{
  "type": "URL",
  "indicator": "https://moonmine.org",
  "general": {
    "sections": [
      "general",
      "url_list",
      "http_scans",
      "screenshot"
    ],
    "indicator": "https://moonmine.org",
    "type": "url",
    "type_title": "URL",
    "validation": [],
    "base_indicator": {
      "id": 4324081529,
      "indicator": "https://moonmine.org",
      "type": "URL",
      "title": "",
      "description": "",
      "content": "",
      "access_type": "public",
      "access_reason": ""
    },
    "pulse_info": {
      "count": 1,
      "pulses": [
        {
          "id": "69e96f2bc858014973680e1f",
          "name": "URLert Daily Threat Intel \u2014 2026-04-23",
          "description": "URLert Daily Threat Intel \u2014 2026-04-23\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 63 | Indicators: 117\nConfirmed: 18 | Likely: 43 | Domain intel: 2\nTop threats: Phishing (54), Malvertising (4), Dropper (2), Unknown (2), Malware Hosting (1)\nDomains: 0lprvs.click, abre.ai, bunnyband.com, ca-pageo.cyou, ca-pageo.web.id, chainvoltgrid.com, chara-gacha.com, citly.me, dpd-lanviro.link, dpdlocasa.shop, dpdlocass.shop, eu.cc, euprava-gov.lat...\n\n63 unique threats producing 117 actionable indicators. Generated by URLert automated threat intelligence.",
          "modified": "2026-05-23T00:06:10.121000",
          "created": "2026-04-23T01:00:27.807000",
          "tags": [
            "abuse-of-legitimate-service",
            "account-suspended",
            "action",
            "aggressive-ads",
            "airbnb",
            "airdrop-scam",
            "anonymized-infrastructure",
            "automated-scan",
            "brand-impersonation",
            "captcha-scam",
            "chrome-hearts",
            "cloaking",
            "cloudflare-protected",
            "credential-harvesting",
            "crypto-casino-scam",
            "crypto-mining-scam",
            "cryptocurrency",
            "cryptocurrency-scam",
            "daily-threat-intel",
            "data-harvesting",
            "dating-scam",
            "deceptive-advertising",
            "deceptive-challenge",
            "deceptive-content",
            "deceptive-domain",
            "deceptive-practices",
            "deceptive-tactics",
            "delivery-scam",
            "domain-classification",
            "dpd-impersonation",
            "dpd-local-impersonation",
            "dropshipping-scam",
            "e-commerce-fraud",
            "elon-musk-impersonation",
            "evasion",
            "evasion-technique",
            "fake-dating-service",
            "fake-discounts",
            "fake-engagement",
            "fake-giveaway",
            "fake-login-portal",
            "fake-registration",
            "fake-security-alert",
            "fake-verification",
            "financial-fraud",
            "financial-impersonation",
            "financial-scam",
            "financial-scheme",
            "financial-sector",
            "financial-service-impersonation",
            "fiverr-impersonation",
            "fraud-alert",
            "free-hosting",
            "fuel-voucher-scam",
            "game-downloads",
            "get-paid-to-scheme",
            "gibberish-domain",
            "giveaway-scam",
            "global-futures-options-limited",
            "google-docs-abuse",
            "government",
            "government-impersonation",
            "high-risk",
            "high-risk-alert",
            "high-risk-tld",
            "human-verification-scam",
            "impersonation",
            "information-collection",
            "information-harvesting",
            "information-theft",
            "investment-scam",
            "israel-post-impersonation",
            "linkvertise",
            "logistics-impersonation",
            "low-reputation",
            "low-reputation-domain",
            "lure",
            "macos-impersonation",
            "malicious-infrastructure",
            "malicious-payloads",
            "malicious-site",
            "malvertising",
            "malvertising-gateway",
            "malware-delivery",
            "malware-distribution",
            "mexc-impersonation",
            "mining-scam",
            "mobile-number-harvesting",
            "monetized-url-shortener",
            "new-domain",
            "newly-registered-domain",
            "ontario-government",
            "package-delivery-scam",
            "payment-information-harvesting",
            "peopleperhour-impersonation",
            "petrom",
            "phishing",
            "phishing-page",
            "phishing-risk",
            "phishing-site",
            "privilege-escalation",
            "random-domain",
            "redirect",
            "redirect-chain",
            "redirect-chains",
            "riskware",
            "roblox",
            "roblox-impersonation",
            "scam",
            "scam-allegations",
            "scam-lure",
            "scam-storefront",
            "serbia",
            "serviceontario",
            "social-engineering",
            "suspicious-domain",
            "targeted-phishing",
            "task-based-earning-scam",
            "task-based-scam",
            "task-scam",
            "tiktok-impersonation",
            "tracking-redirect",
            "traffic-redirection",
            "trojan",
            "typosquatting",
            "unwanted-software",
