Report - btc-eprex-x1.com/

Report Overview

Visited public
2025-06-15 09:59:49
Tags
Submit Tags
URL
btc-eprex-x1.com/
Finishing URL
btc-eprex-x1.com/
IP / ASN
91.236.116.63
#42237 w1n ltd
Title
BTC +X1 ePrex ™ | The Official & Updated Website 2025 🥇

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-06-11	1.1 kB	17 kB	142.250.74.35
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-06-11	475 B	35 kB	104.17.24.14
ipinfo.io	8136	2013-04-23	2013-12-16	2025-06-13	466 B	1.2 kB	34.117.59.81
btc-eprex-x1.com	unknown	unknown	No data	No data	41 kB	676 kB	91.236.116.63
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-06-11	475 B	6.7 kB	142.250.74.10
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2025-06-11	1.9 kB	345 kB	104.16.175.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-06-15 09:59:30	medium	Client IP	34.117.59.81	ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed
2025-06-15	medium	btc-eprex-x1.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	btc-eprex-x1.com/frontend/assets/en/dist/js/jquery-3.1.1.min.js	ScriptElement	87 kB	2023-03-07	2025-07-16
Pretty URL btc-eprex-x1.com/frontend/assets/en/dist/js/jquery-3.1.1.min.js IP 91.236.116.63 ASN #42237 w1n ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-16 08:16 Times Seen118481 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	btc-eprex-x1.com/	ScriptElement	474 B	2024-12-15	2025-07-16
Pretty URL btc-eprex-x1.com/ IP 91.236.116.63 ASN #42237 w1n ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-15 07:55 Last Seen2025-07-16 03:29 Times Seen485 Hash 43cb7fdd8c6b65ac47a7744f384eb61f 411a7ae7ac03b98a9c74c0288a2217d0c872db19 1f15ca22a1520682c15afb82ad2fe5948e844527491a8ab9a7a25dba9f008117 Loading...

	btc-eprex-x1.com/	ScriptElement	557 B	2024-12-15	2025-07-16
Pretty URL btc-eprex-x1.com/ IP 91.236.116.63 ASN #42237 w1n ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-15 07:55 Last Seen2025-07-16 03:29 Times Seen431 Hash 12e6cebaa36f0e69ac1d943d22f5e817 f3e3bb39707c9519c873d47253771b1c10cc13fe 414f038e40be940c8ea174addb48a8efcdac5072c0bd05804f7b725e325826fc Loading...

	cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js	ScriptElement	31 kB	2024-11-14	2025-07-16
Pretty URL cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js IP 104.16.175.226 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-14 19:07 Last Seen2025-07-16 03:29 Times Seen519 Hash 8d7c34c441a0c73f54b225cc51f30de1 f0b6bee317c54aa421626eac803f682cb1b06fe8 5aeda5f302d419537edff95e71c9ab97fa5f25f5cc4666e0ca5907a27ac1f4a7 Loading...

	btc-eprex-x1.com/	ScriptElement	5.5 kB	2025-06-15	2025-06-15
Pretty URL btc-eprex-x1.com/ IP 91.236.116.63 ASN #42237 w1n ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-15 09:59 Last Seen2025-06-15 09:59 Times Seen1 Hash 9a07edbe522c043c7ea420c1f67f0632 293fa5bb2cfd37bbba51efe75838925659fb9144 70486a694a7129a04d2d7d2dab5da813bcdba9122c5f896df037e6a693fa8470 Loading...

	btc-eprex-x1.com/	EventHandler	16 B	2023-04-10	2025-07-16
Pretty URL btc-eprex-x1.com/ IP 91.236.116.63 ASN #42237 w1n ltd Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57 Last Seen2025-07-16 08:43 Times Seen74003 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	btc-eprex-x1.com/frontend/assets/en/dist/js/script1.js	ScriptElement	17 kB	2024-12-15	2025-07-16
Pretty URL btc-eprex-x1.com/frontend/assets/en/dist/js/script1.js IP 91.236.116.63 ASN #42237 w1n ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-15 07:55 Last Seen2025-07-16 03:29 Times Seen449 Hash 3d0892d336959ffc3116f3c85ac1f1ca ba9dafbc2165b509325094c33f1ebe7458fe68be a82f48e366c855affe0c103158ae6b6d02923e633e95103bd196f2195790788e Loading...

