Report - solanabox.io/

Report Overview

Visited public
2025-05-12 01:10:58
Tags
suspicious
URL
solanabox.io/
Finishing URL
solanabox.io/
IP / ASN
185.158.133.1
#13213 UK-2 Limited
Title
Solana Box | Best Solana Automated Wallet for Airdrops
Suspicious - Suspicious Javascript code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
s2.coinmarketcap.com	25737	2013-04-28	2018-01-12	2025-05-09	1.8 kB	2.6 kB	0.0.0.0
i.imgur.com	5110	2009-01-09	2012-05-21	2025-05-08	1.3 kB	241 kB	199.232.192.193
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-05-07	471 B	11 kB	142.250.74.10
s3.coinmarketcap.com	28141	2013-04-28	2020-09-13	2025-05-11	968 B	16 kB	54.240.174.44
cdn.gpteng.co	unknown	2023-06-26	2024-12-08	2025-05-09	440 B	92 kB	104.18.28.167
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2025-05-07	502 B	20 kB	104.16.79.73
solanabox.io	unknown	2025-05-11	2025-05-12	2025-05-12	1.8 kB	1.4 MB	185.158.133.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-05-12	medium	solanabox.io/assets/index-DF0U_hVI.js	Detects file containing Telegram Bot API

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Telegram Bot detected

URL
solanabox.io/assets/index-DF0U_hVI.js
IP / ASN
185.158.133.1
#13213 UK-2 Limited

Token
7614753927:AAEEVS6VoBLetDlVpbPnBqcXnozPgekaMXQ

Bot Overview
User ID 7614753927
Username fifjkvkdfsbvksdfvkdfkv_bot
First Name Kill HottoTopicco
Last Name
Chat Information
Chat ID -1002606016982
Chat Type channel
Title HottoToppicco
User Count 2
Admins 2
Pending Messages 11

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	cdn.gpteng.co/gptengineer.js	ScriptElement	91 kB	2025-04-09	2025-05-13
Pretty URL cdn.gpteng.co/gptengineer.js IP 104.18.28.167 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 20:05 Last Seen2025-05-13 11:46 Times Seen49 Hash 9f81c59bafee64c92bb3212547530cfe b4df41361904687a9c65c3698e22e8c2e6513891 6f78819bed4d44c91b6c0ad42f5dfa8b3cba80abcfe80e8db0b688a473b6729d Loading...

	solanabox.io/assets/index-DF0U_hVI.js	ScriptElement	1.2 MB	2025-05-12	2025-05-12
Pretty URL solanabox.io/assets/index-DF0U_hVI.js IP 185.158.133.1 ASN #13213 UK-2 Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-12 01:11 Last Seen2025-05-12 01:11 Times Seen1 Hash 7941492e92e2ef7ac63dd05b5d6a5632 972fc1dac26c7952ad23b6576be35575fc2762f7 efa4ac54507f2f368d9b2d68765c659fe54cee6764a66fc708a9f4fb0d3601fb Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-05-25
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-05-25 06:06 Times Seen51824 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

HTTP Transactions (16)

URL IP Response Size

solanabox.io/assets/index-mQGwBSLG.css

185.158.133.1

200 OK

101 kB

URL GET
solanabox.io/assets/index-mQGwBSLG.css
IP
185.158.133.1:443
ASN
#13213 UK-2 Limited

Requested by
https://solanabox.io/
Certificate
IssuerLet's Encrypt
Subjectsolanabox.io
FingerprintB7:14:2F:63:AC:43:BD:46:E4:0D:EE:23:38:4D:FC:00:25:2C:FD:AC
ValiditySun, 11 May 2025 18:20:29 GMT - Sat, 09 Aug 2025 18:20:28 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
101 kB (100862 bytes)
Hash
9d86987a92282118336c722900b9d39d
d0da3e1af161d410182f50429b68b8a6e38ebb36
42354b8cb7ad807bb4d8f7d2f867a45487c1291c2863b20601edb752e4817355

HTTP Headers

GET /assets/index-mQGwBSLG.css HTTP/1.1
Host: solanabox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 12 May 2025 01:10:38 GMT
content-type: text/css
access-control-allow-origin: *
etag: W/"9d86987a92282118336c722900b9d39d"
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, PUT, OPTIONS
vary: Accept-Encoding
server: cloudflare
cf-ray: 93e60996b84892d0-CPH
content-encoding: gzip
X-Firefox-Spdy: h2

s2.coinmarketcap.com/static/img/coins/64x64/5665.png

0.0.0.0

0 B

URL GET
s2.coinmarketcap.com/static/img/coins/64x64/5665.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://solanabox.io/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/img/coins/64x64/5665.png HTTP/1.1
Host: s2.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

s2.coinmarketcap.com/static/img/coins/64x64/5665.png

3.167.2.111

200 OK

812 B

URL GET
s2.coinmarketcap.com/static/img/coins/64x64/5665.png
IP
3.167.2.111:443
ASN
#0

Requested by
https://solanabox.io/
Certificate
IssuerAmazon
Subject*.coinmarketcap.com
Fingerprint26:4D:86:7B:89:05:0E:D9:C8:97:29:50:1C:69:9B:6D:B0:66:AD:5F
ValidityMon, 03 Feb 2025 00:00:00 GMT - Wed, 04 Mar 2026 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
812 B (812 bytes)
Hash
fac11bc9c0a11d9a28055839f3b1de03
bdc7551d159c49b4241a0d7a5195162a4572486e
1326c75380bc63ccc0c49fcbebb4178deaae70c78ec3c94565a2328557e38373

HTTP Headers

GET /static/img/coins/64x64/5665.png HTTP/1.1
Host: s2.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 812
last-modified: Tue, 19 Oct 2021 05:35:28 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 May 2025 01:42:15 GMT
cache-control: max-age=86400
etag: "fac11bc9c0a11d9a28055839f3b1de03"
x-cache: Hit from cloudfront
via: 1.1 7bc180ff569f641823300f4c342cb63a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 4l1Flx43uNnjDYYjGk31nn6gikvtMcK2c0jP4pLZtKi_uGeGTkgMDw==
age: 84617
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

i.imgur.com/qyWcehu.png

199.232.192.193

200 OK

80 kB

URL GET
i.imgur.com/qyWcehu.png
IP
199.232.192.193:443
ASN
#54113 FASTLY

Requested by
https://solanabox.io/
Certificate
IssuerSectigo Limited
Subject*.imgur.com
FingerprintE4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D
ValidityWed, 29 Jan 2025 00:00:00 GMT - Sat, 14 Feb 2026 23:59:59 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
80 kB (79504 bytes)
Hash
86532178d29b433ad4c346fe6fe2b8e5
bf5c8302ba7364f1b6c91874a098f48950c297f6
8b91645894ac7ff829d639d4ac7fb66f20f8d0b8acdcd8a75c0dd46d5438ca22

HTTP Headers

GET /qyWcehu.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Sun, 11 May 2025 19:43:51 GMT
etag: "86532178d29b433ad4c346fe6fe2b8e5"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: XxWp8kljYYB2y5kQm38_0aJ0jxSyMN34jZ9fFCPSpwL6gPQA-Q5ZXg==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 12 May 2025 01:10:38 GMT
age: 19607
x-served-by: cache-iad-kcgs7200074-IAD, cache-hel1410028-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 182, 1
x-timer: S1747012239.641616,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 79504
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap

142.250.74.10

200 OK

10 kB

URL GET
fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://solanabox.io/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT

File type
ASCII text
Size
10 kB (10108 bytes)
Hash
ac9cc59aa5362fbdf77e40cde49f0d56
be28a1f46f6e8f49bf0fdb0902fda03d15c0a97e
6077f728b7de97728b0ee9201adb3b4c798af167869fef07caaa2b01c397d4c6

HTTP Headers

GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 May 2025 01:10:38 GMT
date: Mon, 12 May 2025 01:10:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

s3.coinmarketcap.com/static-gravity/image/4dc5810324c74688a5a1b805f7506ec5.jpg

54.240.174.44

200 OK

16 kB

URL GET
s3.coinmarketcap.com/static-gravity/image/4dc5810324c74688a5a1b805f7506ec5.jpg
IP
54.240.174.44:443
ASN
#16509 AMAZON-02

Requested by
https://solanabox.io/
Certificate
IssuerAmazon
Subject*.coinmarketcap.com
FingerprintAB:2A:72:2B:B5:42:B5:C5:D6:82:F7:F0:3B:F8:D3:27:AC:8C:5E:0C
ValidityMon, 10 Feb 2025 00:00:00 GMT - Wed, 11 Mar 2026 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3
Size
16 kB (15728 bytes)
Hash
e60361057ddbce8640572614bcdc9fcf
e86b1c8f201f955455ebdca203ec875c5b81462f
10610d1660e910d43a06d61c97c5ea967e447fa8a52db753b21fe76a2f8aad22

HTTP Headers

GET /static-gravity/image/4dc5810324c74688a5a1b805f7506ec5.jpg HTTP/1.1
Host: s3.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpg
content-length: 15728
last-modified: Wed, 15 May 2024 09:51:48 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 May 2025 01:07:51 GMT
etag: "e60361057ddbce8640572614bcdc9fcf"
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Y5iRX7qx1MVlprIzoz3WbdKXbL2bzaBhyWuVx2yC87f_hMymr7_4bw==
age: 168
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

solanabox.io/

185.158.133.1

200 OK

2.4 kB

URL User Request GET
solanabox.io/
IP
185.158.133.1:443
ASN
#13213 UK-2 Limited

Certificate
IssuerLet's Encrypt
Subjectsolanabox.io
FingerprintB7:14:2F:63:AC:43:BD:46:E4:0D:EE:23:38:4D:FC:00:25:2C:FD:AC
ValiditySun, 11 May 2025 18:20:29 GMT - Sat, 09 Aug 2025 18:20:28 GMT

File type
HTML document, ASCII text, with very long lines (478)
Size
2.4 kB (2377 bytes)
Hash
fa988424d9b6ee075231ad8e612a063d
f597d2ef8c641cdee838b4fb6390a5e0df854ee0
386b26c65931c0d85ed7cbad133947302b26eb1dc8b0b8a045640d409b4750bc

HTTP Headers

GET / HTTP/1.1
Host: solanabox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 12 May 2025 01:10:37 GMT
content-type: text/html
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, PUT, OPTIONS
vary: Accept-Encoding
server: cloudflare
cf-ray: 93e609913f2292d0-CPH
content-encoding: gzip
X-Firefox-Spdy: h2

solanabox.io/assets/index-DF0U_hVI.js

185.158.133.1

200 OK

1.2 MB

URL GET
solanabox.io/assets/index-DF0U_hVI.js
IP
185.158.133.1:443
ASN
#13213 UK-2 Limited

Requested by
https://solanabox.io/
Certificate
IssuerLet's Encrypt
Subjectsolanabox.io
FingerprintB7:14:2F:63:AC:43:BD:46:E4:0D:EE:23:38:4D:FC:00:25:2C:FD:AC
ValiditySun, 11 May 2025 18:20:29 GMT - Sat, 09 Aug 2025 18:20:28 GMT

File type
JavaScript source, ASCII text, with very long lines (37534)
Size
1.2 MB (1248894 bytes)
Hash
c6e0487c149e5f58157d530188760d14
4ff306dbf3a1f5c43a37d0bf3f47672f9a7da4ef
5c8c4c9c56ad5b4b95908cfeb7ac2feb8615281c9d847de54130b3d714919ef9

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious Javascript code
YARAhub by abuse.ch	malware	Detects file containing Telegram Bot API

HTTP Headers

GET /assets/index-DF0U_hVI.js HTTP/1.1
Host: solanabox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 12 May 2025 01:10:38 GMT
content-type: text/javascript
access-control-allow-origin: *
etag: W/"7941492e92e2ef7ac63dd05b5d6a5632"
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, PUT, OPTIONS
vary: Accept-Encoding
server: cloudflare
cf-ray: 93e60996b84792d0-CPH
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.gpteng.co/gptengineer.js

104.18.28.167

200 OK

91 kB

URL GET
cdn.gpteng.co/gptengineer.js
IP
104.18.28.167:443
ASN
#13335 CLOUDFLARENET

Requested by
https://solanabox.io/
Certificate
IssuerGoogle Trust Services
Subjectcdn.gpteng.co
Fingerprint49:3B:3D:88:C4:89:76:AA:70:32:E3:06:03:5B:CF:6D:9E:CF:BA:1A
ValidityThu, 24 Apr 2025 06:39:39 GMT - Wed, 23 Jul 2025 07:39:33 GMT

File type
JavaScript source, ASCII text, with very long lines (33833)
Size
91 kB (91316 bytes)
Hash
9f81c59bafee64c92bb3212547530cfe
b4df41361904687a9c65c3698e22e8c2e6513891
6f78819bed4d44c91b6c0ad42f5dfa8b3cba80abcfe80e8db0b688a473b6729d

HTTP Headers

GET /gptengineer.js HTTP/1.1
Host: cdn.gpteng.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://solanabox.io
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 12 May 2025 01:10:37 GMT
content-type: application/javascript
access-control-allow-origin: *
etag: W/"9f81c59bafee64c92bb3212547530cfe"
last-modified: Wed, 09 Apr 2025 07:16:51 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Mon, 12 May 2025 05:10:37 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 93e60996e9b1568d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

104.16.79.73

200 OK

20 kB

URL GET
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://solanabox.io/
Certificate
IssuerGoogle Trust Services
Subjectcloudflareinsights.com
FingerprintEA:C7:0D:68:3A:45:CB:AD:C5:33:41:B6:DF:F1:60:64:E1:0F:52:6A
ValiditySun, 27 Apr 2025 18:18:02 GMT - Sat, 26 Jul 2025 19:17:55 GMT

File type
JavaScript source, ASCII text, with very long lines (19948), with no line terminators
Size
20 kB (19948 bytes)
Hash
ec18af6d41f6f278b6aed3bdabffa7bc
62c9e2cab76b888829f3c5335e91c320b22329ae
8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f

HTTP Headers

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://solanabox.io
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 12 May 2025 01:10:37 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 93e60996ee70569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

i.imgur.com/qyWcehu.png

199.232.192.193

200 OK

80 kB

URL GET
i.imgur.com/qyWcehu.png
IP
199.232.192.193:443
ASN
#54113 FASTLY

Requested by
https://solanabox.io/
Certificate
IssuerSectigo Limited
Subject*.imgur.com
FingerprintE4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D
ValidityWed, 29 Jan 2025 00:00:00 GMT - Sat, 14 Feb 2026 23:59:59 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
80 kB (79504 bytes)
Hash
86532178d29b433ad4c346fe6fe2b8e5
bf5c8302ba7364f1b6c91874a098f48950c297f6
8b91645894ac7ff829d639d4ac7fb66f20f8d0b8acdcd8a75c0dd46d5438ca22

HTTP Headers

GET /qyWcehu.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Sun, 11 May 2025 19:43:51 GMT
etag: "86532178d29b433ad4c346fe6fe2b8e5"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: XxWp8kljYYB2y5kQm38_0aJ0jxSyMN34jZ9fFCPSpwL6gPQA-Q5ZXg==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 19607
date: Mon, 12 May 2025 01:10:38 GMT
x-served-by: cache-iad-kcgs7200074-IAD, cache-hel1410028-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 182, 0
x-timer: S1747012238.426699,VS0,VE100
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 79504
X-Firefox-Spdy: h2

i.imgur.com/qyWcehu.png

199.232.192.193

200 OK

80 kB

URL GET
i.imgur.com/qyWcehu.png
IP
199.232.192.193:443
ASN
#54113 FASTLY

Requested by
https://solanabox.io/
Certificate
IssuerSectigo Limited
Subject*.imgur.com
FingerprintE4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D
ValidityWed, 29 Jan 2025 00:00:00 GMT - Sat, 14 Feb 2026 23:59:59 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
80 kB (79504 bytes)
Hash
86532178d29b433ad4c346fe6fe2b8e5
bf5c8302ba7364f1b6c91874a098f48950c297f6
8b91645894ac7ff829d639d4ac7fb66f20f8d0b8acdcd8a75c0dd46d5438ca22

HTTP Headers

GET /qyWcehu.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Sun, 11 May 2025 19:43:51 GMT
etag: "86532178d29b433ad4c346fe6fe2b8e5"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: XxWp8kljYYB2y5kQm38_0aJ0jxSyMN34jZ9fFCPSpwL6gPQA-Q5ZXg==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 12 May 2025 01:10:38 GMT
age: 19607
x-served-by: cache-iad-kcgs7200074-IAD, cache-hel1410028-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 182, 2
x-timer: S1747012239.643014,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 79504
X-Firefox-Spdy: h2

s2.coinmarketcap.com/static/img/coins/64x64/21259.png

0.0.0.0

0 B

URL GET
s2.coinmarketcap.com/static/img/coins/64x64/21259.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://solanabox.io/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/img/coins/64x64/21259.png HTTP/1.1
Host: s2.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

s3.coinmarketcap.com/static-gravity/image/4dc5810324c74688a5a1b805f7506ec5.jpg

0.0.0.0

0 B

URL GET
s3.coinmarketcap.com/static-gravity/image/4dc5810324c74688a5a1b805f7506ec5.jpg
IP
0.0.0.0:0
ASN
#0

Requested by
https://solanabox.io/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static-gravity/image/4dc5810324c74688a5a1b805f7506ec5.jpg HTTP/1.1
Host: s3.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

s2.coinmarketcap.com/static/img/coins/64x64/21259.png

3.167.2.111

200 OK

700 B

URL GET
s2.coinmarketcap.com/static/img/coins/64x64/21259.png
IP
3.167.2.111:443
ASN
#0

Requested by
https://solanabox.io/
Certificate
IssuerAmazon
Subject*.coinmarketcap.com
Fingerprint26:4D:86:7B:89:05:0E:D9:C8:97:29:50:1C:69:9B:6D:B0:66:AD:5F
ValidityMon, 03 Feb 2025 00:00:00 GMT - Wed, 04 Mar 2026 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
700 B (700 bytes)
Hash
49a64bf8f46467858ddb26e06526b340
3bd8b658b957a548a306bb8191ff3c01a18a4e17
bf25e044f1c68fc47b9e843faa20f3e4e2f2a75a528e9ae77a523c3249bf8ff0

HTTP Headers

GET /static/img/coins/64x64/21259.png HTTP/1.1
Host: s2.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 700
date: Sun, 11 May 2025 01:28:00 GMT
last-modified: Fri, 03 Mar 2023 00:39:51 GMT
etag: "49a64bf8f46467858ddb26e06526b340"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 7bc180ff569f641823300f4c342cb63a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Gi5g48W-w_wgo4UuaXyXhsJ4rSi4kqwyFqQGzpyMjUUjUv2ucnA7kA==
age: 85359
vary: Origin
X-Firefox-Spdy: h2

solanabox.io/cdn-cgi/rum?

185.158.133.1

204 No Content

0 B

URL POST
solanabox.io/cdn-cgi/rum?
IP
185.158.133.1:443
ASN
#13213 UK-2 Limited

Requested by
https://solanabox.io/
Certificate
IssuerLet's Encrypt
Subjectsolanabox.io
FingerprintB7:14:2F:63:AC:43:BD:46:E4:0D:EE:23:38:4D:FC:00:25:2C:FD:AC
ValiditySun, 11 May 2025 18:20:29 GMT - Sat, 09 Aug 2025 18:20:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: solanabox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1040
Origin: https://solanabox.io
DNT: 1
Connection: keep-alive
Referer: https://solanabox.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Mon, 12 May 2025 01:10:38 GMT
access-control-allow-origin: https://solanabox.io
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 93e6099b9a6692d0-CPH
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

Telegram Bot detected

Token

Bot Overview

Chat Information

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size