbc1604aea8d5e72ebe8a3122c9f50f890","sha256":"fefae2798d7b81dbe687537fe9cf6e560758648838caf6b6e770111a8eb4948c","sha512":"2d83b093a3239cd0e5f09ec2ac9890d4edb52ff0fe5f194d76592158e4ef8e200b0014ff0082319e0c0f084f0214bcf795f62f8bc67b4af68c6202f955e0b376","ssdeep":"","tlshash":"60c08cc8b0c26d202602665421bf3be890384827b8481b538c94d9882e630b08237ed8","size":154,"data":"","first_seen":"2026-04-21T18:15:44.044736Z","last_seen":"2026-06-07T18:30:52.96876Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/index-da49d494.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"60a541df65c6e33d3928055017183ea0","sha1":"7d1030c47e081285b42c5d327adaf0f196338518","sha256":"edb8965ccd732e61a6b0f12ec7dbd70c769ef5d735a2d8a6d2479b44cdd4a71b","sha512":"81cfba3110c37090163a24c9c2c16b415cd04cb047e3cc05d4b303689e0f8e88cb3479ba5d4040a4632c4032919e83fba0edabeaa55b882993bf022a8ba9d73c","ssdeep":"1536:eS0yJ0rPVjT8Ya6egpsqgow4lqPcs/t0B0+H0KoFYtemf:eSUVeow4AyI+eK","tlshash":"64c36e81b0071fbf5aff0998a82a054011985fc74148c88b7abe6d733beacd56257fb5","size":127085,"data":"","first_seen":"2026-04-21T18:15:43.972826Z","last_seen":"2026-04-21T18:21:15.492993Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e57de9f5e5f50305e4b76a991f10b89c","sha1":"a38c14260ba549816535f84d16d61619bdacf2cd","sha256":"d7a326bd2bf2469d98b3f6affdaceb161bbdc725a82fb277e0e53560e3091c4c","sha512":"af7d226b2379233f5dfa6c09667f4bc5c232caed2fe10dbda13c63a3a4a9d813a07895f34ada29532602c235689fb8ead1c01c0fc25b839ed5f184e95d191dd3","ssdeep":"","tlshash":"21c08cd4a0d32d002a52685021bf3ae4a0284037716c1b529ed4d8493eb30b08237eac","size":159,"data":"","first_seen":"2026-04-21T18:15:44.04679Z","last_seen":"2026-06-07T18:30:53.008602Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f16f28a9c4872061b2b36f384e4ea78e","sha1":"cd56a42bac5ec346486cec73bf12604846d80bfb","sha256":"54fa6a20458789668b5911a657c305875a98ad1a64d1327adaad92f5ebb9df6d","sha512":"036b8267ab3b8a98839d09e030023e245f1640b78259abfde2c6303dc2f76ea608e3cf8992d3822b8bba41758359c2f3d639e927de4d3368e8a6648fbefb57c9","ssdeep":"","tlshash":"7dc08cc5a0e76d002616685015af34e4a028402678881b038c94d89c3e220b49237ea8","size":144,"data":"","first_seen":"2023-12-03T06:20:29Z","last_seen":"2026-06-07T18:30:52.97317Z","times_seen":316,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f9eea4cd29ee0aa757962e0eb1a066e1","sha1":"4aa8348f9597e9ee78935987a3d45f784a2e2f54","sha256":"b3c842f304f0069a193ba8ebefee1be4cd949641d5a210e0c9b0efe3233e3d95","sha512":"2b4720c7a4dbad3c3d6be031926feb865e00036f9f1db8688c69916817e56070b5bf8cec5cb14366b869133e5b43a20cd153d36d28788c22568709a87d840ba2","ssdeep":"","tlshash":"cec08cc4a0c22e001602681110af28e49024402674486b828c94d8482e620b08233e98","size":136,"data":"","first_seen":"2026-04-21T18:15:44.049728Z","last_seen":"2026-06-07T18:30:53.017166Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e7d582279b91e1b153acb0032aab93fe","sha1":"83fac4dde1e234abc454a78a7fe5140e48079ad4","sha256":"eb9fb1c62f1076b866fe9ae7528be2183ed639a603156caf6d776719b90904ef","sha512":"365af892675326af2464aca50bbb96b498390c58c28d3f0f639a946ef14d96a6dc5a54139e8f3d009bc252151d9ea4372a34c3be849187de8d43d1cef9668d9b","ssdeep":"","tlshash":"92c08cc4b0c26d003602645051bf26e8a034402770481b038da4dc482e230b08237ed8","size":144,"data":"","first_seen":"2026-04-08T08:30:09.667249Z","last_seen":"2026-06-07T18:30:53.028488Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"810fd731cb748250634fd12bb56dafc3","sha1":"25e95b866866167bc80fe22d4e4de6353d686b8d","sha256":"5ac811279e33987e7c7a19e1482956fe72ace3dc6439e74b3589db3a4f1b67eb","sha512":"4e1b304ce6cfaf4eb43b7dcc005bbd2f3b926ab7ecc10e7589a951ffc85c5834ac50e8432a50440740a91191b8add1cdf14f9f9b3ab0076484a6ab0a1846f9ea","ssdeep":"","tlshash":"6cc08cc4a0c22d101602645051af28e89024802774881b429cd4d8492f230b48233ed8","size":142,"data":"","first_seen":"2023-12-27T11:05:38Z","last_seen":"2026-06-07T18:30:52.97224Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/charting_library/charting_library.min.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","size":10859,"data":"","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-08T05:16:21.679615Z","times_seen":1000,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/index-4e675794.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"07bcb7358fdb92e2106cb0e22d7b9f3b","sha1":"e41c219a992f88af1a883c23d00e9e2066d06588","sha256":"ed8d43553818988e736a42ee19777a8316ec22eb6917e01bdf41a2edac64b7e6","sha512":"1444b1b09073f513022a37d0050477ba0610a48726b73b6ffc1e7248c62e7e17f974f162108c9b56f8ca0a34f04be80a30d955c79b3922a1209bbbd6b99f90ee","ssdeep":"","tlshash":"5c2156196c061fbea36c2c08895164c146fa8b49020ad29dfcbe2d393254cca895eff6","size":1129,"data":"","first_seen":"2026-04-21T18:15:43.948388Z","last_seen":"2026-04-21T18:21:15.507153Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c0e88513b499aae066f13f6f0edfedab","sha1":"12fd9320e7be26e9257e2a1a39a698a5e2706292","sha256":"3ffd5a1fea533c35c122aeb0a36f3d4a37022e0a14c83167faeaa819b3ee8cfd","sha512":"36b57e74aa71e21ec5489637f206796e8b9097db32c59e4ffbbdd7eb11ce35c2f754178f996bd6e11abc560cdddd3af7cde3fc1847c1a455120b5c26ee4fb838","ssdeep":"","tlshash":"17c08cc8b0c6ad001602e45111bf25e4a024802770481b128d98e8483e220f48233e9c","size":139,"data":"","first_seen":"2023-08-29T11:10:58Z","last_seen":"2026-06-08T05:16:21.744552Z","times_seen":895,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5b558440f47a182b1eb51d250a8a6d10","sha1":"f0e4384c6dee6757683ae010bfe98dce29fe2900","sha256":"c84ec8732d65b09f587f0444166fbe3140edbc89606dc1b83198ea0cc5bcc6ae","sha512":"679658a0e3c0025e08c02a35ff77ec5762e978f6a9c3ba0c45fc9bc7e11b650e595c64630de9d937d9ec5a8d8c2da9baa7359963ce6d4735de339e3f572b38d0","ssdeep":"","tlshash":"d4c08cc8e0c66d015a02b45835af28e490284066704c1f02dda5dc8d2e230bc8233ea8","size":156,"data":"","first_seen":"2026-04-21T18:15:44.055367Z","last_seen":"2026-06-07T18:30:53.022056Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"926ad28c98be26c2ab7d8f231631853c","sha1":"c1c7788df347ea5ab2369ae95456a8a1f7d9f150","sha256":"ec5e8816f60cbbf34b660d2d1455234d92295ab1a210868d6bbfeab7359e438a","sha512":"6f8eb48bc8638821747a26fc6370ee240e58d47699acbe5a1fb2bff1b25d62c6918f6df77dd78da3bc1b3e3d14eb849ccd4e0d1e01593294187bfd509be2ebdb","ssdeep":"","tlshash":"a5c08cc4a0c22d001a02641410af24e49024402ab44c1b029dd4d8482e220f08237ed8","size":138,"data":"","first_seen":"2023-12-01T02:41:08Z","last_seen":"2026-06-08T05:16:21.74392Z","times_seen":335,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b278e981b07850e93e7d634b449de797","sha1":"1883fa9b80918cc49e297945242cd4138fa4a7ce","sha256":"cabb0d2c5fa304d1b879b1d44af85b51dd62ff5a9752396af1a7197ac848a690","sha512":"0704a41bb9990b88e77828f8c4121ef6b2e9095a824f82c242475e1fdefe3c32b67c89d82d817c7ccf3c992dfafc44682737b4d8ca08693ed80b35f6f73f83ad","ssdeep":"","tlshash":"0cc08cc8a0c22d102a16686010bf24e490348026748c1b42ccd4dc482e220b48233e98","size":146,"data":"","first_seen":"2026-04-21T18:15:44.057348Z","last_seen":"2026-06-07T18:30:53.010375Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"b039b4fb992c81753d50e48df3359e4b","sha1":"8df0f77cc9b4acc2aa0211f82c36ab1d80c0ccde","sha256":"7b15db33e7ecc94695f4c0d2580075894874c9f50a6e575f66c78c45ca40aed8","sha512":"8811208f855515ccff7ce6ef601f1acbb3cd41244f54076af4795601ab2d209eb4d3c451ed8c4c6ff283df3beb1f9fb63af3c217eb94f65106f5234b752197de","ssdeep":"","tlshash":"c4d023c391a759003647765156df34f45025403e75491b428cd0d5583f65074c337dec","size":209,"data":"","first_seen":"2026-04-21T18:15:44.058351Z","last_seen":"2026-06-07T18:30:53.011377Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/vendor-538af159.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"importedModule","is_inline":false,"md5":"0c05fdc039acc76a1385a834be99fced","sha1":"fb57fc2417b74e32d9eca88d008474a5a824ee31","sha256":"2035aa961f3196041800f21ae7f0a4a8c48198f2d1b636021b20c2f82cc5f4e4","sha512":"bf13add5a677e1bd5c30140f299fdedd9bfd97bbafbcd515b82a41d332911a396d78217fb1d52a0f22244b70df1ddf0fd04080a07fb4d7daa22cb42a340d6b5a","ssdeep":"12288:JpmBfYZKJ431W46L9xHmFpzvB/Aws7M38wW0/ui9iholsLya2ifp:JpmBfoFWzLSpzvBTz8wW0/u8a22","tlshash":"181539c97292f06147ab20e240bb1006f3396e59744e8494f16d98eb7d7ad89d2b7f3c","size":885177,"data":"","first_seen":"2026-04-21T18:15:43.982803Z","last_seen":"2026-04-27T17:21:22.536622Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"567922d103bc090185dcdbae11e4af0f","sha1":"edec8d61b9f0a8ff7ec0ec77770fb0a2dec04b56","sha256":"a2eb0c79d6fff6f567562df34027ee56fdbb2e8dc0a1aa77184442ecac64dfb1","sha512":"4201578b4c221531757df45ef9e97fac9693cf470894cba66435ace1c87001a29612ca75ddcb1bebd1886f821ace4d6e058cad3b0e6b844d9a07c1e3a0e4cd21","ssdeep":"","tlshash":"fac022c1b0db3a10111a588022af26d4e034003ae04c0a039c88dc083d520b48237ecc","size":183,"data":"","first_seen":"2026-04-21T18:15:44.059874Z","last_seen":"2026-06-07T18:30:52.961653Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"92d7425caa52a467788d65b353150749","sha1":"a89f0e066875b91aabb9a4424b5294506af39ede","sha256":"51990ab6a4da819c49fdb6a9b85947525783a073b7206bc99bc585c16aea7b4d","sha512":"5245da8e08099a8bdfc91c4cc818b8c5e1afa329d3d4f1f092e1da164a22cbe739e73d3eb2bef3096c05be8caf5e6dfabee723fd4a21a223040608c40ff32b93","ssdeep":"","tlshash":"42c012c9a0a669205a15a515507f34d55028c0267489570a9c94d8587a520f04263e98","size":166,"data":"","first_seen":"2026-04-21T18:15:44.06083Z","last_seen":"2026-06-07T18:30:52.9656Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"81da3c5d6f388039bab31e5374d83a3c","sha1":"8850fcac26fb39392ec79157d48b84301e6e8b05","sha256":"64518eebd6eb4c6e071d99580ee6a8b934c9fa6f3601752572c70ce2e823f4cb","sha512":"23399272647f8fd4be7289061178569cad42cbfc453c6794f8b7907e3b3145cf87ee76f2b1235770eb839e6bb3bd8d084131780e93c0f8c9778b2999ee2d5d8c","ssdeep":"","tlshash":"7cc08cc4b0d22d105a026a2c58bf29e4a028882b748c1b038c98d84c2e220b08233ea8","size":157,"data":"","first_seen":"2026-04-21T18:15:44.061806Z","last_seen":"2026-06-07T18:30:52.954031Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"dc9b5f2e0b15b64138b0f3f40e4e547a","sha1":"83e81fa9cb3d88df1c21a8cc4e151f9836289d2a","sha256":"97151d7a13bee41cdaf5333ee890228b035d17f5e38c2be90975cc11aff28ebf","sha512":"e10f39696eae5bbe3b8fc782840ca4612796fe6e3369e0c75cd2bbf879dff43deea8c3aa035e856f8a68c3a9bf2e2e1e01f95b319859d316a0cc1bc3a0879c58","ssdeep":"