Report - telegtgrf.wiki/

Report Overview

Visited public
2025-06-29 10:50:58
Tags
Submit Tags
URL
telegtgrf.wiki/
Finishing URL
telegtgrf.wiki/
IP / ASN
172.67.182.147
#13335 CLOUDFLARENET
Title
Telegram

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
telegtgrf.wiki	unknown	2025-04-24	2025-04-29	2025-05-29	11 kB	1.4 MB	172.67.182.147

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed
2025-06-29	medium	telegtgrf.wiki	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	telegtgrf.wiki/compatTest.js	ScriptElement	2.5 kB	2024-06-30	2025-07-13
Pretty URL telegtgrf.wiki/compatTest.js IP 172.67.182.147 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-30 22:36 Last Seen2025-07-13 17:18 Times Seen11326 Hash da7800ea928a021f2539ab41e6f2323e 0141da1dc85ca8f34212f3dde2fac9bf61f5adb7 15c24ec2b4cb94f24e66750f09e7071e5659e20a5ed926f69f565e20a81027cf Loading...

	telegtgrf.wiki/main.273933e9899651cf5733.js	ScriptElement	297 kB	2025-04-24	2025-07-12
Pretty URL telegtgrf.wiki/main.273933e9899651cf5733.js IP 172.67.182.147 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-24 12:12 Last Seen2025-07-12 11:50 Times Seen1796 Hash c7e7e2c2fb00710aa249a9b17b502126 8ca1391610f4c66158b3b03390edbf0d5c671ed4 391902e156b3b7c18bfa3c21fbf4b405d1a2113cd48bd3f75fc0274024f76278 Loading...

	telegtgrf.wiki/8673.1b6dd8d303b0535cc1f8.js	ScriptElement	11 kB	2024-12-10	2025-07-13
Pretty URL telegtgrf.wiki/8673.1b6dd8d303b0535cc1f8.js IP 172.67.182.147 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-10 16:27 Last Seen2025-07-13 17:18 Times Seen10343 Hash ea8d5208dada45e8d0844877a7c93db6 45d98fbe3dae09a988cccd836d39016c5100f313 25f447387cefb643c04e0aa816e21edf562ebe9b7e3f7b808bdb179154fc17b8 Loading...

HTTP Transactions (25)

URL IP Response Size

GET telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js

172.67.182.147

200 OK

66 kB

URL GET
telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
66 kB (65591 bytes)
Hash
4441938ee433d3657c20d454d352a336
dd67121d7fda7c17be196f60c72dfa06bcb5bc6f
659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RyY%2BLKTlBcFMqnBMk3%2BGtn0K73Hie6zMjhz10g6DbUYXJXmMIocyJkWAvRpHg%2B4oZ6lUKuGETOOzhdOKqdCiLF1vDpnqLnAbU%2BOg3AdpvhR8FqviEeSn%2FZ34VWmD0slK%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-10037"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd568a220b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=669&min_rtt=0&rtt_var=105&sent=361&recv=206&lost=0&retrans=0&sent_bytes=275065&recv_bytes=15606&delivery_rate=9224312&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=18464&unsent_bytes=0&cid=c4c56940647405db&ts=6740&inflight_dur=138&x=44"

GET telegtgrf.wiki/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2

172.67.182.147

200 OK

11 kB

URL GET
telegtgrf.wiki/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11016, version 1.0
Size
11 kB (11016 bytes)
Hash
15fa3062f8929bd3b05fdca5259db412
6ff06a34f68ad0324ddec1bbe4d453c959178b36
5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/main.f605f09e93c9b9c99e2b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:39 GMT
content-type: font/woff2
content-length: 11016
vary: Accept-Encoding
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
etag: "674840af-2b08"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd38c9110b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHjsjVALIMAEnbmSUrhojkL4CVhiv4vKesAOdgMJU5EkgCbz75gnEXydiiAZkrBCebcCTctQ78mNWaGnbwSqLpfecZk9MnmsvrId66IlArUkbJwggJV8cJFm0e9zvUM55A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4314&min_rtt=983&rtt_var=2793&sent=102&recv=117&lost=0&retrans=0&sent_bytes=8571&recv_bytes=7660&delivery_rate=448254&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=c4c56940647405db&ts=2072&inflight_dur=42&x=44"