            "unwanted-software-distribution",
            "url-shortener",
            "urlert",
            "user-deception",
            "vgen-impersonation",
            "wallet-draining"
          ],
          "references": [
            "https://urlert.com/domain/0lprvs.click",
            "https://urlert.com/domain/abre.ai",
            "https://urlert.com/domain/bunnyband.com",
            "https://urlert.com/domain/ca-pageo.cyou",
            "https://urlert.com/domain/ca-pageo.web.id",
            "https://urlert.com/domain/chainvoltgrid.com",
            "https://urlert.com/domain/chara-gacha.com",
            "https://urlert.com/domain/citly.me",
            "https://urlert.com/domain/dpd-lanviro.link",
            "https://urlert.com/domain/dpdlocasa.shop",
            "https://urlert.com/domain/dpdlocass.shop",
            "https://urlert.com/domain/eu.cc",
            "https://urlert.com/domain/euprava-gov.lat",
            "https://urlert.com/domain/flowtrackr.site",
            "https://urlert.com/domain/geeduu.com",
            "https://urlert.com/domain/go2wa.cc",
            "https://urlert.com/domain/google.com",
            "https://urlert.com/domain/homebnb.sbs",
            "https://urlert.com/domain/httpps-www-roblox.co",
            "https://urlert.com/domain/huighaverlag.nl"
          ],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [
            "Financial Services",
            "Government",
            "Hospitality",
            "Logistics / Supply Chain",
            "Media / Entertainment",
            "Retail / E-Commerce",
            "Technology"
          ],
          "TLP": "white",
          "cloned_from": null,
          "export_count": 0,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "api",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "urlert_intel",
            "id": "386175",
            "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "domain": 37,
            "URL": 40,
            "hostname": 13
          },
          "indicator_count": 90,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 32,
          "modified_text": "8 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": false,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        }
      ],
      "references": [
        "https://urlert.com/domain/dpd-lanviro.link",
        "https://urlert.com/domain/citly.me",
        "https://urlert.com/domain/eu.cc",
        "https://urlert.com/domain/go2wa.cc",
        "https://urlert.com/domain/httpps-www-roblox.co",
        "https://urlert.com/domain/chara-gacha.com",
        "https://urlert.com/domain/huighaverlag.nl",
        "https://urlert.com/domain/abre.ai",
        "https://urlert.com/domain/bunnyband.com",
        "https://urlert.com/domain/flowtrackr.site",
        "https://urlert.com/domain/0lprvs.click",
        "https://urlert.com/domain/dpdlocass.shop",
        "https://urlert.com/domain/ca-pageo.web.id",
        "https://urlert.com/domain/geeduu.com",
        "https://urlert.com/domain/dpdlocasa.shop",
        "https://urlert.com/domain/euprava-gov.lat",
        "https://urlert.com/domain/google.com",
        "https://urlert.com/domain/chainvoltgrid.com",
        "https://urlert.com/domain/ca-pageo.cyou",
        "https://urlert.com/domain/homebnb.sbs"
      ],
      "related": {
        "alienvault": {
          "adversary": [],
          "malware_families": [],
          "industries": [],
          "unique_indicators": 0
        },
        "other": {
          "adversary": [],
          "malware_families": [],
          "industries": [
            "Government",
            "Hospitality",
            "Retail / e-commerce",
            "Media / entertainment",
            "Logistics / supply chain",
            "Financial services",
            "Technology"
          ],
          "unique_indicators": 114
        }
      }
    },
    "false_positive": [],
    "alexa": "http://www.alexa.com/siteinfo/moonmine.org",
    "whois": "http://whois.domaintools.com/moonmine.org",
    "domain": "moonmine.org",
    "hostname": "Unavailable"
  },
  "geo": {},
  "geo_ipapicom": {},
  "pulse_count": 1,
  "pulses": [
    {
      "id": "69e96f2bc858014973680e1f",
      "name": "URLert Daily Threat Intel \u2014 2026-04-23",
      "description": "URLert Daily Threat Intel \u2014 2026-04-23\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 63 | Indicators: 117\nConfirmed: 18 | Likely: 43 | Domain intel: 2\nTop threats: Phishing (54), Malvertising (4), Dropper (2), Unknown (2), Malware Hosting (1)\nDomains: 0lprvs.click, abre.ai, bunnyband.com, ca-pageo.cyou, ca-pageo.web.id, chainvoltgrid.com, chara-gacha.com, citly.me, dpd-lanviro.link, dpdlocasa.shop, dpdlocass.shop, eu.cc, euprava-gov.lat...\n\n63 unique threats producing 117 actionable indicators. Generated by URLert automated threat intelligence.",
      "modified": "2026-05-23T00:06:10.121000",
      "created": "2026-04-23T01:00:27.807000",
      "tags": [
        "abuse-of-legitimate-service",
        "account-suspended",
        "action",
        "aggressive-ads",
        "airbnb",
        "airdrop-scam",
        "anonymized-infrastructure",
        "automated-scan",
        "brand-impersonation",
        "captcha-scam",
        "chrome-hearts",
        "cloaking",
        "cloudflare-protected",
        "credential-harvesting",
        "crypto-casino-scam",
        "crypto-mining-scam",
        "cryptocurrency",
        "cryptocurrency-scam",
        "daily-threat-intel",
