{
  "type": "URL",
  "indicator": "https://rdap.arin.net/registry/entity/DO-13",
  "general": {
    "sections": [
      "general",
      "url_list",
      "http_scans",
      "screenshot"
    ],
    "indicator": "https://rdap.arin.net/registry/entity/DO-13",
    "type": "url",
    "type_title": "URL",
    "validation": [
      {
        "source": "akamai",
        "message": "Akamai rank: #6937",
        "name": "Akamai Popular Domain"
      },
      {
        "source": "whitelist",
        "message": "Whitelisted domain arin.net",
        "name": "Whitelisted domain"
      },
      {
        "source": "majestic",
        "message": "Whitelisted domain arin.net",
        "name": "Whitelisted domain"
      }
    ],
    "base_indicator": {
      "id": 4335668421,
      "indicator": "https://rdap.arin.net/registry/entity/DO-13",
      "type": "URL",
      "title": "",
      "description": "",
      "content": "",
      "access_type": "public",
      "access_reason": ""
    },
    "pulse_info": {
      "count": 2,
      "pulses": [
        {
          "id": "69f3322b53bd6368005d9ac9",
          "name": "Sinkholes, Backdoors, Trojans, and Exploits.",
          "description": "[ full text of this article, which has now been published, is published on the website of the European Union, the EU and the United Arab Emirates (UAE), and can be viewed here.]<not relevant pretext except for perhaps the certificate chain. Cryptographic Validation is imperitive for all agencies, especially those who are hosting a person known or unknown, on their server. Trust bypass opens a giant watering hole that systemically can compromise the entire internet. This is an epic failure in all things IT and a destructive cover for the lifelong of residual internet failures and probelms it will have.",
          "modified": "2026-05-30T13:26:53.645000",
          "created": "2026-04-30T10:42:51.884000",
          "tags": [
            "ipv4",
            "filehashmd5",
            "filehashsha256",
            "show",
            "search",
            "type indicator",
            "role title",
            "added active",
            "related pulses",
            "united",
            "pdfkit.net",
            "sinkhole",
            "backdoor",
            "trojan",
            "exploit",
            "server misuse",
            "entity misappropriation",
            "unsigned certificates",
            "? of apple jailbreak",
            "telecom insider",
            "spyware gone wrong",
            "negligent",
            "stalkerware",
            "retrieval of sent evidence",
            "misuse of systems",
            "hiding malicious artifacts on muni pages exploiting the mass",
            "intentional watering hole",
            "unsigned DNSSEC*",
            "known malic pdfs left open for public clickbait",
            "pdfs connect to a cryptomine",
            "hx of cryptomine",
            "IT abuse",
            "siloh on purpose",
            "active bystander",
            "whistleblower",
            "failed PD intervention",
            "failure to investigate"
          ],
          "references": [],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [],
          "TLP": "green",
          "cloned_from": null,
          "export_count": 0,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "web",
          "validator_count": 0,
          "comment_count": 1,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "msudosos",
            "id": "381696",
            "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "FileHash-MD5": 2356,
            "FileHash-SHA1": 2407,
            "FileHash-SHA256": 2479,
            "email": 2,
            "domain": 169,
            "URL": 1549,
            "hostname": 1516,
            "URI": 1,
            "CIDR": 7
          },
          "indicator_count": 10486,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 69,
          "modified_text": "2 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": true,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        },
        {
          "id": "69fbebd201b2600be49123bf",
          "name": "Project_Gifted1_Worker_gifted1_2026-05-07 CREATED 32 MINUTES AGO by sovereign1 clone",
          "description": "",
          "modified": "2026-05-07T01:39:07.414000",
          "created": "2026-05-07T01:33:06.383000",
          "tags": [
            "Project_Gifted1",
            "Worker_Strike"
          ],
          "references": [],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [],
          "TLP": "green",
          "cloned_from": "69fbe437714a2cdd50e5da0c",
          "export_count": 0,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "web",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "msudosos",
            "id": "381696",
            "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "IPv4": 6,
            "hostname": 26,
            "CIDR": 8,
            "URL": 36,
            "FileHash-SHA256": 12,
            "FileHash-MD5": 8,
            "FileHash-SHA1": 8
          },
          "indicator_count": 104,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 67,