	ipinfo.io/?callback=jQuery311010416211888640659_1749981569647&_=1749981569648	ScriptElement	674 B	2025-06-15	2025-06-15
Pretty URL ipinfo.io/?callback=jQuery311010416211888640659_1749981569647&_=1749981569648 IP 34.117.59.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-15 09:59 Last Seen2025-06-15 09:59 Times Seen1 Hash f5e7fa2b810fc2c0993b648befae926b 541be19d9ac69713a403522c8bd08b8d51bcae4c 8ad1c5936032df03c81524d72a31ca06f1e5f4dba6e7d7e4cae2492be6481ffc Loading...

	cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/utils.js	ScriptElement	264 kB	2024-11-14	2025-07-16
Pretty URL cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/utils.js IP 104.16.175.226 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-14 19:07 Last Seen2025-07-16 03:29 Times Seen504 Hash be8412b24dc2374a8eb8c446774e2765 c98f7005e9dbd00ec118c3cc2370bf3bfe6cf8a6 8d6246375bc856c30649b3e800b02a22d913a7f03f08d92a7b2440824ff2ce9c Loading...

	about:certerror?e=nssBadCert&u=https%3A//btc-eprex-x1.com/&c=UTF-8&d=%20	ScriptElement	111 B	2025-03-02	2025-07-16
Pretty URL about:certerror?e=nssBadCert&u=https%3A//btc-eprex-x1.com/&c=UTF-8&d=%20 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-02 08:59 Last Seen2025-07-16 08:28 Times Seen41524 Hash 1fc778fb81973516c7df9ee7caca05e6 7953945d192422cc2b1d8610d1b0fa1469bb5b7f a09c624476cbe1462a188d07d0ce0a20e258a5e9b7890f44b3c8b68a0a3b26eb Loading...

	btc-eprex-x1.com/	EventHandler	19 B	2023-07-02	2025-07-16
Pretty URL btc-eprex-x1.com/ IP 91.236.116.63 ASN #42237 w1n ltd Introduced by eventHandler Embedded in HTML false Observations First Seen2023-07-02 07:28 Last Seen2025-07-16 03:29 Times Seen291 Hash d340024e4734e72c0555fc2a541e74a1 995e53f4089e42f677947a6f48e5ff2a25ed9ab0 8a04e32acd55cec723824bb94592371f3dc9ab66e579560075bd3c8e54efb9a6 Loading...

HTTP Transactions (46)

URL IP Response Size

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/vi.png

91.236.116.63

200 OK

818 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/vi.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
818 B (818 bytes)
Hash
931fa5c7d5aa2805b11fbc974b816d77
8eb02f52bbe074b5dd681b95c6196890e49651fa
06fc7512126a48e27890c8ac939d5821da05cc0b08d4d11698b2d95b32c3ab66

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/vi.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 818
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/pl.png

91.236.116.63

200 OK

380 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/pl.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
380 B (380 bytes)
Hash
44c8193715ca274b0074f1bb80c9e597
e0ad2c0c5ba99953d42dfafde03b81289e180168
3cd67729cd6ce09de1e48b04d1246a349597239241989e61356b99b588c0d90f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/pl.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 380
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/sk.png

91.236.116.63

200 OK

942 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/sk.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
942 B (942 bytes)
Hash
f505130ed0303fde84806046537f1af0
2571608ca84fa979a602373536380578ed7f3e53
f264c92b7384498c50a373a441de7963aa8d20225884b59affadbb0e04de2a70

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/sk.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 942
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/es.png

91.236.116.63

200 OK

873 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/es.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
873 B (873 bytes)
Hash
8bf31a924501d6db655fe75696b5f046
94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2
5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/es.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 873
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/

91.236.116.63

200 OK

63 kB

URL User Request GET
btc-eprex-x1.com/
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (820)
Size
63 kB (63031 bytes)
Hash
4b55c230688f808b05341c728b018709
5a7413381a988270b5c989fb5828902d132f8dda
fdfd51dad061ddffa11976c595b9e964e2524b7b276c0fa2fedb6a148881c12c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:28 GMT
server: Apache
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; expires=Sun, 15 Jun 2025 11:59:28 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D; expires=Sun, 15 Jun 2025 11:59:28 GMT; Max-Age=7200; path=/; httponly; samesite=lax
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14610
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET fonts.googleapis.com/css?family=Poppins:300,400,600,700,800&display=swap

