{
  "type": "URL",
  "indicator": "https://Roblox.ge",
  "general": {
    "sections": [
      "general",
      "url_list",
      "http_scans",
      "screenshot"
    ],
    "indicator": "https://Roblox.ge",
    "type": "url",
    "type_title": "URL",
    "validation": [],
    "base_indicator": {
      "id": 4265159265,
      "indicator": "https://Roblox.ge",
      "type": "URL",
      "title": "",
      "description": "",
      "content": "",
      "access_type": "public",
      "access_reason": ""
    },
    "pulse_info": {
      "count": 1,
      "pulses": [
        {
          "id": "69b60494534a1a876fffd17c",
          "name": "URLert Daily Threat Intel \u2014 2026-03-15",
          "description": "URLert Daily Threat Intel \u2014 2026-03-15\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 50 | Indicators: 86\nConfirmed: 17 | Likely: 25 | Domain intel: 8\nTop threats: Phishing (39), Malware Hosting (6), Malvertising (3), Dropper (1), Unknown (1)\nDomains: av4me.bond, canva.com, chamsswitch.com, ckq.cc, correos-seguimiento.site, cottabase.com, csiae.com, deltaexploits.gg, digitboost.site, dmca-alert.report, eph.cc, fnudprime.com, garmins.gr,...\n\n50 unique threats producing 86 actionable indicators. Generated by URLert automated threat intelligence.",
          "modified": "2026-04-13T23:56:17.348000",
          "created": "2026-03-15T01:00:04.668000",
          "tags": [
            "abuse-of-legitimate-platform",
            "adult-dating-scam",
            "advance-fee-fraud",
            "affinity-scam",
            "aggressive-advertising",
            "apk-malware",
            "arizona-dmv-impersonation",
            "automated-scan",
            "brand-impersonation",
            "browser-extension-distribution",
            "burn-domain",
            "cloaking",
            "cloudfare-impersonation",
            "cloudflare",
            "coca-cola-impersonation",
            "combosquatting",
            "credential-harvesting",
            "crypto-scam",
            "cryptocurrency-scam",
            "daily-threat-intel",
            "deceptive-buttons",
            "deceptive-content",
            "deceptive-domain",
            "deceptive-giveaway",
            "deceptive-lure",
            "deceptive-payment-practices",
            "deceptive-practices",
            "deceptive-site",
            "deceptive-tactics",
            "deceptive-url",
            "dmca-scam",
            "domain-classification",
            "domain-rotation",
            "dropper",
            "ecommerce-fraud",
            "employment-fraud",
            "etsy-impersonation",
            "evasive-tactics",
            "exit-scam",
            "explicit-content",
            "fake-alert",
            "fake-checkout",
            "fake-exchange",
            "fake-investment-scheme",
            "fake-promotion",
            "file-sharing-platform",
            "financial-fraud",
            "financial-scam",
            "financial-sector",
            "financial-services",
            "fraud",
            "fraudulent-identity",
            "fraudulent-marketplace",
            "game-exploits",
            "gaming-community",
            "garmin-impersonation",
            "get-rich-quick-scheme",
            "google-impersonation",
            "high-risk-tld",
            "icu-domain",
            "impersonation",
            "invalid-certificate",
            "logistics-phishing",
            "lookalike-domain",
            "malicious-infrastructure",
            "malicious-redirection",
            "malicious-redirects",
            "malvertising",
            "malware-bundling",
            "malware-delivery",
            "malware-distribution",
            "malware-download",
            "minecraft",
            "misspelled-domain",
            "mobile-malware",
            "nebula-x",
            "new-domain",
            "newly-registered-domain",
            "online-gaming",
            "online-marketplace",
            "payment-card-harvesting",
            "pennsylvania",
            "phishing",
            "phishing-site",
            "pig-butchering",
            "pig-butchering-scam",
            "pii-harvesting",
            "pirated-software",
            "questionnaire-scam",
            "recently-registered-domain",
            "recruitment-phishing",
            "redirect-gateway",
            "redirector",
            "retail",
            "roblox",
            "roblox-impersonation",
            "scam",
            "scam-app",
            "scam-ecommerce",
            "scam-operations",
            "scam-pages",
            "scam-site",
            "shell-site",
            "sms-phishing",
            "social-engineering",
            "spam-distribution",
            "spam-promoted",
            "suspicious-domain",
            "suspicious-scripts",
            "tech-support-phishing",
            "telegram",
            "telegram-impersonation",
            "tesco-impersonation",
            "tld-squatting",
            "toll-scam",
            "traffic-redirection",
            "typosquatting",
            "unregulated-gambling",
            "unsecured-content",
            "unsecured-hosting",
            "unverifiable-leadership",