","tlshash":"3ac08cc4a0e26e00261a651120ff34e89034402ab4489b5e8da4ec993f220f49233ffc","size":155,"data":"","first_seen":"2026-04-21T18:15:44.062793Z","last_seen":"2026-06-07T18:30:53.016315Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5135730dd915f25477b85f64b7015acc","sha1":"e38fc38d6cca16bfd6156c9da8c73a6a5053ad8c","sha256":"172964dbc44f329b8e2a7213fdabc43380e5c38c87f3e2322cc0142e9da3542c","sha512":"1ac025732ce1945dabe944756d9047b729dcd0aeb046cb51c1b49022f7c564c65947a030adbfb8b5dff0b040b39400dde5a4e8cdb5688343d79e3371c48d65a6","ssdeep":"","tlshash":"43c08cc4a0c72d001a0a655011af24e4a0284026b04c1b029c98d8882e220f08233e98","size":143,"data":"","first_seen":"2024-08-20T20:59:00.528887Z","last_seen":"2026-06-07T18:30:52.993542Z","times_seen":33,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"41e11f4e2174b84f24d5e14c4ca0a8b0","sha1":"88a1650fb6fa3cc2007cd74ae5df1aaf69fb948a","sha256":"79cb210e0960f242c49a634749edd81fbe0c6482acb961cd694f888ad6c2827f","sha512":"3e9cfabcb89274fca0c6b44a263f903b4ea581af3966460f194c970d1951d36cf7458d91bc4327093a6467343f03a8c8b1acb7f133b112182a8777d861e35d20","ssdeep":"","tlshash":"d4c08cc8a0c22e002612a82050bf24e490248427704c2b428c94d8493e220b08233e98","size":141,"data":"","first_seen":"2023-11-12T11:22:24Z","last_seen":"2026-06-07T18:30:52.95501Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"cd7a34e714de94d5c29b8ac5acdde24b","sha1":"b722bccb435490630d97ef88cafeb02d92f70fd0","sha256":"312ebfdc50a0e168cff60c206811b02e944263a7d9060c2685509dacfacd7f71","sha512":"a724bc648a508c24e5bb1788e1f02b47030893bbb0b80a99e380d95480095983a35d8ec11193c53f0a67db47a289ab608fcbc9dbca846bfdd5d61a8832290f43","ssdeep":"","tlshash":"58e07d48ff28c7f316ce28ab516e770858d104d58c1b58024cebccc86935ed87291527","size":314,"data":"","first_seen":"2023-03-11T11:23:25Z","last_seen":"2026-06-08T11:52:17.849047Z","times_seen":36463,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7ab86295ec9fb1e105bc5a5dec94b9d4","sha1":"3bc28fd42b8e6ed1d06e03f245bdc0bfc0f7d3ce","sha256":"f3b42de7c732e334e010b37294c5ab4375556554b1e8bb77dfd9d0482f654154","sha512":"4caef7893b1ee0338ee26be23857b2fe1938c477fbfde7ec54fe3d211f95c12e9b3095869cdc1c22d8f8110f013db93e1b8eddb9489bcfe1414b5b60d1813d11","ssdeep":"","tlshash":"22c022c2b0c23d002625b44209bf28e4a020407ab04c1b17dc88d8183f620f8c233e98","size":184,"data":"","first_seen":"2026-04-21T18:15:44.065549Z","last_seen":"2026-06-07T18:30:52.956182Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"033d14e7232c4cbd3a5f3189a8c50348","sha1":"4ec4e8a8df905ea9682e21cd81c7f466fe1bc3a7","sha256":"3c953309bf037c1b522ec349d1e61594b32a82428bc99c218a99d1bba652a2ea","sha512":"c2f877f77e84041f242dbca2fba697828c1c13d5d5b788d3420c6f2e203b3c26d2885cb55f927ee208000fde9d281c4ac3e841fe41a9c38da2d5fce21d73237c","ssdeep":"","tlshash":"dad023c5d1853c211651915531ff3dd5e034042574495f168dd8d88c3e715f9d23be94","size":210,"data":"","first_seen":"2026-04-21T18:15:44.066492Z","last_seen":"2026-06-07T18:30:52.94965Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f40a9f9cb3c41d42acf7293866539b51","sha1":"c2cdda327ef125e861e4dc7e58c58ece45d48627","sha256":"44e7568bfaf881735c63faf53bdd0126df77425b4a021b047e6d0a7252bf6653","sha512":"bb0419159571d024f807a7e3fa0a0e63a3eda08551767e76d5c13a4fcfa7a61bd3795d71045db13525b3064b8901df125591a8b4da4edd55f6c8c10aa14536dd","ssdeep":"","tlshash":"cdc08cc4e0c32d205a0768a814bf24e8a0384426b0482b429de8d85c2e674f88237ea8","size":155,"data":"","first_seen":"2026-04-21T18:15:44.067542Z","last_seen":"2026-06-07T18:30:53.018048Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"61f7cf56c2da72dc82f3d1eb25690392","sha1":"d1a002d43367b915b44ca806f5f1cfe509282bff","sha256":"d955997da8c0f7ca745c840b5cac158c18cd0a9c40bd91d32f6ecedcd770d2cf","sha512":"b5c3fc67efef6aa958397e9fc24e8696a581345ffd752bf43747c54c8c4ccd7a0f63cd0d14b0a9eb209ba8fe55977191fd8946fce756ecd68c783be72f962d30","ssdeep":"","tlshash":"82c08cc4a0c22d105a02a91850af28e490248827704c1b468d98d9492e222b58237e98","size":152,"data":"","first_seen":"2026-04-21T18:15:44.068585Z","last_seen":"2026-06-07T18:30:53.031462Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"44a314d5006b40415ee8ce332795a096","sha1":"37c2fea15fa7b03c50ad8c6e45c686d060af2afe","sha256":"6990016294a3d3d7cf9a55b4ed775e0551a331e514582a81f8affa64671e6aa8","sha512":"dbae0b355d6befd1c0d00b075a63620dd8e5d54b1c240ba1fdd4241b8d0cfcc47717a3b4b80d2d27c60e0a56d74cff6a2634a6155d981277bd352ec56cd717e8","ssdeep":"","tlshash":"53c08cc4b0c26e401602692014af24e490244027b0882b428c94d85c2e220b08233eac","size":141,"data":"","first_seen":"2023-12-22T11:18:51Z","last_seen":"2026-06-07T18:30:52.997522Z","times_seen":208,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"528dd01eb509d1fc3c68b48e165c9d77","sha1":"8d702f33d869eb8c53cf75c17014f96385322395","sha256":"b508dff20bdbd9138e31aa48c45bc501805e509d2fd4709b39c4a60cd5c6b43a","sha512":"4c1edeec560f431005363ff5291acc80c1c42edf7c9a6d6e4fde2f7539b6a35a8e36f0bc228503263277bf5df4525dc579575faadca614c32e5dfa885a2d343b","ssdeep":"","tlshash":"78a012bb71b851710cd51ba7a40455e01c20123105052c101c8d5151c011c171d394c0","size":84,"data":"","first_seen":"2023-04-07T06:55:59Z","last_seen":"2026-06-08T11:52:17.849561Z","times_seen":38751,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c9a1371c5f26b5ceacb59678bc460cea","sha1":"b972fd59b63ac3c46f08bfa89e1864f96c162072","sha256":"ca04c78f9575d4b917c1f7e694120c144376ad604b4e83d2fb1cf82d5bc756a5","sha512":"5bcdc1c011800ef1d41d180a016975cf8726b625464cfd924932396f0e36b1430261bcaace497364e19a7c3f32b493a1d5ed8c96e908e9a44f4daec50c6bb66b","ssdeep":"","tlshash":"6bc08cd6a0c76e202603a81450bf29e4f0384026b0c91b47ded4e8483e270b48233e98","size":154,"data":"","first_seen":"2026-04-21T18:15:44.070695Z","last_seen":"2026-06-07T18:30:53.009451Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e3871ba76785b4f0d1a16427c5ad7347","sha1":"4231cb38d02b7a489aa36835ca03119535db7cad","sha256":"4103b36b96c5e31628000d65ccf45552e357491af98ca1d34cf2fb80e6cfcf8a","sha512":"f72e49d405d8bca0d61e042b40dcf9ea72f137a74f464d21c9e72774feba763adc1eadc1e1f8b50d8c587cee5fa3cb83393970517b68797c063cfa6065b5df42","ssdeep":"","tlshash":"28d0a9cba0a22a102a23502024af29d48028803230886612cda9c8593e330b0a227ee8","size":205,"data":"","first_seen":"2026-04-21T18:15:44.0728Z","last_seen":"2026-06-07T18:30:53.019114Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/coinLogo-b682002f.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"introduction_type":"importedModule","is_inline":false,"md5":"bf763cc635592902af856eb7f651dfe0","sha1":"35be1ffabb30e80aa2a238f5bf7df0bb174f2e9d","sha256":"06cc96bfe6c16a7d392be1f27694f5d87dce40108ac16461c9b5e78674e89f53","sha512":"1aea8f9881b0cffbf2fca075b9583f7065608588d9d8a2c8e1dcb6b0e4600044e53f0da1677fb55094d614cd853ab8601cc645e7c0609fe630773f6ad36f33a3","ssdeep":"384:hX/H8xoXRmwewwPwoCyn+QfIvbyHk6kzvhnYJMupDFozamBQW6+6d6MBIrquVeOc:PSIO++L6H6+6d6/+OlKax8KSk2bF","tlshash":"85d2fe696a88fc9410c66991dc0b8186fc4c5e4be6fcf4babb28dd8973009452356f7f","size":30414,"data":"","first_seen":"2026-04-21T18:15:43.904149Z","last_seen":"2026-06-07T18:30:52.945208Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3112b3f5481f1a67483b9ff160f7a020","sha1":"d4a83cdb0384a78fbd1209a4e0907796173469eb","sha256":"a3c46f50b641be74760b5610be5869e9c6f3e2d39cb9462a0f143213b9f7085c","sha512":"59d76c08e74f83c728b41499ba95e732522d3044150bd532edcb153c1f0b89edff2b9e4cfe21d9fc52d0b70d7d784af2887b089428ae11b22c406ab65fb9e388","ssdeep":"","tlshash":"4dc08cc4a0d23d002a06641022af34e4a0244036704c1b02ccd8d8882e230b08237ea8","size":144,"data":"","first_seen":"2026-04-21T18:15:44.074106Z","last_seen":"2026-06-07T18:30:53.035057Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d8a0b36a3bb5359d82373fd74ab0a55b","sha1":"109fcd2e9501021577ad657d5701aa40e771b723","sha256":"26b23c11a596c1301030aaa5e72296226d0b2c601ff7b24694d413a401ac9826","sha512":"ebb5fb5d0b9ad70253bc33b31f5fab9fa0efb74a89eefd5b900d6b956970a52ef306b8e62a73b47775339624aef7daf7f4779743b84394f80591c0ea8182f9fe","ssdeep":"","tlshash":"d8c08cc4a0d22d001a02641060af34e49028442670481b028ca4d8482e620b48233e98","size":138,"data":"","first_seen":"2023-06-06T09:30:31Z","last_seen":"2026-06-08T05:16:21.767001Z","times_seen":1327,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"dc5b1522f2161f539a1eeb970bf8f8ea","sha1":"fb5d9210d3886e667a1339bd45bc4276ef642f54","sha256":"3e05eb2e9277499289f24693b77bb29970fa2753d06d5e8197c64cb2602b3a8a","sha512":"7c244a5d42459fa191309c9d0e24c633ad8da35b0371350b1de2384a37c5525a88d7bfc529b97a3d3d31bb5fc29fcf967565b967cbaaa7c26da9aa71450b58d0","ssdeep":"","tlshash":"e7c08cc8b0e23e002602641050af34e890288426708c1b029ca4d8482e620b48233e9c","size":142,"data":"","first_seen":"2024-10-04T10:59:16.204004Z","last_seen":"2026-06-07T18:30:52.992853Z","times_seen":64,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"754f1a92bcda7b7b70bcb4c84d6b90a2","sha1":"68dae7cea08fcdf789277cc378cb53d8c9540c8a","sha256":"bf00ce7899e0c4b35810c2cb7c550f0db913f7240ba6dbb7df0e374fa7c127a6","sha512":"741805a147e34ae9e3faab586312edf0097951d85015bf6d9dab655ff4dd2e968eb4beeb762544d19f6a8d357f12fa5c310f061359e21fb00d2906d4a9728a74","ssdeep":"","tlshash":"4fc08cc4a0cb6e001a02781010ef24e8a024802670481b43ddd4d8482e230b48233e98","size":146,"data":"","first_seen":"2024-12-26T23:29:40.208529Z","last_seen":"2026-06-08T05:16:21.735928Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d049b0f9498b3c783e9304a23748331d","sha1":"07e16dc8be0c47a920fa92aeadf21d3281353870","sha256":"556b9a23d4bc735373fb3532a6eb6725161c4a66ac12acaa54f708388f1a31f7","sha512":"0cb4aa9a5163d5a8606f69cf0ee57a659b9613c8b2223706b5e7cc28ec40972719eb3baac966014705ebc3c52ba2b532c49f0723a2f407f26e07edba87878544","ssdeep":"","tlshash":"92d022c4a0a668600683261850ef7ef0903a902bb3086f039ee8c8153f160b48233dd8","size":206,"data":"","first_seen":"2026-04-21T18:15:44.080893Z","last_seen":"2026-06-07T18:30:52.9664Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c464eee61a30b35747e8e9848e60be3e","sha1":"3b58c9c7de2dd7f0322fd7bb9947ad3a01ac8cce","sha256":"955a99d585122831f4cabbe60b7755379393349c40795ff761e7ce78b3e491d7","sha512":"d548dacba908d5bd228c19df9e45083444741e1151dc914e356f01fd7fcb666a7077df8a57af5bc72e249160aa32ce3e40c77f22dc01fb2af95a6c3d19be3e4f","ssdeep":"","tlshash":"d3e0abeb3139c16456f09f2b6cec4c1bf69b27334d8c050bf8b4a9051ebad64227c894","size":420