142.250.74.10

200 OK

6.0 kB

URL GET
fonts.googleapis.com/css?family=Poppins:300,400,600,700,800&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintFF:78:1F:2C:E7:6A:27:90:8B:25:07:97:DD:25:4A:FA:6F:1F:0F:31
ValidityMon, 19 May 2025 08:42:52 GMT - Mon, 11 Aug 2025 08:42:51 GMT

File type
ASCII text
Size
6.0 kB (5993 bytes)
Hash
0cc9bf27b3f7870e874e25f74f2c2ca8
a3b12d147a59fb4cee0d0c8d61828ed37b3c2c17
cee4c0d55bd9d191347ef22dd01dcda7b6a6f0212cd487070eeb0e5084a047de

HTTP Headers

GET /css?family=Poppins:300,400,600,700,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 15 Jun 2025 09:59:29 GMT
date: Sun, 15 Jun 2025 09:59:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET btc-eprex-x1.com/frontend/assets/en/dist/css/style2.css

91.236.116.63

200 OK

2.7 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/css/style2.css
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2715 bytes)
Hash
c3dd2340f7e24c2f7d159924d0cf457d
7c6ee56951069ae923caaf605699c80d0eee07c0
902bddd481318e9f515b47d66fbea38072ef4e6088a27b674b4b3a3367c7b120

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/css/style2.css HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Tue, 15 Jul 2025 09:59:29 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 931
content-type: text/css
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/nl.png

91.236.116.63

200 OK

469 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/nl.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
469 B (469 bytes)
Hash
213b7e930b8a41dcf4c9f95ac76dbe6b
eccf14152b6ba26fe8a7d02f79586992be40db20
5d75fea10bb270c341503bda4357e90bb069e3e46c7a670a3583f924f3524bd3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/nl.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 469
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/js/script1.js

91.236.116.63

200 OK

17 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/js/script1.js
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
JavaScript source, ASCII text, with very long lines (3636), with CRLF line terminators
Size
17 kB (16817 bytes)
Hash
3d0892d336959ffc3116f3c85ac1f1ca
ba9dafbc2165b509325094c33f1ebe7458fe68be
a82f48e366c855affe0c103158ae6b6d02923e633e95103bd196f2195790788e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/js/script1.js HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Tue, 15 Jul 2025 09:59:29 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5771
content-type: text/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js

104.16.175.226

200 OK

31 kB

URL GET
cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js
IP
104.16.175.226:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
FingerprintA6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F
ValidityFri, 25 Apr 2025 00:00:00 GMT - Mon, 04 May 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (30745)
Size
31 kB (31113 bytes)
Hash
8d7c34c441a0c73f54b225cc51f30de1
f0b6bee317c54aa421626eac803f682cb1b06fe8
5aeda5f302d419537edff95e71c9ab97fa5f25f5cc4666e0ca5907a27ac1f4a7

HTTP Headers

GET /npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 10943
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 24.5.0
x-jsd-version-type: version
etag: W/"7989-8La+4xfFSqQhYm6sgD9oLLGwb+g"
content-encoding: br
x-served-by: cache-fra-etou8220027-FRA, cache-lga21961-LGA
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3385946
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ej13r3vTjSDHCQMcPF9DTgp6%2F7rwNGjAyocJhUQU3tbpR%2BVLTMOfqQthfkJp0CQWPBKU6bfWuQb1eSWlWrD4waKp2Q3DAyvvlYLqjePSIod1o1xU%2FYgWHFt%2Fj13aZzN0gts%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 950137081a3156ca-OSL
X-Firefox-Spdy: h2

GET btc-eprex-x1.com/

0.0.0.0

0 B

URL User Request GET
btc-eprex-x1.com/
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/ar.png

91.236.116.63

200 OK

1.5 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/ar.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1480 bytes)
Hash
7fec8a94e0af73b8647803e1ff9887be
aca14e7523e0bff0a9399a0998b49387d636da9e
f093a618390e4ef10ee984262dd3334074536f565eb0ecf6cbd0939597073b3d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/ar.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 1480
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/cs.png

91.236.116.63

200 OK

849 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/cs.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
849 B (849 bytes)
Hash
4be819ea527d8a704539f3ce154c6a82
882f02dee6104dfcda844e466b4ae8dd1e3f69c5
2db01ff2e46696a2a9ffa5d4f5af6f2e95bef36e12aa0eb7e05045e73c0396ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/cs.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 849
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/ja.png

91.236.116.63

200 OK

705 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/ja.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
705 B (705 bytes)
Hash
125d3bb3275409f964ec5023de1762c9
f06d834f76897f2e8417a70b59b47419ad668ace
4461385ad6fdaab33bd89e593c3fe1c14021644444d779584ddaec3cd4fe91f4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/ja.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 705
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/hr.png

91.236.116.63

200 OK

982 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/hr.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
982 B (982 bytes)
Hash
41a7b90f600ed32eefb5e620a4f653fc
7a6ab7cfc55a1239de75e073430c9634d5c18746
63e36970eea32e52849d7b4d3a15d1da36be12ad3078df8c2b848aa7e9baa19b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/hr.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 982
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/de.png

91.236.116.63

200 OK

602 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/de.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
602 B (602 bytes)
Hash
8a2ba86f3b7de7562445967e2c21843b
3046cd0b51721f180c2dc75513fd4bfd316b45b5
cc318f3be9ba75def2af54bd9d0fab4f3e316517de9bf138e40dee06d332602d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/de.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 602
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/it.png

91.236.116.63

200 OK

642 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/it.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
642 B (642 bytes)
Hash
922efc02f080135a63137dde4ffea287
a4583be3e579a69a03a0d1f09995fdb6d1244f7d
510116996dc4979a225c07962d84bb76e2b6340234c2c5e4280596ad08a632cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/it.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 642
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/tr.png

91.236.116.63

200 OK

923 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/tr.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
923 B (923 bytes)
Hash
f9619dd9adc7fbb5244483ca00cace60
4970f612a0e86100cf07629da3b9ea12af8891e5
d11d2b8956d975cff1ea2a49763f6eec736506498be297be7ac1c4363cc95ee5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/tr.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 923
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/

0.0.0.0

0 B

URL User Request GET
btc-eprex-x1.com/
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET btc-eprex-x1.com/frontend/assets/en/dist/css/style1.css

91.236.116.63

200 OK

214 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/css/style1.css
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
ASCII text, with very long lines (345), with CRLF line terminators
Size
214 kB (214306 bytes)
Hash
f3707e7f9b89619a600ade29a5c2955c
8f3bde3b5918ea8f544a734c114bd7f5eaed372d
df62ef181413fec79eefe2cea6d6b015cd7efe566ff7eb4305308b882b471e46

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/css/style1.css HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Tue, 15 Jul 2025 09:59:29 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 24497
content-type: text/css
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/images/498_908__922_664dc1916a6b0_Immediate-360-Serax.webp

91.236.116.63

200 OK

189 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/images/498_908__922_664dc1916a6b0_Immediate-360-Serax.webp
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
RIFF (little-endian) data, Web/P image
Size
189 kB (189216 bytes)
Hash
6ef7e9f8ee47830e8a697fe90a745f94
a578019c2ed4afc8f3dbf21739bcd7827b8a1c8e
d61098744ce24344f25a4b4682c4e1387116310edcc37712ef6eb72d4078642f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/images/498_908__922_664dc1916a6b0_Immediate-360-Serax.webp HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 189216
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/webp
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/zh-TW.png

91.236.116.63

200 OK

870 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/zh-TW.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
870 B (870 bytes)
Hash
2a2b643bc15c7363c9e58e6b47d7de30
506ab44f76022397b3aa9682e8972d7944703d54
c63293f5412adc096b8e492e88b8d8edfca5367a491acdd9071ef8d31b4ba9a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/zh-TW.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 870
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/js/jquery-3.1.1.min.js

91.236.116.63

200 OK

87 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/js/jquery-3.1.1.min.js
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
JavaScript source, ASCII text, with very long lines (32030)
Size
87 kB (86709 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/js/jquery-3.1.1.min.js HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Tue, 15 Jul 2025 09:59:29 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30080
content-type: text/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintE1:0C:8D:E3:24:8F:B1:9F:BA:8E:CF:BE:4B:8F:D6:6A:39:8A:9D:7A
ValidityMon, 19 May 2025 08:42:51 GMT - Mon, 11 Aug 2025 08:42:50 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btc-eprex-x1.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jun 2025 10:26:17 GMT
expires: Fri, 12 Jun 2026 10:26:17 GMT
cache-control: public, max-age=31536000
age: 257593
last-modified: Wed, 23 Apr 2025 16:05:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET btc-eprex-x1.com/frontend/assets/en/dist/fav.png

91.236.116.63

200 OK

3.5 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/fav.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
3.5 kB (3451 bytes)
Hash
203d2d642397231d83d672965b3f38d8
6a880a055e1e9c015819ee727bfc896c3f053b91
3393b4b8776e903e1ed1babcfdc0e39877ec036a2ecda0b7cde03e594c0ff3c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/fav.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:30 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 3451
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:30 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/hu.png

91.236.116.63

200 OK

505 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/hu.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
505 B (505 bytes)
Hash
c789a334c212492af26b433c5e2b4d5b
7bc986549c06acb5f13c177af6793be159f7c480
e911743b60f76ab09482b0abdc256e58e9abcd693c8a382547180d18f0eef14a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/hu.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 505
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/en.png

91.236.116.63

200 OK

1.8 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/en.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1767 bytes)
Hash
ec7233b5c80e5db85f7733b2ec25203f
d4c36fff06dc7d920b10eb13b58ea9cd9321b430
347ee97a492f79675749d03533810ff899ee6a784b4e156f3e0a7613cdfb3d40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/en.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 1767
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/el.png

91.236.116.63

200 OK

775 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/el.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
775 B (775 bytes)
Hash
2a53590607a148f0533ed4748d8aa209
bac5251024524bb9f5c39535cb99be24d10c92f7
aa9fcea0dd91bdb0749763eff1466b252e00096d762946f1eb6f5330834d9161

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/el.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 775
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/images/763_1920__1920_65e7292179089_main-bg-banner.webp

91.236.116.63

200 OK

12 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/images/763_1920__1920_65e7292179089_main-bg-banner.webp
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x763, Scaling: [none]x[none], YUV color, decoders should clamp
Size
12 kB (12138 bytes)
Hash
ac927b437c61f75a61872549dd22e86e
31595082b099c7ccb44d8fbaf7554ae7c14e335a
a36a8fafe8d188e961bce01bfdbd8d88785a8e71b068c53a9b98d7ff011b65ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/images/763_1920__1920_65e7292179089_main-bg-banner.webp HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/frontend/assets/en/dist/css/style2.css
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 12138
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/webp
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css

104.17.24.14

200 OK

34 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
ASCII text, with very long lines (33818), with no line terminators
Size
34 kB (33818 bytes)
Hash
79fb36dda0a235254c3e31bf00b57065
89eb6d6adc16de57dda315fb2b5602bfe5728ccf
623702bd791d4553ae7226c2f48e26052e359573eb59fa98d819e9b248593e7c

HTTP Headers

GET /ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
content-type: text/css; charset=utf-8
content-length: 1466
cf-ray: 9501370b8b300b55-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5d-841a"
last-modified: Mon, 04 May 2020 16:10:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 446923
expires: Fri, 05 Jun 2026 09:59:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jqHMnbxrIz49DAFoC7dTi%2B7yD6SZVW4ggz99ONqxup9xh2blk3QmZ1iHk1BHs4YmhXeMwjFaP3uD57vsPe2G9diYEaSR%2Bf%2Bqq8KSPprQfS8cZicSMOR%2FFaNeQ9m1Ugn%2BuhgrkSVJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET ipinfo.io/?callback=jQuery311010416211888640659_1749981569647&_=1749981569648

