Report - update.mu-thaiduong.com/update.zip

Report Overview

Visitedpublic

2024-10-01 10:44:20

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
update.mu-thaiduong.com	unknown	2023-08-29	2023-10-07 17:54:54	2024-09-25 14:27:00	488 B	7.5 MB	103.255.237.51
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-09-29 18:13:43	1.6 kB	4.4 kB	23.36.76.226
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-09-29 18:12:51	1.6 kB	4.4 kB	23.36.77.32

Related reports

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

update.mu-thaiduong.com/update.zip

IP / ASN

103.255.237.51

#45899 VNPT Corp

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=deflate

Size7.5 MB (7520188 bytes)

MD5d5c71ba6880a94e7f9fb94efce018d6f

SHA18e5b45a834371ac073d6836f237d41e256c313c9

SHA2566a753a538d27db53266d5ea046b5df14e9d2f00d334c8621052144699baec1ae

Archive (44)

Modified	Filename	Size	MD5	File type
2024-09-18 22:45	Checksum.premium.rar	581 B	91c108ef4436783f3225278701e8517d	data
2024-08-14 17:11	main.dll.rar	7.2 kB	f7499ddfa039a8d3781684e2e1610b11	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2021-09-19 22:56	main.exe.rar	11 MB	f4f025a218b9cf92518165fdf30ea746	PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections
2024-09-20 14:26	main.premium.rar	2.3 MB	06a74b1f9d38898c7033eba21ae97971	OpenPGP Public Key
2024-09-12 21:38	Matrix.Plugins.rar	1.2 MB	b70ff96be6a08a3e7521e31d5386d196	data
2024-09-20 14:30	update.txt	2.0 kB	e900e410c56f935852adf097ad23746c	ASCII text, with CRLF line terminators
2024-08-14 15:54	wzAudio.dll.rar	25 kB	0ce45c5b41f0d01501a7b2e89f22cbe6	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2024-09-20 14:22	wzGold.dll.rar	1.7 MB	f6bc3317b6f91169526fb00e9c47f01f	data
2024-09-13 17:32	wzmain.dll.rar	6.1 MB	44a6f696df3927faf1bbd71cfc3b29fe	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2024-09-01 16:27	xController.ini.rar	301 B	ad23eb5b873e35c1344879f85a8d9890	Generic INItialization configuration [AntiLag]
2024-01-19 00:03	Xenos-System.dll.rar	2.5 MB	edd1cd6103b70b406c2293d7d5818f0a	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2021-12-15 01:23	decor.ozt.rar	37 kB	1a826a9005c6b44c32545cdefcd74727	Lotus unknown worksheet or configuration, revision 0
2020-07-18 12:02	desktop.ini.rar	2.7 kB	1fe4ef7b399d3c7b49a0ea91d8c7e79a	Windows desktop.ini
2024-03-06 20:39	Elemental.ozt.rar	20 kB	703cbf4de1990e4d91875794bb26f3ed	Lotus unknown worksheet or configuration, revision 0
2023-01-08 23:33	masterresetbutton.ozt.rar	29 kB	85baadc8b66433eee23e046476413895	Lotus unknown worksheet or configuration, revision 0
2023-12-20 03:20	new_slot1.ozj.rar	1.2 kB	997ed981c6553e4c46d9ea4f80496b3d	JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16
2023-12-20 03:28	new_slot2.ozj.rar	1.3 kB	97903f68757b1451f6d4716dc2851fb6	JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16
2021-06-06 02:05	new_slot3.OZJ.rar	1.6 kB	6fb63b3d903007402cddce5e35ae7633	data
2021-06-06 02:05	new_slot4.OZJ.rar	1.7 kB	74d5029383e8c1b39bf5b94871f6ac76	data
2021-06-06 02:05	new_slot5.OZJ.rar	1.7 kB	7aa5d61ba58817155ed2077e7db28d02	data
2023-09-22 07:38	RemasterBtn.ozt.rar	248 kB	ea6b2d31e900adc09ef40787dfb7f7f7	Lotus unknown worksheet or configuration, revision 0
2023-01-08 23:33	resetbutton.ozt.rar	29 kB	85baadc8b66433eee23e046476413895	Lotus unknown worksheet or configuration, revision 0
2024-08-06 11:36	Xenos-System.premium.rar	20 kB	fd10f7794ccbe0184dfa02966262bd72	data
2012-03-24 01:46	Gem of Accuracy.bmd.rar	15 kB	7b604cabb3b0b491b085140b0ebaa643	data
2012-03-24 01:46	gem of blow.bmd.rar	15 kB	bf5e06353fb2fae3e7e21b0f896db117	data
2012-03-24 01:46	Gem of Dodges.bmd.rar	15 kB	118e34fc16501247a42b20b677466fa4	data
2012-03-24 01:46	Gem of energy.bmd.rar	15 kB	8e1a37d4e1a6e140c21245b547004338	data
2012-03-24 01:46	Gem of fortune.bmd.rar	15 kB	ca6d8f72443eaec7fd3de817a67d8caf	data
2012-03-24 01:46	Gem of Reflect.bmd.rar	15 kB	3192e1087e7c607146e18fc7e3522bb1	data
2012-03-24 01:46	Gem of Vitality.bmd.rar	15 kB	a0007d6f90b09e3399c445b474cd1215	data
2012-03-24 01:02	gemaccuracy.ozj.rar	70 kB	dd97ccecafd34e4abdd50ecbb263d019	JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16
2012-03-24 01:02	gemblow.ozj.rar	63 kB	625af086cfabada6d0b467cdcf524cce	JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16
2012-03-24 01:02	gemdodges.ozj.rar	70 kB	8dcd8c7a378b6f3495f46497309719ed	JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16
2012-03-24 01:02	gemenergy.ozj.rar	63 kB	2ad812c9b27643b461a4373922608827	JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16
2012-03-24 01:02	gemfortune.ozj.rar	65 kB	d56cc1caca10a13864124abf0e75e479	JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16
2012-03-24 01:02	gemreflect.ozj.rar	64 kB	399c801f982f1a203c03ad06c4826ba1	JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16
2012-03-24 01:02	gemvitality.ozj.rar	56 kB	a0103e5fc5df7679d121bc4efe07b8ad	JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16
2024-09-13 22:31	CEffect.bmd.rar	12 kB	f2711b214c8266f0cd2c6117bb3411c7	data
2024-09-18 22:36	ItemTooltipText_eng.bmd.rar	266 kB	1b7b60c2b8a68ad498ae066b8e44c377	data
2024-09-18 22:27	ItemTooltip_eng.bmd.rar	1.0 MB	609769cfb7bc532e74a1bf1fc4a707ab	data
2024-09-18 22:27	Item_eng.bmd.rar	688 kB	db5e2dafcb096cc42619747eb07ec2d3	data
2024-09-18 22:27	Text_eng.bmd.rar	146 kB	1f3581b4cc5ba9efeb0a9332189a8f93	data
2024-09-18 22:38	mix.bmd.rar	228 kB	5fafebc1b92ff85bf082e3e584cbb202	data
2024-08-11 01:33	Camera.dll.rar	3.3 MB	ac8e8dff46cd70dc49848b36b7164dca	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_stackstrings
VirusTotal	malicious	VirusTotal - Scan result 38/65

JavaScript (0)

HTTP Transactions (11)

	URL	IP	Response	Size