Report - lainnet.superglobalmegacorp.com/repo/gta_oldwide

Report Overview

Submitted URL
lainnet.superglobalmegacorp.com/repo/gta_oldwide_3dfx.zip
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 01:09:04
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lainnet.superglobalmegacorp.com	unknown	2006-05-24	2023-12-02	2023-12-02	511 B	2.3 MB	188.114.96.1
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-24	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
lainnet.superglobalmegacorp.com/repo/gta_oldwide_3dfx.zip
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
2.3 MB (2301146 bytes)
Hash
70addb15ce382bcef08d84cdfe281748
f48af692f027eef97cd2f55136c9f7d997655e9a
84881ad9909ab1ee6d45e853f0c0d80575ec5a35c7e04dd5aee7a5b5e691b0a4

Archive (5)

Filename

Md5

File type

20widescreenfix.cs

a9095be9ec1e31bb69e5221e5623ca6d

data

20widescreenfix.txt

d868955737b62869e418dd62feab0a1c

ASCII text, with CRLF line terminators

20widescreenfix.cs

d7b7a57d7eb7e569e6b2ed47ca417c1c

data

gta-vc.exe

1ba3f7622f59154585d1b7153ccfff5c

PE32 executable (GUI) Intel 80386, for MS Windows, 14 sections

gta3.exe

2bcb0318c3c7e4913bd7595286b25fa6

PE32 executable (GUI) Intel 80386, for MS Windows, 13 sections

JavaScript (0)

HTTP Transactions (2)

	URL	IP	Response	Size
	lainnet.superglobalmegacorp.com/repo/gta_oldwide_3dfx.zip	188.114.96.1	200 OK	2.3 MB
URL User Request GET HTTP/2 lainnet.superglobalmegacorp.com/repo/gta_oldwide_3dfx.zip IP 188.114.96.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectsuperglobalmegacorp.com FingerprintAC:86:83:3F:A8:C1:A1:F0:77:04:AE:D9:2A:8B:FC:AE:95:D6:31:D3 ValidityFri, 15 Mar 2024 06:30:40 GMT - Thu, 13 Jun 2024 06:30:39 GMT File type Zip archive data, at least v2.0 to extract, compression method=store Size 2.3 MB (2301146 bytes) Hash 70addb15ce382bcef08d84cdfe281748 f48af692f027eef97cd2f55136c9f7d997655e9a 84881ad9909ab1ee6d45e853f0c0d80575ec5a35c7e04dd5aee7a5b5e691b0a4 HTTP Headers `GET /repo/gta_oldwide_3dfx.zip HTTP/1.1 Host: lainnet.superglobalmegacorp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 26 Apr 2024 01:08:38 GMT content-type: application/zip content-length: 2301146 last-modified: Wed, 21 Dec 2022 11:47:41 GMT etag: "231cda-5f0551eb42135" cache-control: max-age=14400 cf-cache-status: HIT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5vbIkEJQb9ArQM9grWxlaCIMgiH7HrdVgPKJwQ3T1LPduNV4D3wD34%2FUAXsIWF59QjR0JO2WN4FIFUfDWJXgViFsa0%2BUR0M%2B1wjSQcRlPWixCxrb6zUmv9riExD%2BblwZbvlOdDBtySh1a2rLFHs5Drg5"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 87a2aece08fab51b-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml	35.244.181.201		444 B
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP 35.244.181.201:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type XML 1.0 document, ASCII text, with very long lines (332) Size 444 B (444 bytes) Hash 3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463 HTTP Headers `GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1 Host: aus5.mozilla.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Cache-Control: no-cache Pragma: no-cache Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx rule-id: unknown rule-data-version: unknown content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=AT0qCwbF9VqN0Xekr68B-QDZESbyDjdS9_FFzZrYNfeoAyz8QQEsyJe3ZxdMG71i97eAZUUfgdcidJRpM7ROiwm3jFlcghrTNTcouZPeaRW318EO44pZzNWbgBqy6gvs strict-transport-security: max-age=31536000; x-content-type-options: nosniff content-security-policy: default-src 'none'; frame-ancestors 'none' x-proxy-cache-status: MISS content-encoding: gzip via: 1.1 google date: Fri, 26 Apr 2024 01:08:14 GMT content-type: text/xml; charset=utf-8 vary: Accept-Encoding content-length: 444 age: 43 cache-control: public,max-age=90 alt-svc: clear X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (5)

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers