Report Overview
Submitted URL
www.zspz.zbaszyn.pl/pdfs/certyfikaty_ose/windows-certyfikat-ose.zip
IP
49.12.127.200
ASN
#24940 Hetzner Online GmbH
Submitted
2024-05-04 14:03:00
Access
public
Website Title
Warning: Potential Security Risk Ahead
Final URL
about:certerror?e=nssBadCert&u=https%3A//www.zspz.zbaszyn.pl/pdfs/certyfikaty_ose/windows-certyfikat-ose.zip&c=UTF-8&d=%20
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
cyberfolks2.ocsp-certum.com | unknown | 2013-12-19 | 2023-07-09 | 2024-05-03 | 678 B | 3.5 kB | 23.36.79.10 |
www.zspz.zbaszyn.pl | unknown | 2004-09-15 | 2017-05-02 | 2023-06-14 | 958 B | 3.3 MB | 49.12.127.200 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
www.zspz.zbaszyn.pl/pdfs/certyfikaty_ose/windows-certyfikat-ose.zip
IP
49.12.127.200
ASN
#24940 Hetzner Online GmbH
File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
3.3 MB (3291895 bytes)
Hash
6080e7cc78dcec1b2e1dfe43e4487f6b
92294688ceb1f4a3f8369a52acaa3606889fa033
Archive (3)
Filename | Md5 | File type | |||
---|---|---|---|---|---|
certyfikat.crt | 09089c6a34cb5b1013b254a09e6e6ba7 | PEM certificate | |||
windows.pdf | 2589ce8a3121788f5aed87c27ea386b9 | PDF document, version 1.7, 16 pages | |||
cert_install.msi | 68b2227582fb64f2540066870bf2df66
| Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Code page: 1250, Title: Installation Database, Subject: Certyfikaty OSE, Author: NASK PIB, Keywords: Installer, Comments: This installer database contains the logic and data required to install Certyfikaty OSE., Template: Intel;1045, Revision Number: {2EB41583-889D-47EB-BA3E-A72300A44D6E}, Create Time/Date: Fri Apr 26 12:44:28 2019, Last Saved Time/Date: Fri Apr 26 12:44:28 2019, Number of Pages: 200, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.1.2318), Security: 2 |
Detections
Analyzer | Verdict | Alert |
---|---|---|
YARAhub by abuse.ch | malware | Detect files is `SliverFox` malware |
JavaScript (1)
URL | Size | First Seen | Last Seen | |
---|---|---|---|---|
about:certerror?e=nssBadCert&u=https%3A//www.zspz.zbaszyn.pl/pdfs/certyfikaty_ose/windows-certyfikat-ose.zip&c=UTF-8&d=%20 | 0 B | 2023-03-07 | 2024-05-18 | |
Pretty
Loading... | ||||
HTTP Transactions (4)
URL | IP | Response | Size | |
---|---|---|---|---|
cyberfolks2.ocsp-certum.com/ | 23.36.79.10 | 1.5 kB | ||
HTTP Headers
| ||||
www.zspz.zbaszyn.pl/pdfs/certyfikaty_ose/windows-certyfikat-ose.zip | 49.12.127.200 | 301 Moved Permanently | 795 B | |
HTTP Headers
| ||||
cyberfolks2.ocsp-certum.com/ | 23.36.79.17 | 1.5 kB | ||
HTTP Headers
| ||||
www.zspz.zbaszyn.pl/pdfs/certyfikaty_ose/windows-certyfikat-ose.zip | 49.12.127.200 | 301 Moved Permanently | 3.3 MB | |
HTTP Headers
| ||||