        "data-harvesting",
        "dating-scam",
        "deceptive-advertising",
        "deceptive-challenge",
        "deceptive-content",
        "deceptive-domain",
        "deceptive-practices",
        "deceptive-tactics",
        "delivery-scam",
        "domain-classification",
        "dpd-impersonation",
        "dpd-local-impersonation",
        "dropshipping-scam",
        "e-commerce-fraud",
        "elon-musk-impersonation",
        "evasion",
        "evasion-technique",
        "fake-dating-service",
        "fake-discounts",
        "fake-engagement",
        "fake-giveaway",
        "fake-login-portal",
        "fake-registration",
        "fake-security-alert",
        "fake-verification",
        "financial-fraud",
        "financial-impersonation",
        "financial-scam",
        "financial-scheme",
        "financial-sector",
        "financial-service-impersonation",
        "fiverr-impersonation",
        "fraud-alert",
        "free-hosting",
        "fuel-voucher-scam",
        "game-downloads",
        "get-paid-to-scheme",
        "gibberish-domain",
        "giveaway-scam",
        "global-futures-options-limited",
        "google-docs-abuse",
        "government",
        "government-impersonation",
        "high-risk",
        "high-risk-alert",
        "high-risk-tld",
        "human-verification-scam",
        "impersonation",
        "information-collection",
        "information-harvesting",
        "information-theft",
        "investment-scam",
        "israel-post-impersonation",
        "linkvertise",
        "logistics-impersonation",
        "low-reputation",
        "low-reputation-domain",
        "lure",
        "macos-impersonation",
        "malicious-infrastructure",
        "malicious-payloads",
        "malicious-site",
        "malvertising",
        "malvertising-gateway",
        "malware-delivery",
        "malware-distribution",
        "mexc-impersonation",
        "mining-scam",
        "mobile-number-harvesting",
        "monetized-url-shortener",
        "new-domain",
        "newly-registered-domain",
        "ontario-government",
        "package-delivery-scam",
        "payment-information-harvesting",
        "peopleperhour-impersonation",
        "petrom",
        "phishing",
        "phishing-page",
        "phishing-risk",
        "phishing-site",
        "privilege-escalation",
        "random-domain",
        "redirect",
        "redirect-chain",
        "redirect-chains",
        "riskware",
        "roblox",
        "roblox-impersonation",
        "scam",
        "scam-allegations",
        "scam-lure",
        "scam-storefront",
        "serbia",
        "serviceontario",
        "social-engineering",
        "suspicious-domain",
        "targeted-phishing",
        "task-based-earning-scam",
        "task-based-scam",
        "task-scam",
        "tiktok-impersonation",
        "tracking-redirect",
        "traffic-redirection",
        "trojan",
        "typosquatting",
        "unwanted-software",
        "unwanted-software-distribution",
        "url-shortener",
        "urlert",
        "user-deception",
        "vgen-impersonation",
        "wallet-draining"
      ],
      "references": [
        "https://urlert.com/domain/0lprvs.click",
        "https://urlert.com/domain/abre.ai",
        "https://urlert.com/domain/bunnyband.com",
        "https://urlert.com/domain/ca-pageo.cyou",
        "https://urlert.com/domain/ca-pageo.web.id",
        "https://urlert.com/domain/chainvoltgrid.com",
        "https://urlert.com/domain/chara-gacha.com",
        "https://urlert.com/domain/citly.me",
        "https://urlert.com/domain/dpd-lanviro.link",
        "https://urlert.com/domain/dpdlocasa.shop",
        "https://urlert.com/domain/dpdlocass.shop",
        "https://urlert.com/domain/eu.cc",
        "https://urlert.com/domain/euprava-gov.lat",
        "https://urlert.com/domain/flowtrackr.site",
        "https://urlert.com/domain/geeduu.com",
        "https://urlert.com/domain/go2wa.cc",
        "https://urlert.com/domain/google.com",
        "https://urlert.com/domain/homebnb.sbs",
        "https://urlert.com/domain/httpps-www-roblox.co",
        "https://urlert.com/domain/huighaverlag.nl"
      ],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [
        "Financial Services",
        "Government",
        "Hospitality",
        "Logistics / Supply Chain",
        "Media / Entertainment",
        "Retail / E-Commerce",
        "Technology"
      ],
      "TLP": "white",
      "cloned_from": null,
      "export_count": 0,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "api",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "urlert_intel",
        "id": "386175",
        "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "domain": 37,
        "URL": 40,
        "hostname": 13
      },
      "indicator_count": 90,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 32,
      "modified_text": "8 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": false,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    }
  ],
  "error": null,
  "vt": {
    "error": "VirusTotal rate limit reached. Try again shortly.",
    "indicator": "https://moonmine.org",
    "type": "URL"
  },
  "abuseipdb": null,
  "urlhaus": {
    "indicator": "https://moonmine.org",
    "type": "URL",
    "found": false,
    "verdict": "clean",
    "error": null
  },
  "from_cache": true,
  "_cached_at": 1780223730.1748228
}