| dutoanf1-com-vn.translate.goog/ |  216.58.207.193 | | 564 B |
URL dutoanf1-com-vn.translate.goog/ IP216.58.207.193:0
File typeHTML document, ASCII text, with very long lines (1013), with no line terminators Hashae7bb9e60991035c818ee041b3526e54 18c40cdc8610232a8dedc54a0945c341d9f78e69 3d2da856016cd889be44b79c839b0c0978efd1ef0f4670ab3edd04f03029b4f3
GET / HTTP/1.1
Host: dutoanf1-com-vn.translate.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 03 May 2024 13:06:23 GMT
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
|
| dutoanf1-com-vn.translate.goog/taive/TeamViewer.exe | 216.58.207.193 | 302 Found | 0 B |
URL User Request GET HTTP/2dutoanf1-com-vn.translate.goog/taive/TeamViewer.exe IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56 ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /taive/TeamViewer.exe HTTP/1.1
Host: dutoanf1-com-vn.translate.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 13:06:25 GMT
location: https://dutoanf1.com.vn/taive/TeamViewer.exe
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
| dutoanf1.com.vn/taive/TeamViewer.exe |  125.212.254.173 | 200 OK | 2.3 MB |
URL User Request GET HTTP/1.1dutoanf1.com.vn/taive/TeamViewer.exe IP125.212.254.173:443 ASN#38731 CHT Compamy Ltd
CertificateIssuerLet's Encrypt Subjectdutoanf1.com.vn Fingerprint7B:9A:39:AA:FC:F5:80:72:3A:30:A7:5C:17:3E:98:80:D0:1B:F2:0C ValidityTue, 02 Apr 2024 10:25:52 GMT - Mon, 01 Jul 2024 10:25:51 GMT
File typePE32 executable (GUI) Intel 80386, for MS Windows, 4 sections Size2.3 MB (2303272 bytes) Hash9846ebb0b6e8de9d4a042b6df08cf98c c08e4d423e1413e81b432ae7c35701c42089148b 37d2b7ec29372f73b2f9968f6d3c4d145ba553bec71fdf018fc299c14066706f
| Analyzer | Verdict | Alert |
|---|
| VirusTotal | suspicious | |
GET /taive/TeamViewer.exe HTTP/1.1
Host: dutoanf1.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 May 2024 13:06:26 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Tue, 23 Jan 2018 09:35:28 GMT
ETag: "232528-5636e445c9260"
Accept-Ranges: bytes
Content-Length: 2303272
Cache-Control: s-maxage=10
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-msdos-program
|