            "unwanted-software",
            "url-shortener",
            "urlert",
            "usdt",
            "youtube"
          ],
          "references": [
            "https://urlert.com/domain/av4me.bond",
            "https://urlert.com/domain/canva.com",
            "https://urlert.com/domain/chamsswitch.com",
            "https://urlert.com/domain/ckq.cc",
            "https://urlert.com/domain/correos-seguimiento.site",
            "https://urlert.com/domain/cottabase.com",
            "https://urlert.com/domain/csiae.com",
            "https://urlert.com/domain/deltaexploits.gg",
            "https://urlert.com/domain/digitboost.site",
            "https://urlert.com/domain/dmca-alert.report",
            "https://urlert.com/domain/eph.cc",
            "https://urlert.com/domain/fnudprime.com",
            "https://urlert.com/domain/garmins.gr",
            "https://urlert.com/domain/gotstar.net",
            "https://urlert.com/domain/govrtci.help",
            "https://urlert.com/domain/gyweiyd.top",
            "https://urlert.com/domain/hermes-maketting.com",
            "https://urlert.com/domain/kec.az",
            "https://urlert.com/domain/ln.run",
            "https://urlert.com/domain/lvuuqr.com"
          ],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [
            "Financial Services",
            "Government",
            "Logistics / Supply Chain",
            "Media / Entertainment",
            "Retail / E-Commerce"
          ],
          "TLP": "white",
          "cloned_from": null,
          "export_count": 1,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "api",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "urlert_intel",
            "id": "386175",
            "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "domain": 32,
            "URL": 27,
            "hostname": 11
          },
          "indicator_count": 70,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 30,
          "modified_text": "47 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": false,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        }
      ],
      "references": [
        "https://urlert.com/domain/dmca-alert.report",
        "https://urlert.com/domain/csiae.com",
        "https://urlert.com/domain/kec.az",
        "https://urlert.com/domain/av4me.bond",
        "https://urlert.com/domain/gyweiyd.top",
        "https://urlert.com/domain/deltaexploits.gg",
        "https://urlert.com/domain/hermes-maketting.com",
        "https://urlert.com/domain/cottabase.com",
        "https://urlert.com/domain/gotstar.net",
        "https://urlert.com/domain/canva.com",
        "https://urlert.com/domain/govrtci.help",
        "https://urlert.com/domain/garmins.gr",
        "https://urlert.com/domain/ckq.cc",
        "https://urlert.com/domain/eph.cc",
        "https://urlert.com/domain/chamsswitch.com",
        "https://urlert.com/domain/fnudprime.com",
        "https://urlert.com/domain/lvuuqr.com",
        "https://urlert.com/domain/ln.run",
        "https://urlert.com/domain/digitboost.site",
        "https://urlert.com/domain/correos-seguimiento.site"
      ],
      "related": {
        "alienvault": {
          "adversary": [],
          "malware_families": [],
          "industries": [],
          "unique_indicators": 0
        },
        "other": {
          "adversary": [],
          "malware_families": [],
          "industries": [
            "Government",
            "Financial services",
            "Media / entertainment",
            "Retail / e-commerce",
            "Logistics / supply chain"
          ],
          "unique_indicators": 85
        }
      }
    },
    "false_positive": [],
    "alexa": "http://www.alexa.com/siteinfo/Roblox.ge",
    "whois": "http://whois.domaintools.com/Roblox.ge",
    "domain": "Roblox.ge",
    "hostname": "Unavailable"
  },
  "geo": {},
  "geo_ipapicom": {},
  "pulse_count": 1,
  "pulses": [
    {
      "id": "69b60494534a1a876fffd17c",
      "name": "URLert Daily Threat Intel \u2014 2026-03-15",
      "description": "URLert Daily Threat Intel \u2014 2026-03-15\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 50 | Indicators: 86\nConfirmed: 17 | Likely: 25 | Domain intel: 8\nTop threats: Phishing (39), Malware Hosting (6), Malvertising (3), Dropper (1), Unknown (1)\nDomains: av4me.bond, canva.com, chamsswitch.com, ckq.cc, correos-seguimiento.site, cottabase.com, csiae.com, deltaexploits.gg, digitboost.site, dmca-alert.report, eph.cc, fnudprime.com, garmins.gr,...\n\n50 unique threats producing 86 actionable indicators. Generated by URLert automated threat intelligence.",
      "modified": "2026-04-13T23:56:17.348000",
      "created": "2026-03-15T01:00:04.668000",
      "tags": [
        "abuse-of-legitimate-platform",
        "adult-dating-scam",
        "advance-fee-fraud",
        "affinity-scam",
        "aggressive-advertising",
        "apk-malware",
        "arizona-dmv-impersonation",
        "automated-scan",
        "brand-impersonation",
        "browser-extension-distribution",
        "burn-domain",
        "cloaking",
        "cloudfare-impersonation",
        "cloudflare",
        "coca-cola-impersonation",
        "combosquatting",
        "credential-harvesting",
        "crypto-scam",
        "cryptocurrency-scam",
        "daily-threat-intel",
        "deceptive-buttons",
        "deceptive-content",
        "deceptive-domain",
        "deceptive-giveaway",
        "deceptive-lure",
        "deceptive-payment-practices",
        "deceptive-practices",
        "deceptive-site",
        "deceptive-tactics",
        "deceptive-url",
        "dmca-scam",
        "domain-classification",
        "domain-rotation",
        "dropper",
        "ecommerce-fraud",
        "employment-fraud",
        "etsy-impersonation",
        "evasive-tactics",
        "exit-scam",
        "explicit-content",
        "fake-alert",
        "fake-checkout",
        "fake-exchange",
        "fake-investment-scheme",
        "fake-promotion",
        "file-sharing-platform",
        "financial-fraud",
        "financial-scam",
        "financial-sector",
        "financial-services",
        "fraud",
        "fraudulent-identity",
        "fraudulent-marketplace",
        "game-exploits",
        "gaming-community",
        "garmin-impersonation",
        "get-rich-quick-scheme",
        "google-impersonation",
        "high-risk-tld",
        "icu-domain",
        "impersonation",
        "invalid-certificate",
        "logistics-phishing",
        "lookalike-domain",
        "malicious-infrastructure",
        "malicious-redirection",
        "malicious-redirects",
        "malvertising",
        "malware-bundling",
        "malware-delivery",
        "malware-distribution",
        "malware-download",
        "minecraft",
        "misspelled-domain",
        "mobile-malware",
        "nebula-x",
        "new-domain",
        "newly-registered-domain",
        "online-gaming",
        "online-marketplace",
        "payment-card-harvesting",
        "pennsylvania",
        "phishing",
        "phishing-site",
        "pig-butchering",
        "pig-butchering-scam",
        "pii-harvesting",
        "pirated-software",
        "questionnaire-scam",
        "recently-registered-domain",
        "recruitment-phishing",
        "redirect-gateway",
        "redirector",
        "retail",
        "roblox",
        "roblox-impersonation",
        "scam",
        "scam-app",
        "scam-ecommerce",
        "scam-operations",
        "scam-pages",
        "scam-site",
        "shell-site",
        "sms-phishing",
        "social-engineering",
        "spam-distribution",
        "spam-promoted",
        "suspicious-domain",
        "suspicious-scripts",
        "tech-support-phishing",
        "telegram",
        "telegram-impersonation",
        "tesco-impersonation",
        "tld-squatting",
        "toll-scam",
        "traffic-redirection",
        "typosquatting",
        "unregulated-gambling",
        "unsecured-content",
        "unsecured-hosting",
        "unverifiable-leadership",
        "unwanted-software",
        "url-shortener",
        "urlert",
        "usdt",
        "youtube"
      ],
      "references": [
        "https://urlert.com/domain/av4me.bond",
        "https://urlert.com/domain/canva.com",
        "https://urlert.com/domain/chamsswitch.com",
        "https://urlert.com/domain/ckq.cc",
        "https://urlert.com/domain/correos-seguimiento.site",
        "https://urlert.com/domain/cottabase.com",
        "https://urlert.com/domain/csiae.com",
        "https://urlert.com/domain/deltaexploits.gg",
        "https://urlert.com/domain/digitboost.site",
        "https://urlert.com/domain/dmca-alert.report",
        "https://urlert.com/domain/eph.cc",
        "https://urlert.com/domain/fnudprime.com",
        "https://urlert.com/domain/garmins.gr",
        "https://urlert.com/domain/gotstar.net",
        "https://urlert.com/domain/govrtci.help",
        "https://urlert.com/domain/gyweiyd.top",
        "https://urlert.com/domain/hermes-maketting.com",
        "https://urlert.com/domain/kec.az",
        "https://urlert.com/domain/ln.run",
        "https://urlert.com/domain/lvuuqr.com"
      ],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [
        "Financial Services",
        "Government",
        "Logistics / Supply Chain",
        "Media / Entertainment",
        "Retail / E-Commerce"
      ],
      "TLP": "white",
      "cloned_from": null,
      "export_count": 1,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "api",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "urlert_intel",
        "id": "386175",
        "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "domain": 32,
        "URL": 27,
        "hostname": 11
      },
      "indicator_count": 70,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 30,
      "modified_text": "47 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": false,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    }
  ],
  "error": null,
  "vt": {
    "error": "VirusTotal rate limit reached. Try again shortly.",
    "indicator": "https://Roblox.ge",
    "type": "URL"
  },
  "abuseipdb": null,
  "urlhaus": {
    "indicator": "https://Roblox.ge",
    "type": "URL",
    "found": false,
    "verdict": "clean",
    "error": null
  },
  "from_cache": true,
  "_cached_at": 1780261148.8472242
}