{
  "type": "URL",
  "indicator": "https://vote.fl1ow.top/",
  "general": {
    "sections": [
      "general",
      "url_list",
      "http_scans",
      "screenshot"
    ],
    "indicator": "https://vote.fl1ow.top/",
    "type": "url",
    "type_title": "URL",
    "validation": [],
    "base_indicator": {
      "id": 4278738718,
      "indicator": "https://vote.fl1ow.top/",
      "type": "URL",
      "title": "",
      "description": "",
      "content": "",
      "access_type": "public",
      "access_reason": ""
    },
    "pulse_info": {
      "count": 1,
      "pulses": [
        {
          "id": "69c0909fb24fd2f82cdfa0f9",
          "name": "URLert Daily Threat Intel \u2014 2026-03-23",
          "description": "URLert Daily Threat Intel \u2014 2026-03-23\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 75 | Indicators: 135\nConfirmed: 26 | Likely: 46 | Domain intel: 3\nTop threats: Phishing (62), Unknown (5), Malvertising (4), Malware Hosting (2), RAT (1)\nDomains: 472rapido.lol, acccat.com, adaface.us, advomate92.com, aidleyy.live, appinjects.com, autree.org, axama.org, backedstock.shop, backkmarket.com, base44.app, buyiphone.online, capri777.com, c...\n\n75 unique threats producing 135 actionable indicators. Generated by URLert automated threat intelligence.",
          "modified": "2026-04-21T22:31:30.334000",
          "created": "2026-03-23T01:00:15.320000",
          "tags": [
            "ad-blocker-bypass",
            "adaface-impersonation",
            "adult-content-lure",
            "adware",
            "aggressive-marketing",
            "aggressive-tactics",
            "amazon-impersonation",
            "apk-distribution",
            "app-scam",
            "apple-impersonation",
            "asset-theft",
            "automated-scan",
            "banking-phishing",
            "blockchain-scam",
            "brand-impersonation",
            "browser-extension-installation",
            "california-dmv",
            "charity-scam",
            "child-exploitation",
            "cloaked-site",
            "colombia",
            "combosquatting",
            "counterfeit-goods",
            "credential-harvesting",
            "credit-card-theft",
            "crypto-scam",
            "crypto-trading",
            "cryptocurrency",
            "cryptocurrency-fraud",
            "cryptocurrency-scam",
            "daily-threat-intel",
            "data-harvesting",
            "deceptive-content",
            "deceptive-lure",
            "deceptive-marketing",
            "deceptive-practices",
            "deceptive-redirect",
            "deceptive-redirects",
            "deceptive-retail",
            "deceptive-scam",
            "deceptive-software-download",
            "deceptive-survey",
            "directory-service",
            "domain-classification",
            "donation-scam",
            "email-phishing",
            "email-targeting",
            "evasive-maneuvers",
            "fake-exchange",
            "fake-investments",
            "fake-job-application",
            "fake-login",
            "fake-mining-pool",
            "fake-verification",
            "financial-fraud",
            "financial-loss",
            "financial-scam",
            "financial-service-impersonation",
            "financial-services",
            "financial-theft",
            "fraudulent-crypto-exchange",
            "fraudulent-fundraising",
            "fraudulent-platform",
            "gambling-scam",
            "game-lure",
            "gaming-impersonation",
            "gibberish-domain",
            "google-impersonation",
            "government-impersonation",
            "grayware",
            "high-risk",
            "high-risk-domain",
            "high-risk-gambling",
            "high-risk-tld",
            "high-risk-trading",
            "hyip",
            "identity-theft",
            "illegal-content",
            "impersonation",
            "information-collection",
            "investment-fraud",
            "investment-scam",
            "ip-logging",
            "kentucky",
            "lack-of-transparency",
            "lichousing",
            "link-in-bio",
            "lottery-scam",
            "lure-tactic",
            "malicious-payloads",
            "malicious-redirect",
            "malicious-redirection",
            "malicious-redirects",
            "malvertising",
            "malware-delivery",
            "malware-distribution",
            "manipulative-spreading",
            "mexc-impersonation",
            "mobile-malware",
            "nebula-x-usdt-storage-center",
            "new-domain",
            "new-platform",
            "newly-registered-domain",
            "nimblr-mailog",
            "olx-impersonation",
            "online-casino-scam",
            "online-fraud",
            "online-scam",
            "payment-harvesting",
            "personal-information-collection",
            "personal-information-harvesting",
            "personal-information-theft",
            "phishing",
            "phishing-content",
            "phishing-domain",
            "phishing-page",
            "phishing-site",
            "pig-butchering",
            "pig-butchering-scam",
            "play-to-earn",
            "ponzi-scheme",
            "pop-up-abuse",
            "postal-service-impersonation",
            "privacy-risk",
            "privacy-violation",
            "rat",
            "recent-domain",
            "recently-registered-domain",
            "redirect-chain",
            "redirect-cloaking",
            "redirector",
            "retail-ecommerce",
            "retail-scam",
            "scam",
            "scam-alert",
            "scam-pages",
            "scams",
            "security-scam",
            "snapchat-impersonation",
            "social-engineering",
            "social-media-scam",
            "social-media-targeting",
            "south-carolina",
            "steam-credentials",
            "suspicious-domain",
            "suspicious-domain-name",
            "suspicious-gateway",
            "suspicious-scripting",
            "throwaway-domain",
            "tiktok",
            "tiktok-impersonation",
            "tiktok-scam",
            "traffic-redirection",
            "twitter-impersonation",
            "typo-squatting",
            "typosquatting",
            "unauthorized-access",
            "unauthorized-tracking",
            "unrealistic-pricing",
            "unregulated-platform",
            "unverifiable-entities",
            "unverified-software",
            "unwanted-software",
            "url-shortener",
            "urlert",
            "verification-fraud",
            "voting-platform-impersonation",
            "wallet-theft",
            "watch-to-earn",
            "webcam-monitoring",
            "webcam-streaming-app",
            "webmail-login",
            "whatsapp-impersonation",
            "withdrawal-fraud",
            "withdrawal-scam",
            "workers-dev",
            "young-domain"
          ],
          "references": [
            "https://urlert.com/domain/472rapido.lol",
            "https://urlert.com/domain/acccat.com",
            "https://urlert.com/domain/adaface.us",
            "https://urlert.com/domain/advomate92.com",
            "https://urlert.com/domain/aidleyy.live",
            "https://urlert.com/domain/appinjects.com",
            "https://urlert.com/domain/autree.org",
            "https://urlert.com/domain/axama.org",
            "https://urlert.com/domain/backedstock.shop",
            "https://urlert.com/domain/backkmarket.com",
            "https://urlert.com/domain/base44.app",
            "https://urlert.com/domain/buyiphone.online",
            "https://urlert.com/domain/capri777.com",
            "https://urlert.com/domain/casajoys.com",
            "https://urlert.com/domain/chat-whatsapp.es",
            "https://urlert.com/domain/coinrtu.com",
            "https://urlert.com/domain/cryptor.plus",
            "https://urlert.com/domain/cs2cup.com",
            "https://urlert.com/domain/effectivegatecpm.com",
            "https://urlert.com/domain/fkg.cc"
          ],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [
            "Financial Services",
            "Government",
            "Logistics / Supply Chain",
            "Media / Entertainment",
            "Non-Profit",
            "Retail / E-Commerce"
          ],
          "TLP": "white",
          "cloned_from": null,
          "export_count": 0,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "api",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "urlert_intel",
            "id": "386175",
            "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "domain": 48,
            "URL": 50,
            "hostname": 14
          },
          "indicator_count": 112,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 29,
          "modified_text": "39 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": false,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "URL",
          "related_indicator_is_active": 1
        }
      ],
      "references": [
        "https://urlert.com/domain/appinjects.com",
        "https://urlert.com/domain/chat-whatsapp.es",
        "https://urlert.com/domain/fkg.cc",
        "https://urlert.com/domain/cs2cup.com",
        "https://urlert.com/domain/capri777.com",
        "https://urlert.com/domain/aidleyy.live",
        "https://urlert.com/domain/adaface.us",