GET telegtgrf.wiki/notification.mp3

172.67.182.147

206 Partial Content

11 kB

URL GET
telegtgrf.wiki/notification.mp3
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo
Size
11 kB (10880 bytes)
Hash
eba09b6a457792c52fc610b5f9f974b3
95e6e0f7648e28ea21bc434054ea59aba3a35aea
86093551f5a7f68c7dcac947bd8dc54c6a79dd9a5d83f7e40116d640eb28c7d6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /notification.mp3 HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
date: Sun, 29 Jun 2025 10:50:39 GMT
content-type: audio/mpeg
content-length: 10880
vary: Accept-Encoding
last-modified: Wed, 23 Apr 2025 14:21:35 GMT
etag: "6808f76f-2a80"
accept-ranges: bytes
content-range: bytes 0-10879/10880
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd3979180b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o38nnoqsMf3S5u8B89TkHLF9IBYvPCQnbbdFOEnjLUy6NYKMbqjTcYimO7z54EsqSFh6%2FsNJ7OFdgETdjYIG%2B33omTWquFaWT2am5DsxE97yn9KsF7ze8jMoZCsijC6ZDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2927&min_rtt=0&rtt_var=3258&sent=115&recv=120&lost=0&retrans=0&sent_bytes=21953&recv_bytes=7792&delivery_rate=1257869&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=c4c56940647405db&ts=2104&inflight_dur=51&x=44"

GET telegtgrf.wiki/2976.52a838f262563a2b360c.js

172.67.182.147

200 OK

14 kB

URL GET
telegtgrf.wiki/2976.52a838f262563a2b360c.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (14402)
Size
14 kB (14456 bytes)
Hash
269d68da7c0082d636563d27788d8bc7
f5d9fcdcfa7a0dbf29fa65e65280a8b5815cd9dd
28dad9b06ea2a527d26aa8e8f5164b53cae7dc0a8348ca009cf0a16767a9b5dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2976.52a838f262563a2b360c.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GxSC0tEV20i1T0q%2FAJjEChtSWxLt9gVh99UXTfOu954Osa9140VdKmkEAQDvKfpJDY9X18aacnYBYHjEIpLsKwOvW1QtXOEqJNTzkZRtr7ZuEdtVD0EEjMdQjSvDWJnP5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Wed, 23 Apr 2025 14:21:34 GMT
vary: Accept-Encoding
etag: W/"6808f76e-3878"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd4e39d10b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1735&min_rtt=0&rtt_var=2042&sent=140&recv=134&lost=0&retrans=0&sent_bytes=45044&recv_bytes=9504&delivery_rate=1714408&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=14815&unsent_bytes=0&cid=c4c56940647405db&ts=5238&inflight_dur=82&x=44"

GET telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js

172.67.182.147

200 OK

22 kB

URL GET
telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (21340)
Size
22 kB (21477 bytes)
Hash
a0980d43cea486530c30f9f5e1c1b5e4
deec93f70f8b813b479137075afa6a0a3a25b8bd
4b5eeb1400e5118a1aff286d9a6cf893bd7c08fc8247c62116238ea587890e9e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /7784.df07a876b22e3b2a83e9.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dyFtRe0SLzdeRCGfnG3pVcVq8qZ8QT72IESLMAGHUYuxlvqmjfViH8dFlKQATVs%2BpaYf83M5EgaemYyKwpvyXwPHofIHlWDWfv4OQp7Tu0TCKVO5dp%2FwynCgR6F24W1MoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-53e5"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd4fb9e00b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=641&min_rtt=0&rtt_var=296&sent=197&recv=158&lost=0&retrans=0&sent_bytes=100405&recv_bytes=11514&delivery_rate=5309230&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=17300&unsent_bytes=0&cid=c4c56940647405db&ts=5690&inflight_dur=101&x=44"

