Report Overview
Submitted URL
raweb.cathaysec.com.tw/CS_RAWeb/Downloads/%E6%86%91%E8%AD%89%E7%9B%B4%E9%80%9A%E8%BB%8A.exe
IP
203.74.71.206
ASN
#3462 Data Communication Business Group
Submitted
2024-05-10 12:44:23
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
twcasslocsp.twca.com.tw | 159223 | 2000-02-23 | 2017-02-01 | 2024-05-06 | 670 B | 3.4 kB | 219.87.64.165 |
raweb.cathaysec.com.tw | unknown | 2004-04-02 | 2015-02-20 | 2019-06-09 | 545 B | 6.0 MB | 203.74.71.206 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-05-10 | medium | raweb.cathaysec.com.tw/CS_RAWeb/Downloads/%E6%86%91%E8%AD%89%E7%9B%B4%E9%80%9A%E8%BB%8A.exe | meth_get_eip |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
raweb.cathaysec.com.tw/CS_RAWeb/Downloads/%E6%86%91%E8%AD%89%E7%9B%B4%E9%80%9A%E8%BB%8A.exe
IP
203.74.71.206
ASN
#3462 Data Communication Business Group
File type
PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections
Size
6.0 MB (6045480 bytes)
Hash
6a0e657a46b8ffb8c35d15a13a435dee
e2a6c80fe1fe09d864a068249405094d69f54a7b
Detections
Analyzer | Verdict | Alert |
---|---|---|
YARAhub by abuse.ch | malware | meth_get_eip |
JavaScript (0)
HTTP Transactions (3)
URL | IP | Response | Size | |||||||
---|---|---|---|---|---|---|---|---|---|---|
twcasslocsp.twca.com.tw/ | 219.87.64.165 | 1.5 kB | ||||||||
HTTP Headers
| ||||||||||
twcasslocsp.twca.com.tw/ | 219.87.64.165 | 1.5 kB | ||||||||
HTTP Headers
| ||||||||||
raweb.cathaysec.com.tw/CS_RAWeb/Downloads/%E6%86%91%E8%AD%89%E7%9B%B4%E9%80%9A%E8%BB%8A.exe | 203.74.71.206 | 200 | 6.0 MB | |||||||
Detections
HTTP Headers
| ||||||||||