        "https://urlert.com/domain/base44.app",
        "https://urlert.com/domain/buyiphone.online",
        "https://urlert.com/domain/casajoys.com",
        "https://urlert.com/domain/autree.org",
        "https://urlert.com/domain/acccat.com",
        "https://urlert.com/domain/472rapido.lol",
        "https://urlert.com/domain/backkmarket.com",
        "https://urlert.com/domain/backedstock.shop",
        "https://urlert.com/domain/effectivegatecpm.com",
        "https://urlert.com/domain/advomate92.com",
        "https://urlert.com/domain/cryptor.plus",
        "https://urlert.com/domain/axama.org",
        "https://urlert.com/domain/coinrtu.com"
      ],
      "related": {
        "alienvault": {
          "adversary": [],
          "malware_families": [],
          "industries": [],
          "unique_indicators": 0
        },
        "other": {
          "adversary": [],
          "malware_families": [],
          "industries": [
            "Government",
            "Financial services",
            "Media / entertainment",
            "Retail / e-commerce",
            "Logistics / supply chain",
            "Non-profit"
          ],
          "unique_indicators": 134
        }
      }
    },
    "false_positive": [],
    "alexa": "http://www.alexa.com/siteinfo/fl1ow.top",
    "whois": "http://whois.domaintools.com/fl1ow.top",
    "domain": "fl1ow.top",
    "hostname": "vote.fl1ow.top"
  },
  "geo": {},
  "geo_ipapicom": {},
  "pulse_count": 1,
  "pulses": [
    {
      "id": "69c0909fb24fd2f82cdfa0f9",
      "name": "URLert Daily Threat Intel \u2014 2026-03-23",
      "description": "URLert Daily Threat Intel \u2014 2026-03-23\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 75 | Indicators: 135\nConfirmed: 26 | Likely: 46 | Domain intel: 3\nTop threats: Phishing (62), Unknown (5), Malvertising (4), Malware Hosting (2), RAT (1)\nDomains: 472rapido.lol, acccat.com, adaface.us, advomate92.com, aidleyy.live, appinjects.com, autree.org, axama.org, backedstock.shop, backkmarket.com, base44.app, buyiphone.online, capri777.com, c...\n\n75 unique threats producing 135 actionable indicators. Generated by URLert automated threat intelligence.",
      "modified": "2026-04-21T22:31:30.334000",
      "created": "2026-03-23T01:00:15.320000",
      "tags": [
        "ad-blocker-bypass",
        "adaface-impersonation",
        "adult-content-lure",
        "adware",
        "aggressive-marketing",
        "aggressive-tactics",
        "amazon-impersonation",
        "apk-distribution",
        "app-scam",
        "apple-impersonation",
        "asset-theft",
        "automated-scan",
        "banking-phishing",
        "blockchain-scam",
        "brand-impersonation",
        "browser-extension-installation",
        "california-dmv",
        "charity-scam",
        "child-exploitation",
        "cloaked-site",
        "colombia",
        "combosquatting",
        "counterfeit-goods",
        "credential-harvesting",
        "credit-card-theft",
        "crypto-scam",
        "crypto-trading",
        "cryptocurrency",
        "cryptocurrency-fraud",
        "cryptocurrency-scam",
        "daily-threat-intel",
        "data-harvesting",
        "deceptive-content",
        "deceptive-lure",
        "deceptive-marketing",
        "deceptive-practices",
        "deceptive-redirect",
        "deceptive-redirects",
        "deceptive-retail",
        "deceptive-scam",
        "deceptive-software-download",
        "deceptive-survey",
        "directory-service",
        "domain-classification",
        "donation-scam",
        "email-phishing",
        "email-targeting",
        "evasive-maneuvers",
        "fake-exchange",
        "fake-investments",
        "fake-job-application",
        "fake-login",
        "fake-mining-pool",
        "fake-verification",
        "financial-fraud",
        "financial-loss",
        "financial-scam",
        "financial-service-impersonation",
        "financial-services",
        "financial-theft",
        "fraudulent-crypto-exchange",
        "fraudulent-fundraising",
        "fraudulent-platform",
        "gambling-scam",
        "game-lure",
        "gaming-impersonation",
        "gibberish-domain",
        "google-impersonation",
        "government-impersonation",
        "grayware",
        "high-risk",
        "high-risk-domain",
        "high-risk-gambling",
        "high-risk-tld",
        "high-risk-trading",
        "hyip",
        "identity-theft",
        "illegal-content",
        "impersonation",
        "information-collection",
        "investment-fraud",
        "investment-scam",
        "ip-logging",
        "kentucky",
        "lack-of-transparency",
        "lichousing",
        "link-in-bio",
        "lottery-scam",
        "lure-tactic",
        "malicious-payloads",
        "malicious-redirect",
        "malicious-redirection",
        "malicious-redirects",
        "malvertising",
        "malware-delivery",
        "malware-distribution",
        "manipulative-spreading",
        "mexc-impersonation",
        "mobile-malware",
        "nebula-x-usdt-storage-center",
        "new-domain",
        "new-platform",
        "newly-registered-domain",
        "nimblr-mailog",
        "olx-impersonation",
        "online-casino-scam",
        "online-fraud",
        "online-scam",
        "payment-harvesting",
        "personal-information-collection",
        "personal-information-harvesting",
        "personal-information-theft",
        "phishing",
        "phishing-content",
        "phishing-domain",
        "phishing-page",
        "phishing-site",
        "pig-butchering",
        "pig-butchering-scam",
        "play-to-earn",
        "ponzi-scheme",
        "pop-up-abuse",
        "postal-service-impersonation",
        "privacy-risk",
        "privacy-violation",
        "rat",
        "recent-domain",
        "recently-registered-domain",
        "redirect-chain",
        "redirect-cloaking",
        "redirector",
        "retail-ecommerce",
        "retail-scam",
        "scam",
        "scam-alert",
        "scam-pages",
        "scams",
        "security-scam",
        "snapchat-impersonation",
        "social-engineering",
        "social-media-scam",
        "social-media-targeting",
        "south-carolina",
        "steam-credentials",
        "suspicious-domain",
        "suspicious-domain-name",
        "suspicious-gateway",
        "suspicious-scripting",
        "throwaway-domain",
        "tiktok",
        "tiktok-impersonation",
        "tiktok-scam",
        "traffic-redirection",
        "twitter-impersonation",
        "typo-squatting",
        "typosquatting",
        "unauthorized-access",
        "unauthorized-tracking",
        "unrealistic-pricing",
        "unregulated-platform",
        "unverifiable-entities",
        "unverified-software",
        "unwanted-software",
        "url-shortener",
        "urlert",
        "verification-fraud",
        "voting-platform-impersonation",
        "wallet-theft",
        "watch-to-earn",
        "webcam-monitoring",
        "webcam-streaming-app",
        "webmail-login",
        "whatsapp-impersonation",
        "withdrawal-fraud",
        "withdrawal-scam",
        "workers-dev",
        "young-domain"
      ],
      "references": [
        "https://urlert.com/domain/472rapido.lol",
        "https://urlert.com/domain/acccat.com",
        "https://urlert.com/domain/adaface.us",
        "https://urlert.com/domain/advomate92.com",
        "https://urlert.com/domain/aidleyy.live",
        "https://urlert.com/domain/appinjects.com",
        "https://urlert.com/domain/autree.org",
        "https://urlert.com/domain/axama.org",
        "https://urlert.com/domain/backedstock.shop",
        "https://urlert.com/domain/backkmarket.com",
        "https://urlert.com/domain/base44.app",
        "https://urlert.com/domain/buyiphone.online",
        "https://urlert.com/domain/capri777.com",
        "https://urlert.com/domain/casajoys.com",
        "https://urlert.com/domain/chat-whatsapp.es",
        "https://urlert.com/domain/coinrtu.com",
        "https://urlert.com/domain/cryptor.plus",
        "https://urlert.com/domain/cs2cup.com",
        "https://urlert.com/domain/effectivegatecpm.com",
        "https://urlert.com/domain/fkg.cc"
      ],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [
        "Financial Services",
        "Government",
        "Logistics / Supply Chain",
        "Media / Entertainment",
        "Non-Profit",
        "Retail / E-Commerce"
      ],
      "TLP": "white",
      "cloned_from": null,
      "export_count": 0,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "api",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "urlert_intel",
        "id": "386175",
        "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "domain": 48,
        "URL": 50,
        "hostname": 14
      },
      "indicator_count": 112,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 29,
      "modified_text": "39 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": false,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "URL",
      "related_indicator_is_active": 1
    }
  ],
  "error": null,
  "vt": {
    "error": "VirusTotal rate limit reached. Try again shortly.",
    "indicator": "https://vote.fl1ow.top/",
    "type": "URL"
  },
  "abuseipdb": null,
  "urlhaus": {
    "indicator": "https://vote.fl1ow.top/",
    "type": "URL",
    "found": false,
    "verdict": "clean",
    "error": null
  },
  "from_cache": true,
  "_cached_at": 1780246543.8819203
}