GET telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js

172.67.182.147

200 OK

140 kB

URL GET
telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
140 kB (140233 bytes)
Hash
fdd268f67cf5c4f79320041e3d156e98
d66194ee702467dd19130dee59bd824990f5bc71
36e5ef6880e869bdf9ef2119932dbac7330513aefc50839cc2a6fdde7b519967

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5905.db5d2749ecb90aaf2752.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KLPdFVSJeLGZmTs5TVlOWPowSnJ0Mm%2BqJMQUfvbkaJYD4uOPh6Ju3IBQpHzev7el9JKTjJ%2FL7W%2BOtKtJ0TJ1N8RiQMMaZtck3iNpidgwXBO3bA3jKa6JWHOTOU2psEPPJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-223c9"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd5289f80b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=798&min_rtt=0&rtt_var=507&sent=209&recv=164&lost=0&retrans=0&sent_bytes=109663&recv_bytes=12732&delivery_rate=5309230&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=17300&unsent_bytes=0&cid=c4c56940647405db&ts=6111&inflight_dur=109&x=44"

GET telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js

172.67.182.147

200 OK

140 kB

URL GET
telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
140 kB (140233 bytes)
Hash
fdd268f67cf5c4f79320041e3d156e98
d66194ee702467dd19130dee59bd824990f5bc71
36e5ef6880e869bdf9ef2119932dbac7330513aefc50839cc2a6fdde7b519967

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5905.db5d2749ecb90aaf2752.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tlzS3PRIJUktb1MuTCr32ljFUGJRRk20HnS76srdtheVK%2BGBJlsaT0BDuamFcuMRGUfXZI2ESGy85fMXzswY5sfjPtKFa31EYmW63Z%2BqFgS5Ukv5NOxrLs3GT1II0xkqkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-223c9"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd5289f90b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=815&min_rtt=0&rtt_var=298&sent=250&recv=171&lost=0&retrans=0&sent_bytes=154388&recv_bytes=13052&delivery_rate=5309230&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=25688&unsent_bytes=0&cid=c4c56940647405db&ts=6121&inflight_dur=117&x=44"

GET telegtgrf.wiki/main.273933e9899651cf5733.js

172.67.182.147

200 OK

297 kB

URL GET
telegtgrf.wiki/main.273933e9899651cf5733.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
297 kB (296596 bytes)
Hash
c7e7e2c2fb00710aa249a9b17b502126
8ca1391610f4c66158b3b03390edbf0d5c671ed4
391902e156b3b7c18bfa3c21fbf4b405d1a2113cd48bd3f75fc0274024f76278

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /main.273933e9899651cf5733.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 29 Jun 2025 10:50:38 GMT
content-type: application/javascript
server: cloudflare
last-modified: Wed, 23 Apr 2025 14:21:34 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"6808f76e-48694"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QezFWYkN3dQKbtSwFpoGgPHRbitjX82epgxkyRoteQX%2BtWP66DSwbHQxkZLsdhtzDpWrEYHhpiY7A%2Fq7WPAOPLJMgYC%2B%2BDRJ6N%2Fk7A%3D%3D"}]}
cf-ray: 9574dd313c9756bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET telegtgrf.wiki/main.f605f09e93c9b9c99e2b.css

172.67.182.147

200 OK

114 kB

URL GET
telegtgrf.wiki/main.f605f09e93c9b9c99e2b.css
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
ASCII text, with very long lines (11396)
Size
114 kB (113528 bytes)
Hash
3790619482279ecca6795f867b727f1d
df3a6ff201408fa0f7b05e554673429950177172
fd6d36c29954419dd38530e20cec4ecff0b687ccc2434b44036ef1df24371eaf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /main.f605f09e93c9b9c99e2b.css HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 29 Jun 2025 10:50:38 GMT
content-type: text/css
server: cloudflare
last-modified: Wed, 23 Apr 2025 14:21:34 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"6808f76e-1bb78"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=RCdrvtMF4bsiZwmfwSTuxUCjiMRrFl%2BqdZe7wEEOVTjKtohwvyL5HbfBY6A3kezDgho5TQCv7lMxdUuYQfznzUpvSR6VO6zs9bYeog%3D%3D"}]}
cf-ray: 9574dd313c9b56bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET telegtgrf.wiki/8673.1b6dd8d303b0535cc1f8.js

172.67.182.147

200 OK

11 kB

URL GET
telegtgrf.wiki/8673.1b6dd8d303b0535cc1f8.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (10642)
Size
11 kB (10696 bytes)
Hash
ea8d5208dada45e8d0844877a7c93db6
45d98fbe3dae09a988cccd836d39016c5100f313
25f447387cefb643c04e0aa816e21edf562ebe9b7e3f7b808bdb179154fc17b8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /8673.1b6dd8d303b0535cc1f8.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6cqW0eNN%2B8wcBAtXgcrro6gNTvQteKOalDhYSY6Wb6SrP8fHppbyDDlttVinnIcraPnh7k9w3P%2BTB4%2BPYVe%2FchvBwJ9q7PpFcCJuCZG8ii95yEqCgEsW9gZGjhCPnsW6dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-29c8"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd4b99c10b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2071&min_rtt=0&rtt_var=2589&sent=130&recv=128&lost=0&retrans=0&sent_bytes=37750&recv_bytes=8352&delivery_rate=1714408&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=14743&unsent_bytes=0&cid=c4c56940647405db&ts=5004&inflight_dur=79&x=44"

GET telegtgrf.wiki/2976.52a838f262563a2b360c.js

172.67.182.147

200 OK

14 kB

URL GET
telegtgrf.wiki/2976.52a838f262563a2b360c.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (14402)
Size
14 kB (14456 bytes)
Hash
269d68da7c0082d636563d27788d8bc7
f5d9fcdcfa7a0dbf29fa65e65280a8b5815cd9dd
28dad9b06ea2a527d26aa8e8f5164b53cae7dc0a8348ca009cf0a16767a9b5dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2976.52a838f262563a2b360c.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X7Dem7X95yjkbjak%2BH3QkqgefajDTEFIf7Y2jdQ9VASsirZb08U4nIMHYndcoRIMJ%2ByYSVXsOLA1UaKjGTg3uXXkuxUEmkaMkBILsGhUq%2BSl1w2bQlx6NKAxyuRmVKkHfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Wed, 23 Apr 2025 14:21:34 GMT
vary: Accept-Encoding
etag: W/"6808f76e-3878"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd4e49d30b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=977&min_rtt=0&rtt_var=1149&sent=154&recv=140&lost=0&retrans=0&sent_bytes=60093&recv_bytes=9770&delivery_rate=2452398&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=15611&unsent_bytes=0&cid=c4c56940647405db&ts=5246&inflight_dur=90&x=44"

GET telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js

172.67.182.147

200 OK

22 kB

URL GET
telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (21340)
Size
22 kB (21477 bytes)
Hash
a0980d43cea486530c30f9f5e1c1b5e4
deec93f70f8b813b479137075afa6a0a3a25b8bd
4b5eeb1400e5118a1aff286d9a6cf893bd7c08fc8247c62116238ea587890e9e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /7784.df07a876b22e3b2a83e9.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sDugxtPnlm%2F6q36U3ypgqeqAwUw8o63Nj2dc7x9FGtAwcdx0DUX2qWdKeFXtMEXG63ujyiQkGCXQME9AEfUi83z9t%2FdXrLLgdjPs3V2gUeaGY1ecxLd4DaA4OMzKM%2F6bRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-53e5"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd4fb9e10b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=600&min_rtt=0&rtt_var=488&sent=170&recv=151&lost=0&retrans=0&sent_bytes=72852&recv_bytes=11204&delivery_rate=4572167&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=15416&unsent_bytes=0&cid=c4c56940647405db&ts=5680&inflight_dur=95&x=44"

GET telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js

172.67.182.147

200 OK

140 kB

URL GET
telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
140 kB (140233 bytes)
Hash
fdd268f67cf5c4f79320041e3d156e98
d66194ee702467dd19130dee59bd824990f5bc71
36e5ef6880e869bdf9ef2119932dbac7330513aefc50839cc2a6fdde7b519967

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5905.db5d2749ecb90aaf2752.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HnQAg6LXxPbahmPosn%2FXEOygjJTpHBP1pNMakKqpkdbbPsw8cmHdSsqaFhp8RENwTNrSU3Dn2hhO90RI57NDFtqQDIQRFZcLc8muEPG%2F5BG9yN1fGcfPTQebkoQjD%2BAKyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-223c9"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd5289fb0b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=798&min_rtt=0&rtt_var=507&sent=223&recv=164&lost=0&retrans=0&sent_bytes=126180&recv_bytes=12732&delivery_rate=5309230&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=17300&unsent_bytes=0&cid=c4c56940647405db&ts=6112&inflight_dur=110&x=44"

GET telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js

172.67.182.147

200 OK

140 kB

URL GET
telegtgrf.wiki/5905.db5d2749ecb90aaf2752.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
140 kB (140233 bytes)
Hash
fdd268f67cf5c4f79320041e3d156e98
d66194ee702467dd19130dee59bd824990f5bc71
36e5ef6880e869bdf9ef2119932dbac7330513aefc50839cc2a6fdde7b519967

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5905.db5d2749ecb90aaf2752.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QYASyHLaPx3baLs2CyhEH3ZXBJgaEtFYEMfno0JG4nMf8mEqN4ie2OCXO2iL2FkW6jRtp9pNZokSftD2NuREjmkBSCusX1Un1esBY9qRmkUcC3cUOHr0f9xTRfl77XCtXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-223c9"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd5289fa0b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=798&min_rtt=0&rtt_var=507&sent=209&recv=164&lost=0&retrans=0&sent_bytes=109663&recv_bytes=12732&delivery_rate=5309230&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=17300&unsent_bytes=0&cid=c4c56940647405db&ts=6111&inflight_dur=109&x=44"

GET telegtgrf.wiki/compatTest.js

172.67.182.147

200 OK

2.5 kB

URL GET
telegtgrf.wiki/compatTest.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (413)
Size
2.5 kB (2544 bytes)
Hash
da7800ea928a021f2539ab41e6f2323e
0141da1dc85ca8f34212f3dde2fac9bf61f5adb7
15c24ec2b4cb94f24e66750f09e7071e5659e20a5ed926f69f565e20a81027cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /compatTest.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 29 Jun 2025 10:50:38 GMT
content-type: application/javascript
server: cloudflare
last-modified: Wed, 23 Apr 2025 14:21:35 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"6808f76f-9f0"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xg1dDZNUjihsc7QoDmZ2jZqxMzR%2FhEaH%2FF4jZp8iuWdR3s%2FiMkCQe6SU6UBKK6dmF%2BbXkSWh6qWpl1y%2FjsybVRa4FvxcRCGLDsykyQ%3D%3D"}]}
cf-ray: 9574dd315cb556bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET telegtgrf.wiki/2976.52a838f262563a2b360c.js

172.67.182.147

200 OK

14 kB

URL GET
telegtgrf.wiki/2976.52a838f262563a2b360c.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (14402)
Size
14 kB (14456 bytes)
Hash
269d68da7c0082d636563d27788d8bc7
f5d9fcdcfa7a0dbf29fa65e65280a8b5815cd9dd
28dad9b06ea2a527d26aa8e8f5164b53cae7dc0a8348ca009cf0a16767a9b5dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2976.52a838f262563a2b360c.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MCiA8q%2B3WBUHgk1wBhuzfKmpF9NQhc2jw97Xl5OHykgwguP5N3kBNxcMNJVtCLBvHCvrgvg2PZ6M858ibpnCP7gEWZscJMg77tldXx5ZXfMhbXOb4%2ByZY5x%2F%2FfOu0V6BWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Wed, 23 Apr 2025 14:21:34 GMT
vary: Accept-Encoding
etag: W/"6808f76e-3878"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd4e39d00b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1735&min_rtt=0&rtt_var=2042&sent=140&recv=134&lost=0&retrans=0&sent_bytes=45044&recv_bytes=9504&delivery_rate=1714408&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=14815&unsent_bytes=0&cid=c4c56940647405db&ts=5238&inflight_dur=82&x=44"

GET telegtgrf.wiki/2976.52a838f262563a2b360c.js

172.67.182.147

200 OK

14 kB

URL GET
telegtgrf.wiki/2976.52a838f262563a2b360c.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (14402)
Size
14 kB (14456 bytes)
Hash
269d68da7c0082d636563d27788d8bc7
f5d9fcdcfa7a0dbf29fa65e65280a8b5815cd9dd
28dad9b06ea2a527d26aa8e8f5164b53cae7dc0a8348ca009cf0a16767a9b5dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2976.52a838f262563a2b360c.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q4iwSelA9CSZBKjxYVPaiqXXMU7h3Js2y1Jimk3Tex3JYoOA8tR6zDhby4jQ8kgIKGQdlt%2BiOmIX%2Fy%2FwnBTGzcgsn%2BBFjujxASyFogSNrDfqbiebKxN71x%2B%2FZ5tZ7KCUjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Wed, 23 Apr 2025 14:21:34 GMT
vary: Accept-Encoding
etag: W/"6808f76e-3878"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd4e49d20b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1735&min_rtt=0&rtt_var=2042&sent=138&recv=134&lost=0&retrans=0&sent_bytes=42644&recv_bytes=9504&delivery_rate=1714408&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=14815&unsent_bytes=0&cid=c4c56940647405db&ts=5238&inflight_dur=82&x=44"

GET telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js

172.67.182.147

200 OK

22 kB

URL GET
telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (21340)
Size
22 kB (21477 bytes)
Hash
a0980d43cea486530c30f9f5e1c1b5e4
deec93f70f8b813b479137075afa6a0a3a25b8bd
4b5eeb1400e5118a1aff286d9a6cf893bd7c08fc8247c62116238ea587890e9e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /7784.df07a876b22e3b2a83e9.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FmWkd4R7o8lEzDTOeLKE%2BIIIM7oBwOJvMZJqFGMBsY5SRnNp614x%2BZ%2FgXttcyhrg5ZJSjxw%2BTB3StrqG0nZNpvVGcBxKa54pHh8iG3HceSuRCb%2FQ2crOgUr9LXRfTjgpyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-53e5"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd4fa9de0b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=600&min_rtt=0&rtt_var=488&sent=176&recv=151&lost=0&retrans=0&sent_bytes=80052&recv_bytes=11204&delivery_rate=4572167&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=15416&unsent_bytes=0&cid=c4c56940647405db&ts=5680&inflight_dur=95&x=44"

GET telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js

172.67.182.147

200 OK

22 kB

URL GET
telegtgrf.wiki/7784.df07a876b22e3b2a83e9.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (21340)
Size
22 kB (21477 bytes)
Hash
a0980d43cea486530c30f9f5e1c1b5e4
deec93f70f8b813b479137075afa6a0a3a25b8bd
4b5eeb1400e5118a1aff286d9a6cf893bd7c08fc8247c62116238ea587890e9e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /7784.df07a876b22e3b2a83e9.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:42 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xq804czDDBQdjrtrqO9Fbt87Z9MakuSpMBoxCGssJ%2Bu0bhFbbXvaNNWEobk2HEWMbp6eepjr61P5%2B4oQ3%2BcI4iL1GguYivdRmp4xLSEWHiI12XJeEEgJaZc66PWjKOR7Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-53e5"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd4fa9df0b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=600&min_rtt=0&rtt_var=488&sent=184&recv=151&lost=0&retrans=0&sent_bytes=88268&recv_bytes=11204&delivery_rate=4572167&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=15416&unsent_bytes=0&cid=c4c56940647405db&ts=5683&inflight_dur=97&x=44"

GET telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js

172.67.182.147

200 OK

66 kB

URL GET
telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
66 kB (65591 bytes)
Hash
4441938ee433d3657c20d454d352a336
dd67121d7fda7c17be196f60c72dfa06bcb5bc6f
659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=49bq2kH227gKTJ50lb1StvRtfoL3PxuNHtPVtO8XflVeRyXcPBcqUeNAlAa2JXypYKZX6YC4%2BXPcCWJnsPxs8DlsSSuHW%2F5UxgddGyhhWQ%2F3xOWt8p2xdC2MmDq9eg67sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-10037"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd565a1e0b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=827&min_rtt=0&rtt_var=396&sent=382&recv=207&lost=0&retrans=0&sent_bytes=295063&recv_bytes=15651&delivery_rate=9224312&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=19674&unsent_bytes=0&cid=c4c56940647405db&ts=6745&inflight_dur=143&x=44"

GET telegtgrf.wiki/

172.67.182.147

200 OK

3.7 kB

URL User Request GET
telegtgrf.wiki/
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
HTML document, ASCII text, with very long lines (3689)
Size
3.7 kB (3704 bytes)
Hash
ec6cf095527225591961a7cf4ee6a57e
cfb42670aba21345e8803d52b5b22c2dd1059ba5
8ad58bd37a365929d756fa8b40edc4e124b1f70ad3ad5e35c1fc748180784d5e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 29 Jun 2025 10:50:37 GMT
content-type: text/html
content-encoding: br
last-modified: Wed, 23 Apr 2025 14:21:34 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BPC2mwL1KSklqN6LS%2Bz3K3adfcLQDevU9fQ8YoPhziRcMBV68ZCIka6TXexVZQxW946hiRMS5aiIlFlzSS6DfcVX7N9Y4en9zUt8nNF1kgrdE1bGKNwak%2BsgurzO2wtUJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 9574dd2c2e0856bd-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="DYNAMIC", cfOrigin;dur=377,cfEdge;dur=21, cfL4;desc="?proto=TCP&rtt=5905&min_rtt=471&rtt_var=10883&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3209&recv_bytes=1116&delivery_rate=7412969&cwnd=254&unsent_bytes=0&cid=ff44e3179db74a2b&ts=431&x=0"
X-Firefox-Spdy: h2

GET telegtgrf.wiki/icon-192x192.png

172.67.182.147

200 OK

3.1 kB

URL GET
telegtgrf.wiki/icon-192x192.png
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced
Size
3.1 kB (3059 bytes)
Hash
1a1650d2c76bfc1ac484646c19e495b9
fe58d66042ce9241226f5da9370230285ff604fc
6e587a62c9d7a97f25265ab5eb29d101ad2e36810042a4116d2dd29da96b0bf8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /icon-192x192.png HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:39 GMT
content-type: image/png
content-length: 3059
vary: Accept-Encoding
last-modified: Wed, 23 Apr 2025 14:21:35 GMT
etag: "6808f76f-bf3"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9574dd3aa9290b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P8BlHp%2F2YnzbndVsIUPOQpipXAov9PT106rY0UgD1SJaNNmJdz4UqkPuTvxRoq9a37B16Y%2FASV%2FNenTUvD23HAwHr303%2FxPj3eyqe3oknSjBYzcDRuloOFhNHJ0Se%2FZ75A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1517&min_rtt=0&rtt_var=1976&sent=125&recv=126&lost=0&retrans=0&sent_bytes=33850&recv_bytes=8057&delivery_rate=1714408&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=14743&unsent_bytes=0&cid=c4c56940647405db&ts=2294&inflight_dur=63&x=44"

GET telegtgrf.wiki/favicon.svg

172.67.182.147

200 OK

892 B

URL GET
telegtgrf.wiki/favicon.svg
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
SVG Scalable Vector Graphics image
Size
892 B (892 bytes)
Hash
d9ee2d4b0edd9f8ba2fb7242162c2c47
398522893cf2cdefb5176f11bc67eab31c2d7382
a462f1c5333e16b48335054493cfd1d0a13a96847b4b9ffe2cf24403e6e86010

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.svg HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:39 GMT
content-type: image/svg+xml
vary: Accept-Encoding
strict-transport-security: max-age=15552000; preload
last-modified: Wed, 23 Apr 2025 14:21:35 GMT
etag: W/"6808f76f-37c"
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 9574dd3aa92a0b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MN%2BfKu2t%2B2bs%2BBGe0k6G3bDon%2FFvbvMEjrEEv19KK%2B7xvNCj6bznySDbr9huJBntYUvY6D5R6f873hVdo670v6wl%2BbA1uAiLGTRRDUhMSuH548em0wMUizakHH1UfgeMjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2927&min_rtt=0&rtt_var=3258&sent=113&recv=120&lost=0&retrans=0&sent_bytes=20634&recv_bytes=7792&delivery_rate=1257869&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=c4c56940647405db&ts=2102&inflight_dur=51&x=44"

GET telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js

172.67.182.147

200 OK

66 kB

URL GET
telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
66 kB (65591 bytes)
Hash
4441938ee433d3657c20d454d352a336
dd67121d7fda7c17be196f60c72dfa06bcb5bc6f
659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P3AS8x8weMVKTY%2BDTg%2Bqz9kkLJyLTcsQwsxqprpXFTAekEV7lBgSJzjLra3OInv9A36tXMFBBc%2BS8Gcu2p9mKWBdJzEwgCv9dyIWXRbTgJY1SvtsOOtsx9uFjv7dhLI%2F1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-10037"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd565a1f0b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=669&min_rtt=0&rtt_var=105&sent=350&recv=206&lost=0&retrans=0&sent_bytes=261865&recv_bytes=15606&delivery_rate=9224312&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=18464&unsent_bytes=0&cid=c4c56940647405db&ts=6739&inflight_dur=138&x=44"

GET telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js

172.67.182.147

200 OK

66 kB

URL GET
telegtgrf.wiki/rlottie-wasm.f013598f1b2ba719f25e.js
IP
172.67.182.147:443
ASN
#13335 CLOUDFLARENET

Requested by
https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Certificate
IssuerGoogle Trust Services
Subjecttelegtgrf.wiki
FingerprintF4:17:29:0E:39:8D:20:3D:C4:2E:96:08:D7:37:9C:9F:2A:5C:50:8C
ValiditySun, 22 Jun 2025 08:45:14 GMT - Sat, 20 Sep 2025 09:43:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
66 kB (65591 bytes)
Hash
4441938ee433d3657c20d454d352a336
dd67121d7fda7c17be196f60c72dfa06bcb5bc6f
659bf63501a8054ef0eedda3dec466dbc1e9a1b2c4d5d59a285b005215e16679

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1
Host: telegtgrf.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://telegtgrf.wiki/2976.52a838f262563a2b360c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 29 Jun 2025 10:50:43 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jxK049VS1z9Guu3TPpd6sjMGvs5DXN%2FN5jIbOLeHLkurCBuiMA%2BWzbL3j117pxopEYhNILr6rVTTgBP8gWSx4KJ4YdZmAz2De7TtNOcVXUrgch5cxhKNTEFshPyo%2BCTdnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Thu, 28 Nov 2024 10:06:39 GMT
vary: Accept-Encoding
etag: W/"674840af-10037"
content-encoding: gzip
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
cf-ray: 9574dd567a210b65-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; preload
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=669&min_rtt=0&rtt_var=105&sent=349&recv=206&lost=0&retrans=0&sent_bytes=261139&recv_bytes=15606&delivery_rate=9224312&ss_exit_cwnd=14921&ss_exit_reason=2&cwnd=18464&unsent_bytes=0&cid=c4c56940647405db&ts=6739&inflight_dur=138&x=44"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (25)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type