34.117.59.81

200 OK

674 B

URL GET
ipinfo.io/?callback=jQuery311010416211888640659_1749981569647&_=1749981569648
IP
34.117.59.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectipinfo.io
FingerprintCA:1B:73:7D:9E:7C:7D:87:8C:88:09:15:52:E2:16:13:F8:5A:9D:7A
ValidityMon, 05 May 2025 05:43:10 GMT - Sun, 03 Aug 2025 05:43:09 GMT

File type
JavaScript source, ASCII text, with very long lines (393)
Size
674 B (674 bytes)
Hash
f5e7fa2b810fc2c0993b648befae926b
541be19d9ac69713a403522c8bd08b8d51bcae4c
8ad1c5936032df03c81524d72a31ca06f1e5f4dba6e7d7e4cae2492be6481ffc

HTTP Headers

GET /?callback=jQuery311010416211888640659_1749981569647&_=1749981569648 HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: text/javascript; charset=utf-8
content-encoding: gzip
date: Sun, 15 Jun 2025 09:59:30 GMT
vary: accept-encoding
via: 1.1 google
strict-transport-security: max-age=2592000; includeSubDomains
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

142.250.74.35

200 OK

7.8 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintE1:0C:8D:E3:24:8F:B1:9F:BA:8E:CF:BE:4B:8F:D6:6A:39:8A:9D:7A
ValidityMon, 19 May 2025 08:42:51 GMT - Mon, 11 Aug 2025 08:42:50 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btc-eprex-x1.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jun 2025 13:20:36 GMT
expires: Fri, 12 Jun 2026 13:20:36 GMT
cache-control: public, max-age=31536000
age: 247134
last-modified: Wed, 23 Apr 2025 16:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/utils.js

104.16.175.226

200 OK

264 kB

URL GET
cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/utils.js
IP
104.16.175.226:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
FingerprintA6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F
ValidityFri, 25 Apr 2025 00:00:00 GMT - Mon, 04 May 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1903)
Size
264 kB (264516 bytes)
Hash
be8412b24dc2374a8eb8c446774e2765
c98f7005e9dbd00ec118c3cc2370bf3bfe6cf8a6
8d6246375bc856c30649b3e800b02a22d913a7f03f08d92a7b2440824ff2ce9c

HTTP Headers

GET /npm/intl-tel-input@24.5.0/build/js/utils.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btc-eprex-x1.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 15 Jun 2025 09:59:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 56852
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 24.5.0
x-jsd-version-type: version
etag: W/"40944-yY9wBenb0A7BGMPMI3C/O/5s+KY"
content-encoding: br
x-served-by: cache-fra-etou8220148-FRA, cache-lga21958-LGA
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 20314402
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5tjHlz4FpZKJ7GkEVHcs7WWZj3AgZf1mgHihBMw4dcBJSrp%2F51Cnyel7Urpwlbg6I7XfuKZ1mh%2FvmzVTtPnBLW3B2PDhlQwk5fQjgOaWULEE9D0IrXDNo2HEm2sQfz7BK%2Bk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9501370fdaeb7127-OSL
server-timing: cfExtPri

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/da.png

91.236.116.63

200 OK

595 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/da.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
595 B (595 bytes)
Hash
a30b08094003e6cfa25800109f955b7a
4d43a76c0889bd20f88905cf6ad76b4e0ccd8597
a981b9c5114a52486766b43af45545d454234f8d99cb405f24382b225394f117

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/da.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 595
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/ru.png

91.236.116.63

200 OK

487 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/ru.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
487 B (487 bytes)
Hash
5ddf50d1327e2ecc28a980e93b9f538a
581fa9ecc609a1a07fca205b6c9751e8c28f1ebb
1bdc7040f02e999a17f291b59767d4101adefa2d89775272ac7c66f37c710fff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/ru.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 487
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/images/arrow-down.svg

91.236.116.63

200 OK

687 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/images/arrow-down.svg
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
SVG Scalable Vector Graphics image
Size
687 B (687 bytes)
Hash
a60b35876f9b28d59bed3b7e4abf6ba2
12c7639426c80f97352cf3fd7a5bb968da984459
7ff5a0abbe0db2a64746dd03b7218d574c1cc2c0e1ff9ddc30850e51da43e373

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/images/arrow-down.svg HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/frontend/assets/en/dist/css/style1.css
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 432
content-type: image/svg+xml
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/images/459_459__459_6617c2a952d09_immediate_neupro_ai.webp

91.236.116.63

200 OK

54 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/images/459_459__459_6617c2a952d09_immediate_neupro_ai.webp
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
RIFF (little-endian) data, Web/P image
Size
54 kB (54178 bytes)
Hash
df7ee37a8f3e0609863e4d38a1a710f1
43b94ec405631c03977f7f06f39350da9aba33f5
3bc534b793190759f7f85702b943d481337ef1ae5b5166b239ad133b666ad719

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/images/459_459__459_6617c2a952d09_immediate_neupro_ai.webp HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 54178
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/webp
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/css/intlTelInput.css

104.16.175.226

200 OK

16 kB

URL GET
cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/css/intlTelInput.css
IP
104.16.175.226:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
FingerprintA6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F
ValidityFri, 25 Apr 2025 00:00:00 GMT - Mon, 04 May 2026 23:59:59 GMT

File type
ASCII text
Size
16 kB (16444 bytes)
Hash
31cc7c1401a02ca75f8e903777df602a
401b20fd618f205c3baa1c00dab5eaa45cb4a0e5
04a435c7d3f367d9816544975c24deb53596f62f801d8a1f208d4e55cc7c4277

HTTP Headers

GET /npm/intl-tel-input@24.5.0/build/css/intlTelInput.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
content-type: text/css; charset=utf-8
content-length: 2361
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 24.5.0
x-jsd-version-type: version
etag: W/"403c-QBsg/WGPIFw7qhwA2rXqpFy0oOU"
content-encoding: br
x-served-by: cache-fra-eddf8230115-FRA, cache-lga21960-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 966730
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PCB0la0tmD25UboGscwV5ObHyu1P9fqt62uqqMtYdro%2FNxEQMVjgEEH%2BOYX%2FLNZY7VK1a5q8xiq%2BSMK8qBmt0Hxbv2zn4GDXb82KB2DwX0423Q6jCZQ1xo%2FHP1cGFCTVKt0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 950137080a2856ca-OSL
X-Firefox-Spdy: h2

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/ko.png

91.236.116.63

200 OK

1.4 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/ko.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1361 bytes)
Hash
ed87e4c8a4dd16c9c3f8499a0aaa28bd
f818a0782047c159ed8e5cd041ad7f09e8fe52fb
eb59eb7dcf155a7b38c8f4c9db869ed942bf55a4457e3f4ff0791be4f2c736d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/ko.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 1361
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/no.png

91.236.116.63

200 OK

743 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/no.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
743 B (743 bytes)
Hash
d3b58f803a9a01a59210dd673998a229
6caddb6c8e749e9c5b786a3984bb7bdbba2bafc5
3cf52e677d7f7be201cbf6e3ec56ed1f48b95c47e5969ef2c2510e270133c4f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/no.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 743
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/sv.png

91.236.116.63

200 OK

715 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/sv.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
715 B (715 bytes)
Hash
191c145f7eb3f4755cc9a019a42259ad
3ab0abaf3d362e2f59284949f3f62779af5dbedd
c6897e837702d73a8dad3043ec690277cecff9ef960555169cba79d4fa9c62a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/sv.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 715
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/img/flags.webp

104.16.175.226

200 OK

28 kB

URL GET
cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/img/flags.webp
IP
104.16.175.226:443
ASN
#13335 CLOUDFLARENET

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
FingerprintA6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F
ValidityFri, 25 Apr 2025 00:00:00 GMT - Mon, 04 May 2026 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
28 kB (28174 bytes)
Hash
4099564bc7b03997031ad1348e646601
f9cf49faabe5e3ea6fa50a500aabd47fef31e160
667642959de122c4b844afcae211c1c54c9166d262fb833beb63abc02ebd0dd4

HTTP Headers

GET /npm/intl-tel-input@24.5.0/build/img/flags.webp HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/css/intlTelInput.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 15 Jun 2025 09:59:30 GMT
content-type: image/webp
content-length: 28174
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 24.5.0
x-jsd-version-type: version
etag: W/"6e0e-+c9J+qvl4+pvpQpQCqvUf+8x4WA"
x-served-by: cache-fra-eddf8230035-FRA, cache-lga21929-LGA
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3396568
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RME1Z2WBuuPv7L9xCBIYDwb%2FXN%2BmCogdma%2F2NojG93kcybbpCQy5GqbT4ikRlymHiz4Km0TVKdPW%2FuDVd0heae5TjZcrVTqRlqxIndVNvQcOioe2565LtqYJ1oW%2FK%2BsY59o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9501370cef137127-OSL
server-timing: cfExtPri