          "modified_text": "26 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": true,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        }
      ],
      "references": [],
      "related": {
        "alienvault": {
          "adversary": [],
          "malware_families": [],
          "industries": [],
          "unique_indicators": 0
        },
        "other": {
          "adversary": [],
          "malware_families": [],
          "industries": [],
          "unique_indicators": 2060
        }
      }
    },
    "false_positive": [],
    "alexa": "http://www.alexa.com/siteinfo/arin.net",
    "whois": "http://whois.domaintools.com/arin.net",
    "domain": "arin.net",
    "hostname": "rdap.arin.net"
  },
  "geo": {},
  "geo_ipapicom": {},
  "pulse_count": 2,
  "pulses": [
    {
      "id": "69f3322b53bd6368005d9ac9",
      "name": "Sinkholes, Backdoors, Trojans, and Exploits.",
      "description": "[ full text of this article, which has now been published, is published on the website of the European Union, the EU and the United Arab Emirates (UAE), and can be viewed here.]<not relevant pretext except for perhaps the certificate chain. Cryptographic Validation is imperitive for all agencies, especially those who are hosting a person known or unknown, on their server. Trust bypass opens a giant watering hole that systemically can compromise the entire internet. This is an epic failure in all things IT and a destructive cover for the lifelong of residual internet failures and probelms it will have.",
      "modified": "2026-05-30T13:26:53.645000",
      "created": "2026-04-30T10:42:51.884000",
      "tags": [
        "ipv4",
        "filehashmd5",
        "filehashsha256",
        "show",
        "search",
        "type indicator",
        "role title",
        "added active",
        "related pulses",
        "united",
        "pdfkit.net",
        "sinkhole",
        "backdoor",
        "trojan",
        "exploit",
        "server misuse",
        "entity misappropriation",
        "unsigned certificates",
        "? of apple jailbreak",
        "telecom insider",
        "spyware gone wrong",
        "negligent",
        "stalkerware",
        "retrieval of sent evidence",
        "misuse of systems",
        "hiding malicious artifacts on muni pages exploiting the mass",
        "intentional watering hole",
        "unsigned DNSSEC*",
        "known malic pdfs left open for public clickbait",
        "pdfs connect to a cryptomine",
        "hx of cryptomine",
        "IT abuse",
        "siloh on purpose",
        "active bystander",
        "whistleblower",
        "failed PD intervention",
        "failure to investigate"
      ],
      "references": [],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [],
      "TLP": "green",
      "cloned_from": null,
      "export_count": 0,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "web",
      "validator_count": 0,
      "comment_count": 1,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "msudosos",
        "id": "381696",
        "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "FileHash-MD5": 2356,
        "FileHash-SHA1": 2407,
        "FileHash-SHA256": 2479,
        "email": 2,
        "domain": 169,
        "URL": 1549,
        "hostname": 1516,
        "URI": 1,
        "CIDR": 7
      },
      "indicator_count": 10486,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 69,
      "modified_text": "2 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": true,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    },
    {
      "id": "69fbebd201b2600be49123bf",
      "name": "Project_Gifted1_Worker_gifted1_2026-05-07 CREATED 32 MINUTES AGO by sovereign1 clone",
      "description": "",
      "modified": "2026-05-07T01:39:07.414000",
      "created": "2026-05-07T01:33:06.383000",
      "tags": [
        "Project_Gifted1",
        "Worker_Strike"
      ],
      "references": [],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [],
      "TLP": "green",
      "cloned_from": "69fbe437714a2cdd50e5da0c",
      "export_count": 0,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "web",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "msudosos",
        "id": "381696",
        "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "IPv4": 6,
        "hostname": 26,
        "CIDR": 8,
        "URL": 36,
        "FileHash-SHA256": 12,
        "FileHash-MD5": 8,
        "FileHash-SHA1": 8
      },
      "indicator_count": 104,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 67,
      "modified_text": "26 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": true,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    }
  ],
  "error": null,
  "vt": {
    "error": "VirusTotal rate limit reached. Try again shortly.",
    "indicator": "https://rdap.arin.net/registry/entity/DO-13",
    "type": "URL"
  },
  "abuseipdb": null,
  "urlhaus": {
    "indicator": "https://rdap.arin.net/registry/entity/DO-13",
    "type": "URL",
    "found": false,
    "verdict": "clean",
    "error": null
  },
  "from_cache": true,
  "_cached_at": 1780400153.1569743
}