,"data":"","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-06-07T18:30:52.962806Z","times_seen":376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"bee66d5ca1ebdc99d46b625a89bf44df","sha1":"5b123348bdcecced2702ae1a783ef28603f8af81","sha256":"149ce489c7aa585331ef4a74e0f3a544d0f2c35c2ab5f7eff019d81ee31a10bb","sha512":"74c5ea5503f4f92a2e004999552442cedf8a3f343c5d1baf7a70cfd083734bd136352bb6908202c9952f2d4a6fffd1560535ee4b9fcc20e0cc1cd38dd25f3616","ssdeep":"","tlshash":"95d012c5a1c36a206e16a81554bf24d8a038442771cc5f678ed5d8a83e525fc8733eda","size":196,"data":"","first_seen":"2026-04-21T18:15:44.084047Z","last_seen":"2026-06-07T18:30:53.030629Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"8788bf812ec00863d504889945e2d37e","sha1":"801c07c73a966cf6d062ecec52ca884b9ec43aa3","sha256":"041062c7066e005809222c3080fd12d4c91501586d25841adec2a1a2ece6da2a","sha512":"8655c6a8acaf206546f3da5a14b30bbfca1d993ce5ecccfdc27c1d1ba0ec1caf6c25a8c853153d99bc49a5d13f1982fb506d3889198b2f77229a7543ccafdb78","ssdeep":"","tlshash":"e3c08cc5a0c32d141602655010bf28e490288027b0881b02cce4ec983e220f0c233e9c","size":147,"data":"","first_seen":"2026-04-21T18:15:44.085469Z","last_seen":"2026-06-07T18:30:52.973621Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6b726c59b70976083faf1d4e74e3a5c5","sha1":"f6cf7303112d29cfb2ddd61c7525aeb438142552","sha256":"1e3a11f73000522b57a08c60999cb7c4560d2f70937d16137f5dad70f632747f","sha512":"8e9ca04b9ecfd479e87e2dbe929b94cb3498d42575dba947a988361c4c2b9bb64c07959d403c859cb75faa2313c55c68735902822842bc8f41c49ae5de45503b","ssdeep":"","tlshash":"31c08cc9a1c22e14662aa86850bf28e89034817a748c5b46ccd4d8892e224f08233ed8","size":152,"data":"","first_seen":"2026-04-21T18:15:44.087259Z","last_seen":"2026-06-07T18:30:53.032249Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5b73e04137d07d8b71c7db00b58802de","sha1":"4b2016f57c307a34d3e1903c5ad41bbd0f690ea1","sha256":"8743ae4d0526d59080fbb62d8d336db7f04955fc072f9b1821057b8bf3237871","sha512":"ee1de29b21e54e2d4797b9b44658195bcb9a7f53eeae606a3326a264f8dd90706e792340513df813d827e4c91abcb328697e42d22cad8c374a6a12ee3a1da9bd","ssdeep":"","tlshash":"dcc08cc4a0d6ad201622661020bf38e4a0244027b0481b078c94d8882e620b08237e98","size":144,"data":"","first_seen":"2024-08-19T15:37:31.671967Z","last_seen":"2026-06-07T18:30:53.005818Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/#/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"960fd4318609e6f712bc21167d84b84d","sha1":"85a8aa22c47c5ed85adb7e24ef0ebd0f705e3a63","sha256":"65839cc26e297abc25ce7acae902de748a18604b8eafcbf8bb55ed697b86734c","sha512":"b16a34abeaabc19194d1cedc5502128ce609e5ca4300dc40b29739c8f17c7c628769e743980d11c81eb8a6b3afb0cc7aa021d84e9af23ee955afd6a60ca27761","ssdeep":"","tlshash":"47e02646a8e1291492960001a0fe24d6a0b858676b885aaad6a9844d3aa20f44632eed","size":323,"data":"","first_seen":"2026-04-21T18:15:44.092548Z","last_seen":"2026-06-07T18:30:53.035981Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getCoinList","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getCoinList HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":141159,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (65528), with no line terminators","md5":"605a81f2c834b17ca7af26fc5c149fd6","sha1":"21b78132fe2cb7c038a36fb769748679419b6e1e","sha256":"90b99747a13814287c1ff15f087b19b9bfc05aae65e0fc44e6caf0ca87985985","sha512":"24a592f4a32f2397abe499a8f3befa44241321eab57f901bf942157db0e985a745f258a7e3fc329a7f06ac2c14d4e54ffbb8b1d30414c33119d5d8374e6103bd","ssdeep":"768:3JnArscmdmFbXD1/37qeOfsU5cHoqox8XvN:3Krscmd0f1DqeOfb59qoxy1","tlshash":"6ad3f0566538a8fdc67ac0d85e7f7d1260cc327fe9c48e1ac7c94a885ed8eb1150af06","first_seen":"2026-04-21T18:15:43.892722Z","last_seen":"2026-04-21T18:15:43.892722Z","times_seen":1,"resource_available":false,"data":null}},"time_used":854,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":309,"receive":545,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/platform/fxcmvip/favicon.png?v=1776756963363","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /platform/fxcmvip/favicon.png?v=1776756963363 HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: image/png\r\nContent-Length: 287299\r\nLast-Modified: Tue, 21 Apr 2026 07:35:54 GMT\r\nConnection: keep-alive\r\nETag: \"69e728da-46243\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":287299,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"8fc50e7928e18217e83c11ad7c8d5128","sha1":"ba3b1d59eb028184229a6da207fb1c07a73465db","sha256":"81dca33838c339f1947f47f5cde089912c389a02927a42c4dfba11e78385e606","sha512":"d39feced55fd5fd08ca24d665e66dda9e5a7facb23e46fa4c2e6042719112b659d9612c0f1162da471f8054de1edf2295ef3b9aee14cafbb32ff1a170ec81bfc","ssdeep":"6144:QYXlJvO6A2/5TipztxpnkHif84Fon7XrqyY5z9buHIcnxMnWw5DycwTz4QnWH0Et:QKlJvOiBipfDk4Fonb2yYN9b3ux4RfYA","tlshash":"bf54124afac1cbb7d0146635f32b78c9460128ef694cbb066da187194797f653cf1d88","first_seen":"2026-04-21T18:15:43.895751Z","last_seen":"2026-04-27T17:21:22.506845Z","times_seen":4,"resource_available":false,"data":null}},"time_used":827,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":553,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/platform/fxcmvip/logo_144.png?2.0.1776756963363","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /platform/fxcmvip/logo_144.png?2.0.1776756963363 HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: image/png\r\nContent-Length: 15783\r\nLast-Modified: Tue, 21 Apr 2026 07:35:54 GMT\r\nConnection: keep-alive\r\nETag: \"69e728da-3da7\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15783,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced","md5":"10ac2cda458858e72be083fb650564b6","sha1":"7ce2cab48b796b7520d4dd63523aa92d0326a358","sha256":"793c9756ca6a2f50350785025e596b102f33ff6d1fda6ec990da1743308a12da","sha512":"c08ce4d7666191d7ca5b4a13b5ed24a871672a03dfca77c5804b45456f49d168fe7c345a4745c4f8fad7f837cd9f0625473f5e6ec8092551363cd032711fc5f2","ssdeep":"384:FUlspyNGAiObuCRnJesXH3UnoDG8lzurwOFaRBf:OewFtRnJec3UkG8xurwOFaRZ","tlshash":"2a62d06a5fd8b0d9ee2871311c9c49d6306bd2935414870abc7885ba6c6369898bffb0","first_seen":"2026-04-21T18:15:43.898902Z","last_seen":"2026-04-27T17:21:22.675855Z","times_seen":4,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":255,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getMt5Amount?coin=uso","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:17.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=uso HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:17 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a2ed61b8f23c40b65f8f432488acfbd9","sha1":"817f837137e6a13532e7d402983d6e0f4cac5520","sha256":"bb79b290b9a5fbfc20640fcf2b4c70d2ba954c857e21ffbdb41643abd0c7e17e","sha512":"b08166f4fc972e1974d7703592965891fb74706063645e0b6f1fa3d7d59b90b72023b9f6905d96d900a61c71e8026bfa248859e958364304ce69310688c4a0fc","ssdeep":"","tlshash":"f39002551c188342ac8700a9a50a330400283560366592484c59512680881a22040858","first_seen":"2026-04-21T18:15:43.901902Z","last_seen":"2026-04-21T18:15:43.901902Z","times_seen":1,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/coinLogo-b682002f.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/coinLogo-b682002f.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 30414\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-76ce\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30414,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (30413)","md5":"bf763cc635592902af856eb7f651dfe0","sha1":"35be1ffabb30e80aa2a238f5bf7df0bb174f2e9d","sha256":"06cc96bfe6c16a7d392be1f27694f5d87dce40108ac16461c9b5e78674e89f53","sha512":"1aea8f9881b0cffbf2fca075b9583f7065608588d9d8a2c8e1dcb6b0e4600044e53f0da1677fb55094d614cd853ab8601cc645e7c0609fe630773f6ad36f33a3","ssdeep":"384:hX/H8xoXRmwewwPwoCyn+QfIvbyHk6kzvhnYJMupDFozamBQW6+6d6MBIrquVeOc:PSIO++L6H6+6d6/+OlKax8KSk2bF","tlshash":"85d2fe696a88fc9410c66991dc0b8186fc4c5e4be6fcf4babb28dd8973009452356f7f","first_seen":"2026-04-21T18:15:43.904149Z","last_seen":"2026-06-07T18:30:52.945208Z","times_seen":5,"resource_available":true,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/forbes_dark-b2118e4b.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/forbes_dark-b2118e4b.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 2948\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-b84\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2948,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit colormap, non-interlaced","md5":"e76e6348e156ca041e2d7310c72fd63c","sha1":"4750e3560bb0d16d0b1ba6bfc09e03025c4f65bb","sha256":"b2118e4ba108cd0d49962fbc2061510831b2972900676446b4df1f05cc8c35bb","sha512":"43f0da1ef5947d294a39997ed412f94809a4241c06e2dcf0200adc102c1f8c67c10ea73e276a7fe8544048bbaf7e134cbe66ca1a3a25a0b1762770f6cdfa296b","ssdeep":"","tlshash":"b9514dcee1c0915aeeda0eb6904d810eb725bf86354c991994685b0b38ec235c89374f","first_seen":"2025-10-31T10:08:53.071812Z","last_seen":"2026-06-08T08:00:48.02347Z","times_seen":128,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getAllSetting","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getAllSetting HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20633,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (20065), with no line terminators","md5":"0425ae6ba42e1028ded1c2fbfbd27146","sha1":"dfb71f6209c42bfeee8f96bd2f9018a1c6b03bd4","sha256":"f1d418333e89531a130e88abf47cd05b262f58b089fdba52ba6750482bec3d46","sha512":"73aca57d4f64bd3a69456cebd1a3b0210d205e4c1c771f7f9994b87f5ab9f9c9af4dbaea6010ed83ff938d507f7a96e37df6bd4d4f99a482c15007907608a83f","ssdeep":"192:wTMZLTHNvpHXLMqk/S5+RbAuc2hq6kDOFvb/S5V/iN+5Nr2sehOsezMwg8mH47vI:Zu8Di8P2I1j1ekyqCVm57Xk4k","tlshash":"949243063aacccfe45db29da90fe7d097ddc146bc094ec14e8abaf5c99d9971480b04e","first_seen":"2026-04-21T18:15:43.907968Z","last_seen":"2026-04-27T17:21:22.640426Z","times_seen":4,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":285,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getMt5Amount?coin=xag","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.995Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xag HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:17 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"0aa9f387f03ce270b67ea1423e9c88e7","sha1":"44417076aeeb3f9b3a9a5cce99426e0108972c22","sha256":"fb53f704077136198e194ea6d9d54688f082c744b6a4952dfd4328e274bfbc65","sha512":"e25fb42f2f22718f5d50773d0c136fbe970b8371c76f242d39af2865874cc6a6038dcd516eaf82cf2d892b49710bfac372f8e73fc7160d93f34c647261aa820a","ssdeep":"","tlshash":"f29002561c588242a88700a9a506134440243170366592584c595125808c1622044868","first_seen":"2026-04-21T18:15:43.910961Z","last_seen":"2026-04-21T18:15:43.910961Z","times_seen":1,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getMt5Amount?coin=xpd","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:17.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xpd HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:17 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"2a8e94dcc3c22fabb159caca9c3118b3","sha1":"9ddeab809ffde4a4950926771c7c8893e8017164","sha256":"0f5bce9d3a6fbec02947409e361435301187fbc630ae15927829ad04bfe5c44d","sha512":"01c1eb848a962e9c28163f0d0cf2c3fa9163ca8066e543d3586e4658eeef9604252aeeca4a7ad169f09eb3bf5d649df4b29794b64c3802f61ed8e56c947c2c98","ssdeep":"","tlshash":"209002551c188282a88700a595461304002531602635e2484c59622584882622040868","first_seen":"2026-04-21T18:15:43.913373Z","last_seen":"2026-04-21T18:15:43.913373Z","times_seen":1,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/TopNavBar-468c3fb2.css","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/TopNavBar-468c3fb2.css HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: text/css\r\nContent-Length: 2959\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-b8f\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2959,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2958)","md5":"3520ad72793c4b224cb4d6e4f4de5c31","sha1":"0b2e0a0b3f660ff7da3df6dae9c0080413d3fc85","sha256":"468c3fb2a2e389dea0bb30c9fab4c53b8c26f24c8f279d12b5d51d8858f64387","sha512":"86db1e524ee3b73b2e7132ab5f5779c9408210299159d789ebf5af28c4a853abbadda1ba792926c001bf8525bc49f4667162c128f84253c0bb0563a035698548","ssdeep":"","tlshash":"c45144b6fd4c1a0d613bc0e93c50668dc218e771d39bc704b36b68586d8b1bb2f32684","first_seen":"2026-04-21T18:15:43.915897Z","last_seen":"2026-04-27T17:21:22.57939Z","times_seen":4,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":252,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/HomePC-c1964b61.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/HomePC-c1964b61.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 16384\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-4000\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16384,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (15234)","md5":"c1e6b97e7ea104c798b5a528b5318f97","sha1":"34342c3d3ca77501fed9ef4a05f888ad9e88bea4","sha256":"c5e4fdbb628905dcbd7857bf592a369a1040aea5315bb2e1a08cce11c15fc07a","sha512":"a13183d88741cab18460d55960cc83face4914a7675a5a5711819df20f89cde8cf2a330b3854680cc6bb8f7757ad245ca5e67fa05b4689168516a3603a3c1116","ssdeep":"384:2prv4b1v4wEE2mcjoT0JP3dU0xnGiy8riyyxdGP2X2ZFbUK7YkSrAcE:+D4b8jmFv2KI2mcM","tlshash":"51727204b513ec3cf1e3a486307925a47818af89c5981c9997fc8ced5fc5cb9b74aa29","first_seen":"2026-04-21T18:15:43.918093Z","last_seen":"2026-04-21T18:21:15.516674Z","times_seen":2,"resource_available":true,"data":null}},"time_used":515,"timings":{"blocked":255,"dns":0,"connect":0,"send":0,"wait":259,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/TopNavBar-b4265c28.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/TopNavBar-b4265c28.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 5751\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-1677\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5751,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (5706)","md5":"c9c63fe838c5f68e5fd185a594750f39","sha1":"d4e7ca12bf20371b9e4664729f93913842356c39","sha256":"8f8ab9e186d4274eabc3fc9daa177b0a6486a3a4c18b61041c8a29b8fca55474","sha512":"b9cbe6f10c0e20942a7e6a7958d0de955c34e671d7ac1e83a91d5cef6fbffb48767b4eb0e32da8bcf269ce08ea077b3fbd8e3afe70bb8168841390719842f9cc","ssdeep":"96:2elCQedwUmOPCyyutuHTdTWoOj0dGWwic44tn/nMSF9NsNzmJ/e72UxkT8h:FTewUmOPCDUu5OqHkm29N4iJ/xUxG8h","tlshash":"60c1c415be188a3c401bb04d577934a4b76e27aab0444cc0c7fe04bc25a6e68f93fbc5","first_seen":"2026-04-21T18:15:43.921826Z","last_seen":"2026-04-21T18:21:15.495699Z","times_seen":2,"resource_available":true,"data":null}},"time_used":516,"timings":{"blocked":251,"dns":0,"connect":0,"send":0,"wait":264,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/type/defi_activity_type","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/type/defi_activity_type HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlanguage: en\r\nlang: en\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":635,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7a423e3451e474878191a0a7f1d323b9","sha1":"13312f533f380295131f6a1540f425d0c98a16ba","sha256":"49c938e0bb3a834cab9319575489cf6c1694cace3f1ceb9671570024328e2a35","sha512":"0522e47fc06c4329cee21e354b264c90ae4b0725941d75cf63af54bee4a307fbe91e7078a412bd9750f3856657159ffe5efff139a652ec0443368f7c146bfdbf","ssdeep":"","tlshash":"5af028143d3dcebf098f65e745ec7818399c152794a0fca058ab0f3c5ae4171088921c","first_seen":"2025-04-07T11:28:26.961944Z","last_seen":"2026-06-04T04:33:14.419392Z","times_seen":666,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/cnbc_dark-0765f9d3.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/cnbc_dark-0765f9d3.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 3273\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-cc9\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3273,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 4-bit colormap, non-interlaced","md5":"039382b684661093235b43f0cf01f757","sha1":"126a7949d91c16d7b58168685d2db18bbab8f467","sha256":"0765f9d30a736f731a54bfa2aba2f5f41e9ec72ec9baad11cf0ee39b3f26036c","sha512":"9412a68f58ea6ce7c1be6d3b1a84d1fa3862b93ef63223390802d14a9c95dc12cf3fcbe4e14812dd79c7e7a2c3e407297de7b9b5ea4594d8ee8e1a8ad10f143b","ssdeep":"","tlshash":"a8614de3a314a0be8a3fa53bc469fe2a064c97434e7326bde989d44c50546145c257db","first_seen":"2025-10-31T10:08:53.111182Z","last_seen":"2026-06-08T08:00:48.024033Z","times_seen":128,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/btc-8022fd53.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/btc-8022fd53.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 2589\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-a1d\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2589,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit colormap, non-interlaced","md5":"8f8d12b8691a706a99e7544bd33527c2","sha1":"1ecd8325658f45911e28e94afb85f3aba3ea38c4","sha256":"8022fd53c251f18cb39cefede445f1c78a3b265989232f0bb46b9c4622e55a9e","sha512":"36abf50c637a730a26ceea1ab4e2c9d153274b5c1a03d273372f0b580eeed3267d08d4512326da520bd19b425288d72f0c2edc8abdbd3549b03612c639946021","ssdeep":"","tlshash":"a9513aa1c3955ea0445ad9910b83ea56263031dca284f7d6ee3024900f68b35b4d2b73","first_seen":"2023-04-13T08:11:26Z","last_seen":"2026-06-04T15:35:28.554299Z","times_seen":271,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/eth-99bf2102.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/eth-99bf2102.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 3437\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-d6d\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3437,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"174b0414fece541456d82f84a296e380","sha1":"b5705bc9d5e6c5d7f70e9a1a2773f7211f474657","sha256":"99bf2102cc13a51bb226f931b8d0fa4c5b3ca9dc4179167e89d7ee3f677c3fdb","sha512":"6a5fb1f896da4d1bda7474e19880294be83017a5da5cd39113adfeb5032cb9b7566e706845209e4312408a99b7305b27a84748637bed44aa2622246bea0bda94","ssdeep":"","tlshash":"a5615d8d039107bec5d46349519fd6698c278705862f4fe84b67c8fc0e99dccc4c6b59","first_seen":"2024-12-25T23:55:17.402619Z","last_seen":"2026-06-04T13:02:21.054148Z","times_seen":48,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":247,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/sol-b9296ce1.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.997Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/sol-b9296ce1.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 4222\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-107e\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4222,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"0bf2916a9c679e99dc9060ee1cc2dde5","sha1":"7b54d567258f440651c4a41d2f955c9c412451bd","sha256":"b9296ce1118a6d150e57049190aeb4c024199e0787e0c6198c244230b8d704f5","sha512":"1749edaf7c45f50df246f209b5d26801f3ec20f449a82a9deff48b348c5fded272fc3cfdaec44eccf27ffb5225774a7ec0c6a564d7a0e558665411d5bc3c8675","ssdeep":"96:hvuOg3LKz5FT+ae8o5VngkGBh6WQZsrHzXIY4:yYdzinN6wCQY4","tlshash":"ed915dd8f39d7610a3c05d3590aa3ff78ec6818c0c258888f926f67c54ad4e11c85e5a","first_seen":"2025-09-08T14:29:09.791256Z","last_seen":"2026-06-04T13:02:21.056458Z","times_seen":20,"resource_available":false,"data":null}},"time_used":520,"timings":{"blocked":250,"dns":0,"connect":0,"send":0,"wait":269,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/xpd-dc6695ee.svg","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/xpd-dc6695ee.svg HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 722\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-2d2\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":722,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9afd5f420ea02b0bb39dc0005b8168ba","sha1":"b260b4461113a0e45a1fe49bc3d8b904f934342f","sha256":"dc6695ee264de3da6e01b1b952a495931c4032b627d8ffee4174b2dea56f6f80","sha512":"80b0280d311d3769511f1280bd629f18cde318bf211ee19eb15fb5ec90a37520ff30d0cd7f877651d45877c06d6daf9c9cf5d8121b2e35149cfd24e6b5adfe7e","ssdeep":"","tlshash":"88014715e04c4a2ed06cc70dd717b07e720f84c1d68adb38b6d09e16ac954e72a9f3d8","first_seen":"2026-04-21T18:15:43.934353Z","last_seen":"2026-04-27T17:21:22.621858Z","times_seen":4,"resource_available":false,"data":null}},"time_used":780,"timings":{"blocked":510,"dns":0,"connect":0,"send":0,"wait":269,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/22e0c081-d9da-47a7-85bf-c631a5a4545a-fbda209c.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.017Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/22e0c081-d9da-47a7-85bf-c631a5a4545a-fbda209c.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 79427\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-13643\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79427,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 321 x 320, 8-bit/color RGBA, non-interlaced","md5":"2a43098e7eb2588d74962bb9d0c38a68","sha1":"74af87f51826d0e979c03d57161682af8963a406","sha256":"fbda209c5c43ee0dc54c2a197175a8722088b4ef3a742bc277e4a345ad615a30","sha512":"1649f803baa114e74f52491e8a83a8b79d0f55ac114d8b405c7cb920366efdb54e3bed64b8e6fd9d5c2627e88adf752595e8da5bfdf7dcde37085a449146b45b","ssdeep":"1536:fQSF7Ni1TTr8gxSxzPOFrvwpeMLX/zXt3ksKUiZwgwWyJJ:fLu1TTr8QSRQU8MLzbSwKC","tlshash":"7673128dcfd1e7609b29a2b1852972cc7af5222973f6a5468c71ee38f1853a15723908","first_seen":"2026-04-21T18:15:43.93755Z","last_seen":"2026-04-27T17:21:22.625979Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1583,"timings":{"blocked":771,"dns":0,"connect":0,"send":0,"wait":271,"receive":541,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/4a4accbf-f02a-4914-b8c9-1b6ed2a60449-ee0cfca1.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/4a4accbf-f02a-4914-b8c9-1b6ed2a60449-ee0cfca1.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 90199\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-16057\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":90199,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced","md5":"0201ba6aa251321b65555ef8696fa3a5","sha1":"122b7e600f490fc6226a374eaf7e81fecea0f968","sha256":"ee0cfca18e8bf28783d09d0955fceced51dc362d88dcedd0ca1bd5767092cc69","sha512":"d8d88ff823da29ce30d5bf22a817252346c4fcce5e91d853a09d4002c999efe274582f8bb32b2c376ea52bea718865e7c678d6e193563447d6397bfef93f22cb","ssdeep":"1536:icD6npDFJyG0ZBihV3Lu0RoXePOfMhMJ4Nyme1DT0xhKGCNw:icI1nyGIy9o8PMJ4NE1Dg","tlshash":"6a93127e0946b9f4ac15a67c55ceb42dec17b9320e7845a059fcf1b9072cffca481a80","first_seen":"2026-04-21T18:15:43.94009Z","last_seen":"2026-04-27T17:21:22.693982Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1610,"timings":{"blocked":1329,"dns":0,"connect":0,"send":0,"wait":274,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/HomePC-61dc4f44.css","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/HomePC-61dc4f44.css HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: text/css\r\nContent-Length: 17014\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-4276\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17014,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (17013)","md5":"52a6d9077bc23f2b7ba5440284ce3ef0","sha1":"67b8b1a4833503ebcf62997835efe9367b332faf","sha256":"61dc4f44f8f5b41cb499aa90ecf65bd48f41d1f4e525ae57132990c0c0f32fdd","sha512":"6fa948b323e6dbd36253eaa1d665e11316ebb775c1a68d470d8f17c1bd55038f60f0506e84df22986569df9f66c4182e4c734ffae7b89bc6cb8293303dc28462","ssdeep":"384:JwD8VFekvtxtYgeip9GXfwHuDhp22WfJMWmKhpo7l4gRGwB:JE8VRFnHpwXfwHuDhp22WfJeKhalhcwB","tlshash":"9c722124b3093128953b8e4d78552bdcd924b63293b20f75b3635c439edb2bb622b54e","first_seen":"2026-04-21T18:15:43.942578Z","last_seen":"2026-06-07T18:30:52.906834Z","times_seen":5,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/index-cb515cf0.css","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:13.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/index-cb515cf0.css HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:14 GMT\r\nContent-Type: text/css\r\nContent-Length: 324053\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-4f1d5\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":324053,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"1b46b45efd45fa98e45c70c9357a727a","sha1":"635960a84b13761717163c00dc4c77b1286a104c","sha256":"cb515cf0b684fd4d887362405a7a03fa66d51663a65507a597c1ed3018647104","sha512":"7b6a7481a29dffa76c8ed5dbeaea7e2099be251a20226a354a5ec79afc6f8e21cfd185483ff20e3b0b9a9c100dc64196501becaf36d8b6f2007a8bd6260255ac","ssdeep":"6144:nfB/9S/Jk4UkZ8w71ZACkFDS3vyf58rBeV05T42pJhNE:fB/54NZ8w71ZACkFDS3vyf58rBeV05Tg","tlshash":"a164d7a9a590117c6f27aa7597ce5adcf23ce6619c118de8f201600a4fc3ffa1363617","first_seen":"2026-04-21T18:15:43.944972Z","last_seen":"2026-06-07T18:30:52.947735Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2561,"timings":{"blocked":588,"dns":0,"connect":272,"send":0,"wait":547,"receive":835,"ssl":314},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/platform/dev/config.js?1776795316060","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /platform/dev/config.js?1776795316060 HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 394\r\nLast-Modified: Tue, 21 Apr 2026 07:35:54 GMT\r\nConnection: keep-alive\r\nETag: \"69e728da-18a\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":394,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"4bc52b1aa6813b98e0af16a138354c00","sha1":"91ee6accefe6f24544627bdd1ae2aba499d5016c","sha256":"bf904efa24cb62a824547b6df3a7bbade81bfa77cc27124d7766ae502e5d6231","sha512":"22c852a633d0c36ccf7d549fd1c6a800698e42994d993a47f534b92c8ff8430c14d668c72d2bf8eb79e8b4459f83116bc75ff5f5269f36bc3b8cf2cb9ae886ae","ssdeep":"","tlshash":"f5e0abab3138c16451b08f2b6cec4817f68b2733494c010bf8b469041e79d542178890","first_seen":"2024-07-24T17:37:43Z","last_seen":"2026-06-01T14:24:52.336032Z","times_seen":377,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/index-4e675794.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/index-4e675794.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 1129\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-469\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1129,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1128)","md5":"07bcb7358fdb92e2106cb0e22d7b9f3b","sha1":"e41c219a992f88af1a883c23d00e9e2066d06588","sha256":"ed8d43553818988e736a42ee19777a8316ec22eb6917e01bdf41a2edac64b7e6","sha512":"1444b1b09073f513022a37d0050477ba0610a48726b73b6ffc1e7248c62e7e17f974f162108c9b56f8ca0a34f04be80a30d955c79b3922a1209bbbd6b99f90ee","ssdeep":"","tlshash":"5c2156196c061fbea36c2c08895164c146fa8b49020ad29dfcbe2d393254cca895eff6","first_seen":"2026-04-21T18:15:43.948388Z","last_seen":"2026-04-21T18:21:15.507153Z","times_seen":2,"resource_available":true,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getMt5Amount?coin=brent","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:17.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=brent HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:17 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c550ef18b28c8814abf2d91b4e324543","sha1":"a03cd19bf1b478fe24220d8b22a74428f22c6584","sha256":"d6bc5a66486f6f36d48c74b43a9d1023e5254f2d1c9f3022daefc621da5d5eeb","sha512":"4913381667eba0153aa8f61677b500be586801006e96be0cc958ebc9dffde0add8ee2215c3741eb9197da8952548c126ff3ca94d927bd06d082a59c47306603a","ssdeep":"","tlshash":"8b9002551c188243aa8b00eaa506130404243160662692484c5a512584891762050858","first_seen":"2026-04-21T18:15:43.950531Z","last_seen":"2026-04-21T18:15:43.950531Z","times_seen":1,"resource_available":false,"data":null}},"time_used":490,"timings":{"blocked":237,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/HomePC-c1964b61.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/HomePC-c1964b61.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 16384\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-4000\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16384,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (15234)","md5":"c1e6b97e7ea104c798b5a528b5318f97","sha1":"34342c3d3ca77501fed9ef4a05f888ad9e88bea4","sha256":"c5e4fdbb628905dcbd7857bf592a369a1040aea5315bb2e1a08cce11c15fc07a","sha512":"a13183d88741cab18460d55960cc83face4914a7675a5a5711819df20f89cde8cf2a330b3854680cc6bb8f7757ad245ca5e67fa05b4689168516a3603a3c1116","ssdeep":"384:2prv4b1v4wEE2mcjoT0JP3dU0xnGiy8riyyxdGP2X2ZFbUK7YkSrAcE:+D4b8jmFv2KI2mcM","tlshash":"51727204b513ec3cf1e3a486307925a47818af89c5981c9997fc8ced5fc5cb9b74aa29","first_seen":"2026-04-21T18:15:43.918093Z","last_seen":"2026-04-21T18:21:15.516674Z","times_seen":2,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/download-preview-large-fb04ed32.jpg","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/download-preview-large-fb04ed32.jpg HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 93815\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-16e77\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":93815,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 666x1434, components 3","md5":"982f39822225e85f91f04ff469efd777","sha1":"55ed1eee5ff18c9dab8e9c2d4922b702c65d7759","sha256":"fb04ed32eacc1cf08385bef6abfa5f22a17d6465960292f2c71ae1ac09770606","sha512":"b42cbdf63d2a07c70cdbe6e938168f2d47b08f82e2eae66c1f872aeea40e106bcba19681f90f451fa299a5b781392c9d52a4e779d6c4fb9d36f8dfa8b94b5700","ssdeep":"1536:WiLYJ9YX+3yURSFIOqv4Pfws5uDBshnVCLmtwAZDknaQNNcbZWpsHJ:j83yURTOqv4PfwPshnVCAuNnpsJ","tlshash":"5393e16d53e8f846c56554b170a152bbf18712c8b332fa729142ccbb3b1476ce9a8f1b","first_seen":"2026-04-21T18:15:43.952494Z","last_seen":"2026-04-27T17:21:22.600907Z","times_seen":4,"resource_available":false,"data":null}},"time_used":822,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":278,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/dbd748cc-5b5d-4494-9f6b-6dc345b9786d-94304bb6.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/dbd748cc-5b5d-4494-9f6b-6dc345b9786d-94304bb6.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 173865\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-2a729\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":173865,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 480 x 360, 8-bit/color RGBA, non-interlaced","md5":"8c1a4068b308a3c3a45516182e11a1c4","sha1":"968123212298e2275608a9435ff2dcb5076907ea","sha256":"94304bb67e5c1a8bc58404e1a8ac3b575be1f5f767faa06881f2e624f0013c8d","sha512":"bac7b26ea71ed9424a5bdb5bc0a13d4a89c3db568f0b521203c0fb5d20219ac25fd116a8d40c30d79249d7bbe84a5acb1fcca29425277480bff84790c8631bae","ssdeep":"3072:o3XOlOTwQxIVgGBC6uIotogekyjZsei+TJ3HEiEKg3AxyPrbLE+:T5V7BCLIoSgeRjZsei+N3HAiMHI+","tlshash":"df0412f668f49c72c57df17383d9543fb2696126cb37c7856aabe7f4403809b4129a10","first_seen":"2026-04-21T18:15:43.954553Z","last_seen":"2026-04-27T17:21:22.689649Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1794,"timings":{"blocked":741,"dns":0,"connect":0,"send":0,"wait":528,"receive":525,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/charting_library/charting_library.min.