GET btc-eprex-x1.com/

0.0.0.0

0 B

URL User Request GET
btc-eprex-x1.com/
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/fi.png

91.236.116.63

200 OK

523 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/fi.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
523 B (523 bytes)
Hash
605699c0baa63458c609512fc19363c8
b920ed840cba7fa302d5e6eca3b51a7c64095f64
5bf3510eaa1ec9cb53c13393d67ab23ced2c1912bcc614828707ce0bcec20119

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/fi.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 523
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/fr.png

91.236.116.63

200 OK

637 B

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/fr.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
637 B (637 bytes)
Hash
930f08c6829077e96cf25d58f26bd6d3
0dfa244548435053bbebd2ed5914e2785f0f3dc3
594f333e3a8fe65a0466e4f9c140dab97e6b6a073579edf130a87b86614d7ec8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/fr.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 637
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

GET btc-eprex-x1.com/frontend/assets/en/dist/flags/pt.png

91.236.116.63

200 OK

1.1 kB

URL GET
btc-eprex-x1.com/frontend/assets/en/dist/flags/pt.png
IP
91.236.116.63:443
ASN
#42237 w1n ltd

Requested by
https://btc-eprex-x1.com/
Certificate
IssuerLet's Encrypt
Subjectbtc-eprex-x1.com
FingerprintDF:72:D9:F2:C5:48:1A:3F:D8:E3:EE:D9:AF:00:F5:DD:D4:93:14:66
ValidityFri, 14 Feb 2025 11:46:13 GMT - Thu, 15 May 2025 11:46:12 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1076 bytes)
Hash
bb3cb490b63a8f51283c686b916cf4ff
f325c9d27acb1d3e03a3481eb2c240368ae8460f
f06d3def1549dd1b0a108ddc645d2e8906fb631e5812df19cdcbd887f3700bd8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /frontend/assets/en/dist/flags/pt.png HTTP/1.1
Host: btc-eprex-x1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btc-eprex-x1.com/
Cookie: XSRF-TOKEN=eyJpdiI6IlBwUkNueVVHempNank0eDcrdnRwRHc9PSIsInZhbHVlIjoiU29ZanREb21Da1JPaytMK3I0Um9zb2t2b1NoTmxzRXhhMlVKclRPU21KWnNuTjRldTlxK2NGVmozZW1iRmlMY0w0SDdsZzA5aGlUS0VJMVBjZmQxZ0FrUXVEeVZZZ2sxbFk2YTJtL3dhanBsaDdSNUNtQ1RCNmFtUlJicDdtcXgiLCJtYWMiOiIyNWJmMzBkZDE4NjdjMWRiNTAyYjAxM2Q4MThkMmU2ZjY4NmQ4ODI4OTNiMTFkM2Y4ZDMxYjc0MGNlNzYwMjU3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik5KdXpqSWRzcUYyUURMRkY2bU16SUE9PSIsInZhbHVlIjoiak1Za0p2UXhLdUhQdjlNMFd2ai8wbGpCaWVmNnpiUm4zWlpJR1hSbUpVd084aENzZHlyK3VYeVRsSzJBdnFVMVduMit5OWVSUFZlRzgrVEJCZU5paFl3OG1DRjlWVTZGYjlYV2RNMTVtQkJiQ3BSYXYzU3FrMEVtbGs4WTVaZWsiLCJtYWMiOiJmZmIzMTBkNzYxYjk5NGRhNjZiODgwODU3MTNlZDJlNWE3ODQ1ZDJjMTE4NmExNDM3NjQ3NzNiYTMxZmUwNDQ3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 09:59:29 GMT
server: Apache
last-modified: Wed, 23 Oct 2024 21:08:12 GMT
accept-ranges: bytes
content-length: 1076
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 09:59:29 GMT
vary: User-Agent
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML