{
  "type": "URL",
  "indicator": "https://m.facebook.com/",
  "general": {
    "sections": [
      "general",
      "url_list",
      "http_scans",
      "screenshot"
    ],
    "indicator": "https://m.facebook.com/",
    "type": "url",
    "type_title": "URL",
    "validation": [
      {
        "source": "alexa",
        "message": "Alexa rank: #7",
        "name": "Listed on Alexa"
      },
      {
        "source": "akamai",
        "message": "Akamai rank: #5",
        "name": "Akamai Popular Domain"
      },
      {
        "source": "whitelist",
        "message": "Whitelisted domain facebook.com",
        "name": "Whitelisted domain"
      },
      {
        "source": "majestic",
        "message": "Whitelisted domain facebook.com",
        "name": "Whitelisted domain"
      }
    ],
    "base_indicator": {
      "id": 2603830040,
      "indicator": "https://m.facebook.com/",
      "type": "URL",
      "title": "",
      "description": "",
      "content": "",
      "access_type": "public",
      "access_reason": ""
    },
    "pulse_info": {
      "count": 4,
      "pulses": [
        {
          "id": "69c236a2d4fd8035ff724bfd",
          "name": "Privacy Notice | Newfold Digital",
          "description": "A full list of key information about the Netherlands-based RIPE Network Coordination Centre (RIPE), as compiled by the BBC's Panorama programme, as well as the official website:.<<pretext",
          "modified": "2026-03-24T07:24:01.470000",
          "created": "2026-03-24T07:00:50.366000",
          "tags": [
            "ripe ncc",
            "ripe network",
            "ripe",
            "organization",
            "orgid",
            "city",
            "orgabusehandle",
            "abuse contact",
            "orgabusephone",
            "de status",
            "handle",
            "address range",
            "cidr",
            "allocation type",
            "allocated pa",
            "status",
            "whois server",
            "entity dtagnic",
            "entity dtagripe",
            "services",
            "net100",
            "net1000000",
            "stateprov",
            "rabusehandle",
            "loudoun county",
            "postalcode",
            "mcics",
            "nethandle",
            "mcics address",
            "pkwy city",
            "orgtechhandle",
            "key identifier",
            "x509v3 subject",
            "v3 serial",
            "number",
            "issuer",
            "cnsectigo rsa",
            "secure server",
            "ca cgb",
            "subject public",
            "key info",
            "cncomodo rsa",
            "ca limited",
            "validity",
            "server",
            "registrar abuse",
            "date",
            "iana id",
            "contact phone",
            "dnssec",
            "domain status",
            "registrar url",
            "registrar whois",
            "registrar",
            "registrant ext",
            "corehub",
            "expiration date",
            "registry domain",
            "registrar iana",
            "street",
            "code",
            "redacted for",
            "privacy tech",
            "postal code",
            "registrant fax",
            "domain id",
            "admin country",
            "admin postal",
            "ma admin",
            "email",
            "registrant city",
            "tierranet",
            "fax ext",
            "privacy",
            "whois privacy",
            "san diego",
            "privacy admin",
            "cus olet",
            "encrypt cnr13",
            "key algorithm",
            "domain name",
            "contact email",
            "record type",
            "ttl value",
            "registrant name",
            "creation date",
            "iframe tags",
            "language",
            "html document",
            "unicode text",
            "utf8 text",
            "gazebo model",
            "configuration",
            "markup language",
            "doctype",
            "deny",
            "secchuamodel",
            "excellent",
            "php script",
            "crlf line",
            "php source"
          ],
          "references": [],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [],
          "TLP": "green",
          "cloned_from": null,
          "export_count": 0,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "web",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "msudosos",
            "id": "381696",
            "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "URL": 208,
            "hostname": 184,
            "IPv4": 25,
            "domain": 51,
            "email": 28,
            "FileHash-SHA256": 194,
            "CIDR": 16,
            "FileHash-MD5": 67,
            "FileHash-SHA1": 263,
            "CVE": 4
          },
          "indicator_count": 1040,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 48,
          "modified_text": "26 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": true,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        },
        {
          "id": "6570a581b1024ea61979da96",
          "name": "Quasar - Dark Web Instagram Account | Link found | Remote Access Trojan (RAT)",
          "description": "",
          "modified": "2023-12-06T16:46:57.782000",
          "created": "2023-12-06T16:46:57.782000",
          "tags": [],
          "references": [],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [],
          "TLP": "green",
          "cloned_from": null,
          "export_count": 9,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "api",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "StreamMiningEx",
            "id": "262917",
            "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "CVE": 3,
            "FileHash-SHA256": 5791,
            "hostname": 3255,
            "domain": 2317,
            "FileHash-MD5": 44,
            "FileHash-SHA1": 34,
            "URL": 11513
          },
          "indicator_count": 22957,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 111,
          "modified_text": "865 days ago ",
          "is_modified": false,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": true,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        },
        {
          "id": "6522e04251320b8cb077edf3",
          "name": "IG exploit",
          "description": "exploit_source, scanning_host, unsafe inline, invalid field 'https",
          "modified": "2023-11-07T14:04:04.942000",
          "created": "2023-10-08T17:00:50.661000",
          "tags": [
            "ssl certificate",
            "whois record",
            "threat roundup",
            "contacted",
            "march",
            "execution",
            "historical ssl",
            "july",
            "formpore",
            "referrer",
            "august",
            "copy",
            "april",
            "february",
            "falcon sandbox",
            "united",
            "flag",
            "domain address",
            "registrarsec",
            "instagram",
            "llc name",
            "server",
            "date",
            "contacted hosts",
            "ip address",
            "misc attack",
            "et tor",
            "known tor",
            "relayrouter",
            "exit",
            "node traffic",
            "http traffic",
            "http",
            "suricata alerts",
            "event category",
            "sha1",
            "copy sha1",
            "sha256",
            "copy sha256",
            "copy md5",
            "pattern match",
            "mutex",
            "hashtablemutex",
            "local",
            "ascii text",
            "appdata",
            "temp",
            "document file",
            "v2 document",
            "localappdata",
            "html document",
            "utf8 unicode",
            "crlf nel",
            "ms windows",
            "blacklist",
            "windows nt",
            "file",
            "geckohost",
            "windir"
          ],
          "references": [],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [
            {
              "id": "T1115",
              "name": "Clipboard Data",
              "display_name": "T1115 - Clipboard Data"
            },
            {
              "id": "T1027",
              "name": "Obfuscated Files or Information",
              "display_name": "T1027 - Obfuscated Files or Information"
            }
          ],
          "industries": [],
          "TLP": "green",
          "cloned_from": null,
          "export_count": 7,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "web",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "scoreblue",
            "id": "254100",
            "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_254100/resized/80/avatar_3b9c358f36.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "FileHash-MD5": 80,
            "FileHash-SHA1": 80,
            "FileHash-SHA256": 498,
            "URL": 98,
            "domain": 27,
            "hostname": 244
          },
          "indicator_count": 1027,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 224,
          "modified_text": "894 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": true,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        },
        {
          "id": "650a0b7c9a6b3c5d0a2a3960",
          "name": "Quasar - Dark Web Instagram Account | Link found | Remote Access Trojan (RAT)",
          "description": "Link: apple.instagram.com \nQuasar is a lightweight, publicly available open-source Remote Access Trojan (RAT). Used by a variety of attackers.  Typically packed to make analysis of the source demanding.\nAccount appears to have been breached, operational in dark web. Dead host.",
          "modified": "2023-10-19T14:04:37.381000",
          "created": "2023-09-19T20:58:36.137000",
          "tags": [
            "contacted",
            "threat roundup",
            "execution",
            "ssl certificate",
            "dark web",
            "crypto threat",
            "resolutions",
            "referrer",
            "stealer",
            "quasar",
            "asyncrat",
            "error",
            "social engineering",
            "iPhone phishing",
            "Apple phishing",
            "email phishing",
            "emotet",
            "remote",
            "attacks"
          ],
          "references": [
            "Alienvault OTX",
            "Data Analysis",
            "Online Research",
            "WebTools"
          ],
          "public": 1,
          "adversary": "",
          "targeted_countries": [
            "United States of America",
            "India"
          ],
          "malware_families": [
            {
              "id": "Backdoor:MSIL/AsyncRAT",
              "display_name": "Backdoor:MSIL/AsyncRAT",
              "target": "/malware/Backdoor:MSIL/AsyncRAT"
            },
            {
              "id": "Backdoor:MSIL/QuasarRat",
              "display_name": "Backdoor:MSIL/QuasarRat",
              "target": "/malware/Backdoor:MSIL/QuasarRat"
            }
          ],
          "attack_ids": [
            {
              "id": "T1003",
              "name": "OS Credential Dumping",
              "display_name": "T1003 - OS Credential Dumping"
            },
            {
              "id": "T1105",
              "name": "Ingress Tool Transfer",
              "display_name": "T1105 - Ingress Tool Transfer"
            },
            {
              "id": "T1068",
              "name": "Exploitation for Privilege Escalation",
              "display_name": "T1068 - Exploitation for Privilege Escalation"
            },
            {
              "id": "T1548",
              "name": "Abuse Elevation Control Mechanism",
              "display_name": "T1548 - Abuse Elevation Control Mechanism"
            }
          ],
          "industries": [
            "Media",
            "Social Media",
            "Technology",
            "Hacking"
          ],
          "TLP": "white",
          "cloned_from": null,
          "export_count": 31,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "web",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "OctoSeek",
            "id": "243548",
            "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_243548/resized/80/avatar_3b9c358f36.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "FileHash-MD5": 44,
            "FileHash-SHA1": 34,
            "FileHash-SHA256": 5791,
            "URL": 11513,
            "domain": 2317,
            "hostname": 3255,
            "CVE": 3
          },
          "indicator_count": 22957,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 225,
          "modified_text": "913 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": true,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        }
      ],
      "references": [
        "Data Analysis",
        "Alienvault OTX",
        "WebTools",
        "Online Research"
      ],
      "related": {
        "alienvault": {
          "adversary": [],
          "malware_families": [],
          "industries": [],
          "unique_indicators": 0
        },
        "other": {
          "adversary": [],
          "malware_families": [
            "Backdoor:msil/asyncrat",
            "Backdoor:msil/quasarrat"
          ],
          "industries": [
            "Media",
            "Technology",
            "Hacking",
            "Social media"
          ],
          "unique_indicators": 24853
        }
      }
    },
    "false_positive": [],
    "alexa": "http://www.alexa.com/siteinfo/facebook.com",
    "whois": "http://whois.domaintools.com/facebook.com",
    "domain": "facebook.com",
    "hostname": "m.facebook.com"
  },
  "geo": {},
  "geo_ipapicom": {},
  "pulse_count": 4,
  "pulses": [
    {
      "id": "69c236a2d4fd8035ff724bfd",
      "name": "Privacy Notice | Newfold Digital",
      "description": "A full list of key information about the Netherlands-based RIPE Network Coordination Centre (RIPE), as compiled by the BBC's Panorama programme, as well as the official website:.<<pretext",
      "modified": "2026-03-24T07:24:01.470000",
      "created": "2026-03-24T07:00:50.366000",
      "tags": [
        "ripe ncc",
        "ripe network",
        "ripe",
        "organization",
        "orgid",
        "city",
        "orgabusehandle",
        "abuse contact",
        "orgabusephone",
        "de status",
        "handle",
        "address range",
        "cidr",
        "allocation type",
        "allocated pa",
        "status",
        "whois server",
        "entity dtagnic",
        "entity dtagripe",
        "services",
        "net100",
        "net1000000",
        "stateprov",
        "rabusehandle",
        "loudoun county",
        "postalcode",
        "mcics",
        "nethandle",
        "mcics address",
        "pkwy city",
        "orgtechhandle",
        "key identifier",
        "x509v3 subject",
        "v3 serial",
        "number",
        "issuer",
        "cnsectigo rsa",
        "secure server",
        "ca cgb",
        "subject public",
        "key info",
        "cncomodo rsa",
        "ca limited",
        "validity",
        "server",
        "registrar abuse",
        "date",
        "iana id",
        "contact phone",
        "dnssec",
        "domain status",
        "registrar url",
        "registrar whois",
        "registrar",
        "registrant ext",
        "corehub",
        "expiration date",
        "registry domain",
        "registrar iana",
        "street",
        "code",
        "redacted for",
        "privacy tech",
        "postal code",
        "registrant fax",
        "domain id",
        "admin country",
        "admin postal",
        "ma admin",
        "email",
        "registrant city",
        "tierranet",
        "fax ext",
        "privacy",
        "whois privacy",
        "san diego",
        "privacy admin",
        "cus olet",
        "encrypt cnr13",
        "key algorithm",
        "domain name",
        "contact email",
        "record type",
        "ttl value",
        "registrant name",
        "creation date",
        "iframe tags",
        "language",
        "html document",
        "unicode text",
        "utf8 text",
        "gazebo model",
        "configuration",
        "markup language",
        "doctype",
        "deny",
        "secchuamodel",
        "excellent",
        "php script",
        "crlf line",
        "php source"
      ],
      "references": [],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [],
      "TLP": "green",
      "cloned_from": null,
      "export_count": 0,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "web",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "msudosos",
        "id": "381696",
        "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "URL": 208,
        "hostname": 184,
        "IPv4": 25,
        "domain": 51,
        "email": 28,
        "FileHash-SHA256": 194,
        "CIDR": 16,
        "FileHash-MD5": 67,
        "FileHash-SHA1": 263,
        "CVE": 4
      },
      "indicator_count": 1040,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 48,
      "modified_text": "26 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": true,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    },
    {
      "id": "6570a581b1024ea61979da96",
      "name": "Quasar - Dark Web Instagram Account | Link found | Remote Access Trojan (RAT)",
      "description": "",
      "modified": "2023-12-06T16:46:57.782000",
      "created": "2023-12-06T16:46:57.782000",
      "tags": [],
      "references": [],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [],
      "TLP": "green",
      "cloned_from": null,
      "export_count": 9,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "api",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "StreamMiningEx",
        "id": "262917",
        "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "CVE": 3,
        "FileHash-SHA256": 5791,
        "hostname": 3255,
        "domain": 2317,
        "FileHash-MD5": 44,
        "FileHash-SHA1": 34,
        "URL": 11513
      },
      "indicator_count": 22957,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 111,
      "modified_text": "865 days ago ",
      "is_modified": false,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": true,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    },
    {
      "id": "6522e04251320b8cb077edf3",
      "name": "IG exploit",
      "description": "exploit_source, scanning_host, unsafe inline, invalid field 'https",
      "modified": "2023-11-07T14:04:04.942000",
      "created": "2023-10-08T17:00:50.661000",
      "tags": [
        "ssl certificate",
        "whois record",
        "threat roundup",
        "contacted",
        "march",
        "execution",
        "historical ssl",
        "july",
        "formpore",
        "referrer",
        "august",
        "copy",
        "april",
        "february",
        "falcon sandbox",
        "united",
        "flag",
        "domain address",
        "registrarsec",
        "instagram",
        "llc name",
        "server",
        "date",
        "contacted hosts",
        "ip address",
        "misc attack",
        "et tor",
        "known tor",
        "relayrouter",
        "exit",
        "node traffic",
        "http traffic",
        "http",
        "suricata alerts",
        "event category",
        "sha1",
        "copy sha1",
        "sha256",
        "copy sha256",
        "copy md5",
        "pattern match",
        "mutex",
        "hashtablemutex",
        "local",
        "ascii text",
        "appdata",
        "temp",
        "document file",
        "v2 document",
        "localappdata",
        "html document",
        "utf8 unicode",
        "crlf nel",
        "ms windows",
        "blacklist",
        "windows nt",
        "file",
        "geckohost",
        "windir"
      ],
      "references": [],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [
        {
          "id": "T1115",
          "name": "Clipboard Data",
          "display_name": "T1115 - Clipboard Data"
        },
        {
          "id": "T1027",
          "name": "Obfuscated Files or Information",
          "display_name": "T1027 - Obfuscated Files or Information"
        }
      ],
      "industries": [],
      "TLP": "green",
      "cloned_from": null,
      "export_count": 7,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "web",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "scoreblue",
        "id": "254100",
        "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_254100/resized/80/avatar_3b9c358f36.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "FileHash-MD5": 80,
        "FileHash-SHA1": 80,
        "FileHash-SHA256": 498,
        "URL": 98,
        "domain": 27,
        "hostname": 244
      },
      "indicator_count": 1027,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 224,
      "modified_text": "894 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": true,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    },
    {
      "id": "650a0b7c9a6b3c5d0a2a3960",
      "name": "Quasar - Dark Web Instagram Account | Link found | Remote Access Trojan (RAT)",
      "description": "Link: apple.instagram.com \nQuasar is a lightweight, publicly available open-source Remote Access Trojan (RAT). Used by a variety of attackers.  Typically packed to make analysis of the source demanding.\nAccount appears to have been breached, operational in dark web. Dead host.",
      "modified": "2023-10-19T14:04:37.381000",
      "created": "2023-09-19T20:58:36.137000",
      "tags": [
        "contacted",
        "threat roundup",
        "execution",
        "ssl certificate",
        "dark web",
        "crypto threat",
        "resolutions",
        "referrer",
        "stealer",
        "quasar",
        "asyncrat",
        "error",
        "social engineering",
        "iPhone phishing",
        "Apple phishing",
        "email phishing",
        "emotet",
        "remote",
        "attacks"
      ],
      "references": [
        "Alienvault OTX",
        "Data Analysis",
        "Online Research",
        "WebTools"
      ],
      "public": 1,
      "adversary": "",
      "targeted_countries": [
        "United States of America",
        "India"
      ],
      "malware_families": [
        {
          "id": "Backdoor:MSIL/AsyncRAT",
          "display_name": "Backdoor:MSIL/AsyncRAT",
          "target": "/malware/Backdoor:MSIL/AsyncRAT"
        },
        {
          "id": "Backdoor:MSIL/QuasarRat",
          "display_name": "Backdoor:MSIL/QuasarRat",
          "target": "/malware/Backdoor:MSIL/QuasarRat"
        }
      ],
      "attack_ids": [
        {
          "id": "T1003",
          "name": "OS Credential Dumping",
          "display_name": "T1003 - OS Credential Dumping"
        },
        {
          "id": "T1105",
          "name": "Ingress Tool Transfer",
          "display_name": "T1105 - Ingress Tool Transfer"
        },
        {
          "id": "T1068",
          "name": "Exploitation for Privilege Escalation",
          "display_name": "T1068 - Exploitation for Privilege Escalation"
        },
        {
          "id": "T1548",
          "name": "Abuse Elevation Control Mechanism",
          "display_name": "T1548 - Abuse Elevation Control Mechanism"
        }
      ],
      "industries": [
        "Media",
        "Social Media",
        "Technology",
        "Hacking"
      ],
      "TLP": "white",
      "cloned_from": null,
      "export_count": 31,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "web",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "OctoSeek",
        "id": "243548",
        "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_243548/resized/80/avatar_3b9c358f36.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "FileHash-MD5": 44,
        "FileHash-SHA1": 34,
        "FileHash-SHA256": 5791,
        "URL": 11513,
        "domain": 2317,
        "hostname": 3255,
        "CVE": 3
      },
      "indicator_count": 22957,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 225,
      "modified_text": "913 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": true,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    }
  ],
  "error": null,
  "vt": {
    "error": "VirusTotal rate limit reached. Try again shortly.",
    "indicator": "https://m.facebook.com/",
    "type": "URL"
  },
  "abuseipdb": null,
  "urlhaus": {
    "indicator": "https://m.facebook.com/",
    "type": "URL",
    "found": false,
    "verdict": "clean",
    "error": null
  },
  "from_cache": true,
  "_cached_at": 1776641355.6821423
}