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:13.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /charting_library/charting_library.min.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:13 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 10859\r\nLast-Modified: Tue, 21 Apr 2026 07:35:54 GMT\r\nConnection: keep-alive\r\nETag: \"69e728da-2a6b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10859,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10857), with CRLF line terminators","md5":"2a5fa40461c4e10123b62c021ab0a4ed","sha1":"527b4a35104eda6479c5ac876f57b5375ab00f51","sha256":"bcee984fd52b4a82bd6b23543bb33f6472e076c125edbdd8756d29ca230628cb","sha512":"51c91bff846f3825a21d6b301b1e4615d05bb27defef6c39c622e647f5d0262fdb0382924c9245c4a18a11cd32b60e4c913ed451b6f4b2fec1c87ce871eb874b","ssdeep":"192:9fdWSo7ktFUnoBelr6lw2LfnzuIQPlaJ1i10K+Ei/ISJhvHIheu5Ph3Ffa5:vWS2ktFUnoIlD2LfnqIJimK+5/ISJhvB","tlshash":"58224f58ed2478720acb54f0427f180f8239e278d84944ed3c84e6ec59fd44a6a6fbb8","first_seen":"2024-07-11T15:08:28Z","last_seen":"2026-06-08T05:16:21.679615Z","times_seen":1000,"resource_available":true,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"nymexgrouq.com/ws/0e76ebcb-5199-425a-a455-a6a17d9bd657","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /ws/0e76ebcb-5199-425a-a455-a6a17d9bd657 HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://nymexgrouq.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: rMjzRCZSfBBQZ9i0BYgJPQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: WKgxLUKGQy4PtfB8nR9rSp3wXWA=\r\nSec-WebSocket-Extensions: permessage-deflate\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T11:34:21.534624Z","times_seen":16238222,"resource_available":true,"data":null}},"time_used":788,"timings":{"blocked":0,"dns":1,"connect":257,"send":0,"wait":257,"receive":0,"ssl":273},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/fortune_dark-b974a75a.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.983Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/fortune_dark-b974a75a.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 3230\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-c9e\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3230,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 4-bit colormap, non-interlaced","md5":"e81e890b2272a09b16d4a20cc2012c8c","sha1":"bce6af87669b8a970ee93c873cdcb49293d5465d","sha256":"b974a75a43ff91f54582616f18962ad2c5ac7c55dfceaa82a8cfddbf8cb06ef6","sha512":"b1273b26d1465574b910b504fa596912f2fa65522adf11b25e79d4d568a2f77aae4a994a132fe50a19d099d3f19e92b74ea4da83b732ef04cfbf218d4ab82816","ssdeep":"","tlshash":"bd6160cb1761597f06ee9a67011cc072dd8d5d715b71d34c6b6d9070ee43370402116a","first_seen":"2025-10-31T10:08:53.212288Z","last_seen":"2026-06-08T08:00:48.043692Z","times_seen":128,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/b9f6ce56-e979-49e2-88d8-7935e0e4b6d0-defa14af.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.019Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/b9f6ce56-e979-49e2-88d8-7935e0e4b6d0-defa14af.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 73966\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-120ee\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":73966,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced","md5":"38bc1594657a4638be6c1368476ea8bd","sha1":"0abfefe7f0a794e2cac64efe8e5a85a4097d9f22","sha256":"defa14af16d611faf82dd05fde0e40c7f7337f79d192fda4c0ae4703f5af39d4","sha512":"b0e28adf21ea852d3dcf42639b9591dd1e9261b4350a6ba44404ba38ea24bb772be6398249fa1ddf45269bd5a6362709248474b17cbbc529645753f96a5fa5fe","ssdeep":"1536:wrbsMR/6UPal6G/Qsg/QIWksx/hgmze4s8pVGufcM:wrbFRCMWgDw9eR6H","tlshash":"d473f24a3d7c5175e78228d398f869ffbbac970673c738240fa5160cb941b49672d728","first_seen":"2026-04-21T18:15:43.959691Z","last_seen":"2026-04-27T17:21:22.630808Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1067,"timings":{"blocked":787,"dns":0,"connect":0,"send":0,"wait":274,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/shield-animation-7f8110c5.webm","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/shield-animation-7f8110c5.webm HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: video/webm\r\nContent-Length: 6545663\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-63e0ff\"\r\nContent-Range: bytes 0-6545662/6545663\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6545663,"size_decoded":0,"mime_type":"video/webm","magic":"WebM","md5":"5f674b70b300046ecee9c64b1f66abed","sha1":"579d41f8232f3f1c0a30073cc4441bf2b4094409","sha256":"05946c5c1b2a0ae2c877fdd058bf62640f5ddee0a3305f03a1eeba0cd53ab1ed","sha512":"ec7c1df99bc3c2567d0b18abda385bf4e2f164820400ee2a134705b0823c273805658e5401805be778a2168c344e21d7c9f3a9c64e686da5597e96d18a3aaceb","ssdeep":"24576:DpcTwh8istsSJCcTM2OnHllDnqyb0iQgcHb1Ay4sQWixXu1:Dpcc6MSJCcI2OnHllDnqyb0i5cHi0J1","tlshash":"4425239a442f52dcc69644f7c3079e739d0b0cd168674287bc9984c7c04bf5b9abbea8","first_seen":"2026-04-21T18:15:43.961713Z","last_seen":"2026-04-27T17:21:22.635251Z","times_seen":4,"resource_available":false,"data":null}},"time_used":11396,"timings":{"blocked":624,"dns":0,"connect":0,"send":0,"wait":254,"receive":10518,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/index-4e675794.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/index-4e675794.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 1129\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-469\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1129,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1128)","md5":"07bcb7358fdb92e2106cb0e22d7b9f3b","sha1":"e41c219a992f88af1a883c23d00e9e2066d06588","sha256":"ed8d43553818988e736a42ee19777a8316ec22eb6917e01bdf41a2edac64b7e6","sha512":"1444b1b09073f513022a37d0050477ba0610a48726b73b6ffc1e7248c62e7e17f974f162108c9b56f8ca0a34f04be80a30d955c79b3922a1209bbbd6b99f90ee","ssdeep":"","tlshash":"5c2156196c061fbea36c2c08895164c146fa8b49020ad29dfcbe2d393254cca895eff6","first_seen":"2026-04-21T18:15:43.948388Z","last_seen":"2026-04-21T18:21:15.507153Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1306,"timings":{"blocked":524,"dns":0,"connect":256,"send":0,"wait":257,"receive":0,"ssl":266},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getMt5Amount?coin=xpt","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xpt HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:17 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6d89745abaacd493cdcb9ce5d61f914d","sha1":"732f7197b3a033fc648cef64ac531f1a3296de17","sha256":"b4862e8c443c331e88749d2f7423059a5023f6c3ba038f9715cebd71ffb3919d","sha512":"0f0c33ad74bd1e1bb82578bddf20571839821a983113722f6fe405176ec7abc4c830e2e1b4b46b5a0e63a2c68ed2783c18ae25b6d8fd3c065f8d6828e5eb930f","ssdeep":"","tlshash":"5e9002591c588282a88740a59506230500243161262892484c59512580883622040898","first_seen":"2026-04-21T18:15:43.963552Z","last_seen":"2026-04-21T18:15:43.963552Z","times_seen":1,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/TopNavBar-b4265c28.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/TopNavBar-b4265c28.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 5751\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-1677\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5751,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (5706)","md5":"c9c63fe838c5f68e5fd185a594750f39","sha1":"d4e7ca12bf20371b9e4664729f93913842356c39","sha256":"8f8ab9e186d4274eabc3fc9daa177b0a6486a3a4c18b61041c8a29b8fca55474","sha512":"b9cbe6f10c0e20942a7e6a7958d0de955c34e671d7ac1e83a91d5cef6fbffb48767b4eb0e32da8bcf269ce08ea077b3fbd8e3afe70bb8168841390719842f9cc","ssdeep":"96:2elCQedwUmOPCyyutuHTdTWoOj0dGWwic44tn/nMSF9NsNzmJ/e72UxkT8h:FTewUmOPCDUu5OqHkm29N4iJ/xUxG8h","tlshash":"60c1c415be188a3c401bb04d577934a4b76e27aab0444cc0c7fe04bc25a6e68f93fbc5","first_seen":"2026-04-21T18:15:43.921826Z","last_seen":"2026-04-21T18:21:15.495699Z","times_seen":2,"resource_available":true,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/platform-logo-81dca338.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/platform-logo-81dca338.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 287299\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-46243\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":287299,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"8fc50e7928e18217e83c11ad7c8d5128","sha1":"ba3b1d59eb028184229a6da207fb1c07a73465db","sha256":"81dca33838c339f1947f47f5cde089912c389a02927a42c4dfba11e78385e606","sha512":"d39feced55fd5fd08ca24d665e66dda9e5a7facb23e46fa4c2e6042719112b659d9612c0f1162da471f8054de1edf2295ef3b9aee14cafbb32ff1a170ec81bfc","ssdeep":"6144:QYXlJvO6A2/5TipztxpnkHif84Fon7XrqyY5z9buHIcnxMnWw5DycwTz4QnWH0Et:QKlJvOiBipfDk4Fonb2yYN9b3ux4RfYA","tlshash":"bf54124afac1cbb7d0146635f32b78c9460128ef694cbb066da187194797f653cf1d88","first_seen":"2026-04-21T18:15:43.895751Z","last_seen":"2026-04-27T17:21:22.506845Z","times_seen":4,"resource_available":false,"data":null}},"time_used":524,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":254,"receive":270,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/oil-f8e670ba.svg","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/oil-f8e670ba.svg HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 989\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-3dd\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":989,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fc90914cf0511dd785fad18c03305f5c","sha1":"5e532a6948f914c5c881d3fb481992422809cdaa","sha256":"f8e670ba4d67c9379f84c264c7e4398e08d0f81661269aac810e0c12890cbb6e","sha512":"49aec3456b72b3d0e44e5c412a6bbfa91a180bcfa5fe1a30823f36936132ae0eef867e13fa5c5d1df5bc003efbd5e9054535c08fc82ffd72ca7803fcc3e2f055","ssdeep":"","tlshash":"91117879729d183ae118830de6556479325fe0d38b5d9628b4803e390e681fb2c7b2e9","first_seen":"2026-04-21T18:15:43.965199Z","last_seen":"2026-04-27T17:21:22.610624Z","times_seen":4,"resource_available":false,"data":null}},"time_used":784,"timings":{"blocked":512,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/c006b3cf-c093-4032-ae70-f9b793995318-5657e2b0.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/c006b3cf-c093-4032-ae70-f9b793995318-5657e2b0.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/png\r\nContent-Length: 172619\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-2a24b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":172619,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 360 x 360, 8-bit/color RGBA, non-interlaced","md5":"1c880717ed796c76ae1dde0711e2d127","sha1":"b8ecfa11ad69ae15d3cfaa41079042e7c7a2b7ec","sha256":"5657e2b04814ce859800138a8e425c290b994a4fb226f45aa22ca88c24fa9499","sha512":"b336d22c8bbe439a7e0ead45a18de188b8c9251cfcdd714731a5422b706881418c11468e53e0eb02825fb9ef40586bf66c6a79726421ad474248daa149daf905","ssdeep":"3072:GJnKvA7B+SgMWVWWC67GqG6bwlikkPgVmU4L6wO61rNUp+ypCrxs3eTMsLnj:8nKIt+SgDC6SgMagMU4LeqNAms3eTXj","tlshash":"b7f323698a4d1efb0c5ce5ea350d11f006a62a60aff7d4ff6016b84c654b5b08f26f4b","first_seen":"2026-04-21T18:15:43.966882Z","last_seen":"2026-04-27T17:21:22.58224Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1331,"timings":{"blocked":776,"dns":0,"connect":0,"send":0,"wait":274,"receive":281,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/resource/fonts/Arial.ttf","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /resource/fonts/Arial.ttf HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nymexgrouq.com/assets/index-cb515cf0.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 1047012\r\nLast-Modified: Tue, 21 Apr 2026 07:35:54 GMT\r\nConnection: keep-alive\r\nETag: \"69e728da-ff9e4\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1047012,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 25 tables, 1st \"DSIG\", 58 names, Unicode, � 2017 The Monotype Corporation. All Rights Reserved. ","md5":"ffe66dbfc4b07f36ef38dd621ad2c7cc","sha1":"e032b102cfc37c3226d17e1b462edea5fbf8fe1c","sha256":"c1216a01b3cc4e94df72577a6f618154058a1d8999ed58fa31ab7e54c7e4be4b","sha512":"3c7952b71c8117938c5284efca0e0b3e8c20d7b84c74a4890f76a72af3b26295786b0f7c33d9b6c980527b4c4c8dad628d1f5e7e5f202d11076367f082349bb3","ssdeep":"24576:NoQIQRjo/Y7wjgTmKJ4WxA7EAD4OBfDamXKE6AMra:NHIQJo/Y7wjgTm0PxAwJHE6hG","tlshash":"f125be0bf3929f0fe3902b38c9a5d761939b76189b2743b73d8c5858ecc85a45e487d2","first_seen":"2023-07-29T15:16:45Z","last_seen":"2026-06-08T05:16:21.720932Z","times_seen":1329,"resource_available":false,"data":null}},"time_used":1488,"timings":{"blocked":160,"dns":0,"connect":0,"send":0,"wait":257,"receive":1071,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/PCFooter-54af2711.css","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/PCFooter-54af2711.css HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: text/css\r\nContent-Length: 2437\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-985\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2437,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2436)","md5":"6484b26c430085086687b6fadd4ddd02","sha1":"f6fc8473edb3db0cf1f2e6e515ce2c2891945b61","sha256":"54af27113845854b3414e852459433c57bb5e8153a4e7e47e5e9990eebc9786d","sha512":"ae9f586cf3007bc0dccdf31e2164e4e8c558ce7adedacd1e98d5518d494fd8b1e85cd39702d32b7f7692e8bf4178433491df44196c36eeb3aef245fad3804b72","ssdeep":"","tlshash":"fe41ec3d7d090518603a8d997daf878de078ea51c6bec1f2731f1611bc4b1da3c22509","first_seen":"2026-04-21T18:15:43.969441Z","last_seen":"2026-04-27T17:21:22.502147Z","times_seen":4,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/PCFooter-d63c3c72.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/PCFooter-d63c3c72.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 2520\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-9d8\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2520,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (2516)","md5":"00384d560d090b8c38789a2f976eb903","sha1":"a99417d08ae1718e092d8f469cbbc9954f8e9bd7","sha256":"ae209aea5e33c0553080984cf0b6bb15f77483d87714e033d84c0997a4754448","sha512":"d49345c594f911a294a513acc55e46486bde167256fc1694684b1912906181256b102de366d064009e37cf91e0a1e57def991201edc6314deadd2193c61420b3","ssdeep":"","tlshash":"b651fd287c07da7df4b35978602e05842026a955a0da3e76f3fc008cb31bdb57463f2a","first_seen":"2026-04-21T18:15:43.971121Z","last_seen":"2026-04-21T18:21:15.517574Z","times_seen":2,"resource_available":true,"data":null}},"time_used":766,"timings":{"blocked":250,"dns":0,"connect":267,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/index-da49d494.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/index-da49d494.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 127085\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-1f06d\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":127085,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65280), with no line terminators","md5":"60a541df65c6e33d3928055017183ea0","sha1":"7d1030c47e081285b42c5d327adaf0f196338518","sha256":"edb8965ccd732e61a6b0f12ec7dbd70c769ef5d735a2d8a6d2479b44cdd4a71b","sha512":"81cfba3110c37090163a24c9c2c16b415cd04cb047e3cc05d4b303689e0f8e88cb3479ba5d4040a4632c4032919e83fba0edabeaa55b882993bf022a8ba9d73c","ssdeep":"1536:eS0yJ0rPVjT8Ya6egpsqgow4lqPcs/t0B0+H0KoFYtemf:eSUVeow4AyI+eK","tlshash":"64c36e81b0071fbf5aff0998a82a054011985fc74148c88b7abe6d733beacd56257fb5","first_seen":"2026-04-21T18:15:43.972826Z","last_seen":"2026-04-21T18:21:15.492993Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1352,"timings":{"blocked":250,"dns":0,"connect":0,"send":0,"wait":550,"receive":552,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/xau-53456443.svg","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/xau-53456443.svg HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 870\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-366\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":870,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"752e24c359dafff9592067f47633377b","sha1":"23b9f5122ee672a0ae88c041679f05dabd6b1824","sha256":"5345644310cde5ede48468cf40a1d406b19123bca6c62b19f13545fc452c7f2d","sha512":"a5d88719729d51ff2d81d757f9f21642bd6f2280acc49c88b150c2535c686f5dfe4ac964235b0e1452a5f461bcbb8c1bc361c37b300d35641e3edcb98633cae4","ssdeep":"","tlshash":"6411af1aa69c042ae1288319cb44b0bd270f90d293976a10b994362a087e0bb5dff6dc","first_seen":"2026-04-21T18:15:43.974526Z","last_seen":"2026-04-27T17:21:22.563989Z","times_seen":4,"resource_available":false,"data":null}},"time_used":522,"timings":{"blocked":250,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/xag-390cd6bb.svg","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/xag-390cd6bb.svg HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 710\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-2c6\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":710,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e3fad3e4ecb08cd0e6f15fca792abd48","sha1":"caa0687a24f9d7185dc82d09d55d2deae6b7ce93","sha256":"390cd6bbde8d28c0c7e066db3934b6999fa8359b5f7321b62f513dc0eacca665","sha512":"c6ec3bd149362f56c72791af3cf079e14c2ce41e4f254088a34514c5b2b3844546ff2221032beb10de0f72669d3d2cf3e386f9be951eeeccb7a20752383f2261","ssdeep":"","tlshash":"9a017022e14c4a3ed12cc70edb17707e321ec0c5e58ad628b1c15e1b9c914f7659f394","first_seen":"2026-04-21T18:15:43.976074Z","last_seen":"2026-04-27T17:21:22.559941Z","times_seen":4,"resource_available":false,"data":null}},"time_used":732,"timings":{"blocked":478,"dns":0,"connect":0,"send":0,"wait":253,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/43e0e7dc-e9bc-4234-890d-0c3ec76de9fb-78fcbce6.png","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/43e0e7dc-e9bc-4234-890d-0c3ec76de9fb-78fcbce6.png HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 85764\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-14f04\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85764,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 241 x 248, 8-bit/color RGBA, non-interlaced","md5":"e84d83d110786e041cc157a9bf266bf6","sha1":"bad69d37a3c5753eb9b644dcff508b9f5d12ab63","sha256":"78fcbce60c817af5254702e3897ead60c5c8bd1b5ad51cee1367133260dd1d06","sha512":"e4945db6a7b4cb731d5edafc58996aae0c539a6480e02f4010684a902a5cb0d4b19dce6d158ad37ff8ccf44524d985618fac3343726c039253c7e07da88bc8f3","ssdeep":"1536:3szH8yU7pVlrxwBC/tYoR9RL2jvQOyBZ8BdxOu9Ajb/+jZ9ohdMtdjHN:8zH8yERMoR9RSj4z87xOIYD+Z9oh2djt","tlshash":"018302dfe31872ec1a7c30fc79801e98c56e9d0be9e1a321481b8d1c774ae9b1799749","first_seen":"2026-04-21T18:15:43.977761Z","last_seen":"2026-04-27T17:21:22.586524Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1347,"timings":{"blocked":1066,"dns":0,"connect":0,"send":0,"wait":274,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/coinLogo-b682002f.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/coinLogo-b682002f.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 30414\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-76ce\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30414,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (30413)","md5":"bf763cc635592902af856eb7f651dfe0","sha1":"35be1ffabb30e80aa2a238f5bf7df0bb174f2e9d","sha256":"06cc96bfe6c16a7d392be1f27694f5d87dce40108ac16461c9b5e78674e89f53","sha512":"1aea8f9881b0cffbf2fca075b9583f7065608588d9d8a2c8e1dcb6b0e4600044e53f0da1677fb55094d614cd853ab8601cc645e7c0609fe630773f6ad36f33a3","ssdeep":"384:hX/H8xoXRmwewwPwoCyn+QfIvbyHk6kzvhnYJMupDFozamBQW6+6d6MBIrquVeOc:PSIO++L6H6+6d6/+OlKax8KSk2bF","tlshash":"85d2fe696a88fc9410c66991dc0b8186fc4c5e4be6fcf4babb28dd8973009452356f7f","first_seen":"2026-04-21T18:15:43.904149Z","last_seen":"2026-06-07T18:30:52.945208Z","times_seen":5,"resource_available":true,"data":null}},"time_used":769,"timings":{"blocked":253,"dns":0,"connect":0,"send":0,"wait":514,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-21T18:15:12.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:13 GMT\r\nContent-Type: text/html\r\nContent-Length: 5366\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-14f6\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5366,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1076), with CRLF, LF line terminators","md5":"ca49cb614c12196964c97e32407997c5","sha1":"fe463f8a8a0cf1ee4c470ccdc82497deb3d0c36c","sha256":"57937cbaf25f57fd97a0556af6609c5555793a812513c8c5cf373444985e9abc","sha512":"b9a09ec0e1c9c6831ffdae13e00caed8946fce19403266f37b300f0227d2a8f978211c763d4f68e8b417aedc75fb93944a8f55f57b61f05b251c2988858dc079","ssdeep":"96:+r82r8f53u0PIbI6Cb/k3r6TCZydHRH/g52mUsGKZTGwuB1niHTiH+H/2:+FQzPI6uZCxf42nf3wuB1nizief2","tlshash":"b2b162b75861982a1375122aaee7f00cdf615153c51d4d54b0dc80ee9ff2fd488c7a76","first_seen":"2026-04-21T18:15:43.979491Z","last_seen":"2026-04-21T18:21:15.512497Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1483,"timings":{"blocked":607,"dns":56,"connect":269,"send":0,"wait":269,"receive":0,"ssl":278},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/index-da49d494.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:13.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/index-da49d494.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:13 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 127085\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-1f06d\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":127085,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65280), with no line terminators","md5":"60a541df65c6e33d3928055017183ea0","sha1":"7d1030c47e081285b42c5d327adaf0f196338518","sha256":"edb8965ccd732e61a6b0f12ec7dbd70c769ef5d735a2d8a6d2479b44cdd4a71b","sha512":"81cfba3110c37090163a24c9c2c16b415cd04cb047e3cc05d4b303689e0f8e88cb3479ba5d4040a4632c4032919e83fba0edabeaa55b882993bf022a8ba9d73c","ssdeep":"1536:eS0yJ0rPVjT8Ya6egpsqgow4lqPcs/t0B0+H0KoFYtemf:eSUVeow4AyI+eK","tlshash":"64c36e81b0071fbf5aff0998a82a054011985fc74148c88b7abe6d733beacd56257fb5","first_seen":"2026-04-21T18:15:43.972826Z","last_seen":"2026-04-21T18:21:15.492993Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1012,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":753,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/vendor-bed6b295.css","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:13.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/vendor-bed6b295.css HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:14 GMT\r\nContent-Type: text/css\r\nContent-Length: 92567\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-16997\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":92567,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65022), with no line terminators","md5":"73d5ada7e6c7bab90973cf41531fc253","sha1":"225582762a695b4a7f5c894089924753e9f144d7","sha256":"bed6b2959cd5057c70606c6e8dfaca18a993f60f43946261e893fb3cd400c3c0","sha512":"85a3e0b4f2cfda4d32163a957a5ddd4674ec55144495a579339588ad5d65bad97251fe046b2c4dc172d10c45d7646915b74ba21bd2fb5b66392649a4ef8e224d","ssdeep":"1536:ZTIyNBi3MFYaQj73rx3WqyrtpqoSWEDZEnX7X:ZdN0rxmNH9yDWrX","tlshash":"fd93c5a5e9c4a1fc6f26f6659b4766d8f13cf661cc01daa0f109512d0fc7bf50223a2a","first_seen":"2025-11-02T12:35:02.119547Z","last_seen":"2026-06-07T18:30:52.94336Z","times_seen":55,"resource_available":false,"data":null}},"time_used":1080,"timings":{"blocked":268,"dns":0,"connect":0,"send":0,"wait":271,"receive":541,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/vendor-538af159.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:14.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/vendor-538af159.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:14 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 885177\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-d81b9\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":885177,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"0c05fdc039acc76a1385a834be99fced","sha1":"fb57fc2417b74e32d9eca88d008474a5a824ee31","sha256":"2035aa961f3196041800f21ae7f0a4a8c48198f2d1b636021b20c2f82cc5f4e4","sha512":"bf13add5a677e1bd5c30140f299fdedd9bfd97bbafbcd515b82a41d332911a396d78217fb1d52a0f22244b70df1ddf0fd04080a07fb4d7daa22cb42a340d6b5a","ssdeep":"12288:JpmBfYZKJ431W46L9xHmFpzvB/Aws7M38wW0/ui9iholsLya2ifp:JpmBfoFWzLSpzvBTz8wW0/u8a22","tlshash":"181539c97292f06147ab20e240bb1006f3396e59744e8494f16d98eb7d7ad89d2b7f3c","first_seen":"2026-04-21T18:15:43.982803Z","last_seen":"2026-04-27T17:21:22.536622Z","times_seen":4,"resource_available":true,"data":null}},"time_used":1079,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":254,"receive":825,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/api/common/getMt5Amount?coin=xau","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"POST /api/common/getMt5Amount?coin=xau HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nOrigin: https://nymexgrouq.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 \r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:17 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nAccess-Control-Allow-Origin: https://nymexgrouq.com\r\nAccess-Control-Allow-Credentials: true\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"15b2135dc91f089f4f48d00fb34aba62","sha1":"b21c722a5731248baf03e553dc72ea12f5d7a287","sha256":"db64903bfa81bee7a597a48963fc30e44bbb147af74641b4bcfb235069c6d93c","sha512":"ac9870db895a10849beb9a975d1ac6e24fde31cdbd7117d0b08af9f675d79d9c9063b795cf30266d93bdaae51dceccbf3504e0a876094da348c5c3e915cb6722","ssdeep":"","tlshash":"129002551c188242a88700a69506221501243160262492484d5a5139c0885622041898","first_seen":"2026-04-21T18:15:43.984714Z","last_seen":"2026-04-21T18:15:43.984714Z","times_seen":1,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/PCFooter-d63c3c72.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:18.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/PCFooter-d63c3c72.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:18 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 2520\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-9d8\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2520,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (2516)","md5":"00384d560d090b8c38789a2f976eb903","sha1":"a99417d08ae1718e092d8f469cbbc9954f8e9bd7","sha256":"ae209aea5e33c0553080984cf0b6bb15f77483d87714e033d84c0997a4754448","sha512":"d49345c594f911a294a513acc55e46486bde167256fc1694684b1912906181256b102de366d064009e37cf91e0a1e57def991201edc6314deadd2193c61420b3","ssdeep":"","tlshash":"b651fd287c07da7df4b35978602e05842026a955a0da3e76f3fc008cb31bdb57463f2a","first_seen":"2026-04-21T18:15:43.971121Z","last_seen":"2026-04-21T18:21:15.517574Z","times_seen":2,"resource_available":true,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/xpt-a9ae4e92.svg","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:19.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/xpt-a9ae4e92.svg HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:19 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 721\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-2d1\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":721,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7bca866f6b827b24ea7d0064a03f80a1","sha1":"e4d351e4efba1cecba22222f5c762fc132ce4951","sha256":"a9ae4e9257c933cbbef596c43d891517a785579b5a2af1cd34bb297af092f110","sha512":"bbd0365c8ce0a53f4686a57ed1f33506eee8040bd604cd0439f082ea4d4c9202d94c374cc1b5fc0241639216bb0f9a4ba060f94241a76ad75439cc07d7c00219","ssdeep":"","tlshash":"65019c16e14c4a29d02cc70ddb17707e710fc0d5d69ad734b5c09e07ac854e72a5b3d4","first_seen":"2026-04-21T18:15:43.986385Z","last_seen":"2026-04-27T17:21:22.669422Z","times_seen":4,"resource_available":false,"data":null}},"time_used":750,"timings":{"blocked":493,"dns":0,"connect":0,"send":0,"wait":257,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/en-28a8004a.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:17.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/en-28a8004a.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:17 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 97714\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-17db2\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":97714,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (65512), with no line terminators","md5":"5c26ffcd1dfffa4dfd983cc9d1143bca","sha1":"942afe3e18f17f97f535c9862b8b81bb7d7096c8","sha256":"4d53a2aedd4dfa2f433dda3eaf46a9299bf9d485ac3442d8ce12f6924d3cce86","sha512":"e3835bb1a932eb96fd79c95bbc6c410d3fd5c28b52c7ba8f6284c8f7925ddfafefd90a0538fef2a5fc0357b43d0016fdae66bd0f196bdb8b7250490ae3553058","ssdeep":"1536:N1HDSoDSs9JopoTuQRxMu1FzP1Y5+LN0xhttezrnaB:SoD9mWuIxMu1F1Y5vtWaB","tlshash":"02a3e84d6d15cd9e28e3172670ed1bd325f8c1c6c259881e4aeccdbc73e2a66e29721c","first_seen":"2026-04-21T18:15:43.988176Z","last_seen":"2026-04-27T17:21:22.652327Z","times_seen":4,"resource_available":true,"data":null}},"time_used":1021,"timings":{"blocked":247,"dns":0,"connect":0,"send":0,"wait":512,"receive":262,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nymexgrouq.com/assets/vendor-538af159.js","fqdn":"nymexgrouq.com","domain":"nymexgrouq.com","tld":"com"},"ip":{"addr":"154.86.20.24","port":443,"asn":140227,"as":"Hong Kong Communications International Co., Limited","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://nymexgrouq.com/","date":"2026-04-21T18:15:16.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nymexgrouq.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 08 Apr 2026 01:48:43 GMT","end":"Tue, 07 Jul 2026 01:48:42 GMT"},"fingerprint":{"sha1":"0B:F1:9A:6E:27:FF:C9:B8:17:D9:48:E0:6F:B9:D6:AB:60:DD:32:1D","sha256":"37:0E:C4:C9:AA:AE:CA:CA:B3:33:C7:81:E9:F9:3D:D8:87:AE:46:80:22:65:5D:DF:CC:E1:95:00:21:93:A1:4D"}}},"request":{"raw":"GET /assets/vendor-538af159.js HTTP/1.1\r\nHost: nymexgrouq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0\r\nDate: Tue, 21 Apr 2026 18:15:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 885177\r\nLast-Modified: Tue, 21 Apr 2026 07:36:03 GMT\r\nConnection: keep-alive\r\nETag: \"69e728e3-d81b9\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":885177,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"0c05fdc039acc76a1385a834be99fced","sha1":"fb57fc2417b74e32d9eca88d008474a5a824ee31","sha256":"2035aa961f3196041800f21ae7f0a4a8c48198f2d1b636021b20c2f82cc5f4e4","sha512":"bf13add5a677e1bd5c30140f299fdedd9bfd97bbafbcd515b82a41d332911a396d78217fb1d52a0f22244b70df1ddf0fd04080a07fb4d7daa22cb42a340d6b5a","ssdeep":"12288:JpmBfYZKJ431W46L9xHmFpzvB/Aws7M38wW0/ui9iholsLya2ifp:JpmBfoFWzLSpzvBTz8wW0/u8a22","tlshash":"181539c97292f06147ab20e240bb1006f3396e59744e8494f16d98eb7d7ad89d2b7f3c","first_seen":"2026-04-21T18:15:43.982803Z","last_seen":"2026-04-27T17:21:22.536622Z","times_seen":4,"resource_available":true,"data":null}},"time_used":2685,"timings":{"blocked":546,"dns":0,"connect":257,"send":0,"wait":515,"receive":1079,"ssl":286},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"nymexgrouq.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}