Report - github.com/WarlitoTools2024/Marksman/raw/main/Clint%20Valentine.zip

Report Overview

Submitted URL
github.com/WarlitoTools2024/Marksman/raw/main/Clint%20Valentine.zip
IP
140.82.121.3
ASN
#36459 GITHUB
Submitted
2024-04-18 10:57:40
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
github.com	1423	2007-10-09	2016-07-13	2024-03-24	521 B	3.5 kB	140.82.121.4
raw.githubusercontent.com	35802	2014-02-06	2014-03-01	2024-04-18	532 B	7.3 MB	185.199.109.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
raw.githubusercontent.com/WarlitoTools2024/Marksman/main/Clint%20Valentine.zip
IP
185.199.109.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
7.3 MB (7301707 bytes)
Hash
5be12ccbd6133156d32ea0a570b497f5
5664bc63a447f0887501bec4bedac4a36396e11b
5331d7979760a4c9bc1dde86d4270d1d4a2e4f3a3d0d9bff06a898accf6d469e

Archive (27)

Filename

Md5

File type

13_newcowboyCityAcion_Skin_effect_add_foot.unity3d

7eb173c96ba3c568692d50f41e1485b2

data

13_newcowboyCityAcion_Skin_effect_add_lieqiang.unity3d

8ecb5c0fa5acdc59904200d71c7a2c08

data

13_newcowboyCityAcion_Skin_effect_add_shouqiang.unity3d

b85bc79c02bd636a347749f0fb4ec51c

data

hero_cowboy_skin.unity3d

e8f02273e7c6c83620fb51c9f0f28c2f

data

hero_cowboy_skin_high_add.unity3d

1b0c84c3676ae520c2f6d245d05c4b05

data

heroshow_ip01_add.unity3d

728f3f49f577abdf2d058c41b0c10974

data

newcowboy_attack01.unity3d

54616925e801aec1984fb57a4e172880

data

newcowboy_attack_qiangkou.unity3d

a80fba0ba4b082d3fb671dd3d84b34bd

data

newcowboy_attack_qiangkou2.unity3d

8845a76d91953a12036b2f7c5a81d020

data

newcowboy_beidong_wuqi.unity3d

9f7e949f3302fbf51c1231f54d787863

data

newcowboy_beiji01_pugong.unity3d

0965a2f78b9878abb8acd56fe218514f

data

newcowboy_skill01_hit.unity3d

c216ad5c322f18590c39ce3476a2b77a

data

newcowboy_skill01_qiangkou.unity3d

1fe800b41f787d54b14c2227ba1b14f2

data

newcowboy_skill01_suoding.unity3d

dd39b1d726d5d456bb797e517d1e96af

data

newcowboy_skill01_zidan.unity3d

d3eed3da3acf7e67bc4ab02cfc7f7155

data

newcowboy_skill02_jingu.unity3d

0bfe34732fd7b51de80d7e011b35c544

data

newcowboy_skill02_qishou.unity3d

640765a137938eafbba54369a487451f

data

newcowboy_skill02_taosuo.unity3d

ad8bcfd758f45d193e552711819618a7

DIY-Thermocam raw data (Lepton 3.x), scale 1024-0, spot sensor temperature 0.000000, unit celsius, color scheme 1, maximum point enabled, calibration: offset -563053032636416.000000, slope 38685626227668133590597632.000000

newcowboy_skill02_taosuobeiji.unity3d

8364a9e6b2326ff39d76e0d6a6814b06

data

newcowboy_skill03_beiji.unity3d

71d9921b750f60c20c96d986758aba03

data

newcowboy_skill03_kaihuo.unity3d

15238c612ce47f52a8fa768c4548c5ed

data

newcowboy_skill03_zidan.unity3d

3ef475883064033e35426c89e386c540

data

newcowboy_skill04_beiji.unity3d

bb53250a20c2fbcfe3508ff60dccfc53

data

newcowboy_skill04_kaihuo.unity3d

626873fd0b20040f7b0cca2942ad70a6

data

newcowboy_skill04_zidan.unity3d

7387abbc12a0890d038190bc84fb8825

data

show_1131.bnk

c64e2a15e72afb810b27f889fb426dd7

Wwise SoundBank (little-endian), version 113, id CB4A692F, SFX

Hero131_add.unity3d

9bc60676154ce257a7b30dea48676dde

data

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (2)

	URL	IP	Size
	github.com/WarlitoTools2024/Marksman/raw/main/Clint%20Valentine.zip	140.82.121.4	0 B
URL github.com/WarlitoTools2024/Marksman/raw/main/Clint%20Valentine.zip IP 140.82.121.4:0 ASN #36459 GITHUB File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /WarlitoTools2024/Marksman/raw/main/Clint%20Valentine.zip HTTP/1.1 Host: github.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found server: GitHub.com date: Thu, 18 Apr 2024 10:57:13 GMT content-type: text/html; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With access-control-allow-origin: location: https://raw.githubusercontent.com/WarlitoTools2024/Marksman/main/Clint%20Valentine.zip cache-control: no-cache strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: no-referrer-when-downgrade content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/ content-length: 0 x-github-request-id: 5340:337554:1CB608B2:1CF38AD7:6620FC88 X-Firefox-Spdy: h2

	raw.githubusercontent.com/WarlitoTools2024/Marksman/main/Clint%20Valentine.zip	185.199.109.133	7.3 MB
URL raw.githubusercontent.com/WarlitoTools2024/Marksman/main/Clint%20Valentine.zip IP 185.199.109.133:0 ASN #54113 FASTLY File type Zip archive data, at least v2.0 to extract, compression method=store Size 7.3 MB (7301707 bytes) Hash 5be12ccbd6133156d32ea0a570b497f5 5664bc63a447f0887501bec4bedac4a36396e11b 5331d7979760a4c9bc1dde86d4270d1d4a2e4f3a3d0d9bff06a898accf6d469e HTTP Headers GET /WarlitoTools2024/Marksman/main/Clint%20Valentine.zip HTTP/1.1 Host: raw.githubusercontent.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK cache-control: max-age=300 content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox content-type: application/zip etag: W/"b5bbf708ad32db1bedac335dc18d9dbe6dd93cc886cae68efd872f59fe6ef1bd" strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-frame-options: deny x-xss-protection: 1; mode=block x-github-request-id: C8AA:2E5566:2E8A333:3139D9F:6620FC89 accept-ranges: bytes date: Thu, 18 Apr 2024 10:57:14 GMT via: 1.1 varnish x-served-by: cache-hel1410022-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1713437833.173650,VS0,VE854 vary: Authorization,Accept-Encoding,Origin access-control-allow-origin: * cross-origin-resource-policy: cross-origin x-fastly-request-id: 4bcfea65e1551e3222b69a2152c47a023d7889f3 expires: Thu, 18 Apr 2024 11:02:14 GMT source-age: 1 content-length: 7301707 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (27)

Detections

JavaScript (0)

HTTP Transactions (2)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers