Report - blackcatsystems.com/download/CarrierSleuth.zip

Report Overview

Submitted URL
blackcatsystems.com/download/CarrierSleuth.zip
IP
216.92.10.68
ASN
#7859 PAIR-NETWORKS
Submitted
2024-03-28 23:43:18
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
blackcatsystems.com	unknown	1998-11-17	2012-07-25	2024-03-25	500 B	21 MB	216.92.10.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
blackcatsystems.com/download/CarrierSleuth.zip
IP
216.92.10.68
ASN
#7859 PAIR-NETWORKS

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
21 MB (20878685 bytes)
Hash
fb5dfa19e4f0ac0025aa639df1c4a180
f90ca5731a3e5c04c81dc3e77fc3e7a0de4fe7ae
73c40e31ac083a784a63b4dec6e6d241e1174b53a14fbd62e70932a4ce926453

Archive (97)

Filename

Md5

File type

Carrier Sleuth Docs.pdf

b7577d0877af9789ce95da6e7a9c8c3d

PDF document, version 1.3, 8 pages

._Carrier Sleuth Docs.pdf

7fc67f52a3ec6e59491f73b5bf30df3d

AppleDouble encoded Macintosh file

CodeResources

931cf96f54c53fd2fc06c6764a512f5a

XML 1.0 document, ASCII text

Carrier Sleuth

182f38baf024bfff752352bb37b6fe85

Carrier Sleuth Docs.pdf

b7577d0877af9789ce95da6e7a9c8c3d

PDF document, version 1.3, 8 pages

cursor1.png

94d42c977455f9da3c3232df7489287f

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

App.icns

6de4adaf27098b64e157f7684fb5a5d2

Mac OS X icon, 1028134 bytes, "TOC " type

MBS_Images_PNG_Plugin_20159.dylib

fc6a4b31f76f819539b2c59e2798bd8b

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Picture_PictureEditor_Plugin_20159.dylib

3b029ed750c83770e12e8c239f1485c7

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Images_GIF_Plugin_20159.dylib

1430b33d241f41e79669096d9e9f514e

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Main_NSBase_Plugin_20159.dylib

f94decdbb942005c7eb212665f42fbe4

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_MacCocoa_NSProcessInfo_Plugin_20159.dylib

4523681164b231cc570ddb2ed11b4d91

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Util_Memory_Plugin_20159.dylib

3f55912618032e823c5416844c303464

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Main_Registration_Plugin_20159.dylib

eef0d021b9b6dc347612ac7aae2c0cc3

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

InternetEncodings.dylib

bd92d2be42a7c39834105f62993b8ef3

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>

libxojolibtest.dylib

baea5fd8146c345b69f6a89346ae4126

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>

XojoFramework

45dc537dd1d862825789344d469acc37

ASCII text, with no line terminators

Resources

e58c4cf10cc7c8ef7d7167ccb641aeb4

ASCII text, with no line terminators

CodeResources

80b535c731a3342c154b9c00440fd84f

XML 1.0 document, ASCII text

XojoFramework

79b192779e2ae784058dcb0a9588e7ae

Localizable.strings

b59cc40069f77e6124be0032ecfa9d07

Unicode text, UTF-16, little-endian text

Localizable.strings

f3481b5fbd50286c945e73f6e096de60

Unicode text, UTF-16, little-endian text

Localizable.strings

d7ad6c94b070648c5097374d08028a7c

Unicode text, UTF-16, little-endian text

Localizable.strings

dcc081fb7ec740c28b089e5df123abe8

Unicode text, UTF-16, little-endian text

Localizable.strings

7581a82d256b3e76aa7707a55265819f

Unicode text, UTF-16, little-endian text

XOJTooltipController.nib

de28e487ec5e7fef5ce8a978a7608906

Apple binary property list

Localizable.strings

180f6f73e2948929a402018d20682c81

Unicode text, UTF-16, little-endian text

AllDirectionsCursor.pdf

bb2bc5c92beef0a0067ced4652470206

PDF document, version 1.3, 1 pages

ScrubberKnob.tiff

bdb860b3beb5bbb627d6824c33d892f5

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberKnob@2x.png, orientation=upper-left, width=20

Localizable.strings

232827f6b3b9ebf0e4ccc41f628b95ec

Unicode text, UTF-16, little-endian text

InfoPlist.strings

51ef59b60e5b41b91519cc662a9fe886

Unicode text, UTF-16, little-endian text

Cursors.plist

b297b404681cbef3e57aef45648b3d88

XML 1.0 document, ASCII text

Localizable.strings

3800d73f15e011776d61da9b93ffb566

Unicode text, UTF-16, little-endian text

InvisibleCursor.png

bfba9387fc60fd1b6da70e29abc2afcf

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

XOJPrintProgressDialog.nib

4cf6b92f50fc7e54786d465238ddcec1

Apple binary property list

Localizable.strings

505ea00483ad2ac7099fb589cc2a055c

Unicode text, UTF-16, little-endian text

NorthWestSouthEastCursor.pdf

1493dcafea1108131daf1fba38161b30

PDF document, version 1.3, 1 pages

Localizable.strings

53b2e0644dd6d444628129a9f702cf1b

Unicode text, UTF-16, little-endian text

NorthEastSouthWestCursor.pdf

dd2953ace5524b0bb987d0481fd12de5

PDF document, version 1.3, 1 pages

VolumeWindow.tiff

a82fd83ff572be5ab1fc10ec79af5f0b

TIFF image data, big-endian, direntries=21, height=228, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeWindow@2x.png, orientation=upper-left, width=44

Localizable.strings

4e3819474b07bad9562537e5c66ac88b

Unicode text, UTF-16, little-endian text

ScrubberTrackUnloadedMiddle.tiff

3598ae5a64091272589f2111d63e6498

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedMiddle@2x.png, orientation=upper-left, width=2

Localizable.strings

fde49cab125b00288f6ca00f03a7f96f

Unicode text, UTF-16, little-endian text

VolumeLow.tiff

4eb5c8f9e545a2e06630bffd3d925fe5

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeLow@2x.png, orientation=upper-left, width=36

ScrubberTrackLoadedRight.tiff

ed28edca850860bd20a6067f628745e6

TIFF image data, big-endian, direntries=21, height=10, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedRight.png, orientation=upper-left, width=5

StepForward.tiff

e914ccf012a3cff98d9711c924cb92fb

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=StepForward@2x.png, orientation=upper-left, width=36

Localizable.strings

3f7363c0235fb135f5186b5242172bbe

Unicode text, UTF-16, little-endian text

Localizable.strings

655d4afb5acb0797d287108e69dd9efc

Unicode text, UTF-16, little-endian text

ScrubberTrackLoadedLeft.tiff

2a3042eae5255d2728b07fb62e570bb7

TIFF image data, big-endian, direntries=21, height=10, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedLeft.png, orientation=upper-left, width=5

VolumeMuted.tiff

ed154db993d019749b90033df1596148

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeMuted.png, orientation=upper-left, width=18

Localizable.strings

cc228f834bc97a9d5c77842875a4e3a7

Unicode text, UTF-16, little-endian text

VolumeSliderKnob.tiff

3dd195e36627d5e336dd0f62a3654017

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeSliderKnob@2x.png, orientation=upper-left, width=20

ControllerBackgroundLeft.tiff

b2ed3facab8b221f45967c14e5e15b61

TIFF image data, big-endian, direntries=21, height=24, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundLeft.png, orientation=upper-left, width=1

NorthSouthCursor.pdf

f645ef1f149970f7058dc0d59de6d70e

PDF document, version 1.3, 1 pages

Localizable.strings

abc2b635fac66d11c8d76999b239a656

Unicode text, UTF-16, little-endian text

Play.tiff

8845460891f28c386c8b46ffb01edc06

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=Play.png, orientation=upper-left, width=18

MagnifyLargerCursor.pdf

a2eb385c6f33138e2d00e4ad711e7449

PDF document, version 1.3, 1 pages

Localizable.strings

fc597195dc6836628b8ecbf15f2be3a3

Unicode text, UTF-16, little-endian text

Pause.tiff

e29f9d3e74958211c6e7f3081ebe948e

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=Pause.png, orientation=upper-left, width=18

Localizable.strings

899c446b74bc8d5caeb09f8132f8ba16

Unicode text, UTF-16, little-endian text

Localizable.strings

6d0719d6df7dd72172069a13115aafed

Unicode text, UTF-16, little-endian text

VolumeSliderTrack.tiff

84b2ef7801676d9233081ce6ee069464

TIFF image data, big-endian, direntries=21, height=160, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeSliderTrack@2x.png, orientation=upper-left, width=20

ControllerBackgroundRight.tiff

475e90eb76155a369b642cf0ba5ff3bf

TIFF image data, big-endian, direntries=21, height=24, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundRight.png, orientation=upper-left, width=1

Localizable.strings

82be4675d302ed14c908710ace94884e

Unicode text, UTF-16, little-endian text

ScrubberTrackUnloadedLeft.tiff

e72f1de724716c4d73ab6aa2169672cd

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedLeft@2x.png, orientation=upper-left, width=10

Localizable.strings

b1e0b199966a92658596d73d341e1721

Unicode text, UTF-16, little-endian text

ControllerBackgroundMiddle.tiff

2d039ab5cdd7409604085ea957efdfaf

TIFF image data, big-endian, direntries=21, height=24, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundMiddle.png, orientation=upper-left, width=1

ScrubberTrackUnloadedRight.tiff

86515f9dd072dc90fc6670e6d90f036f

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedRight@2x.png, orientation=upper-left, width=10

Localizable.strings

7f3041eb81a083a86670fa88a935a2c9

Unicode text, UTF-16, little-endian text

VolumeMedium.tiff

d2fc1d1888e200b1c144bf6db536f6df

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeMedium.png, orientation=upper-left, width=18

ScrubberTrackLoadedMiddle.tiff

545096b8615c9d62e024cf8440f1494e

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedMiddle@2x.png, orientation=upper-left, width=2

Localizable.strings

61370612caec41039c377a93fa2baf4d

Unicode text, UTF-16, little-endian text

Localizable.strings

f90fc16bbe8b14d898f62119986c9700

Unicode text, UTF-16, little-endian text

Localizable.strings

c4c70e682a3000c92260d06115305284

Unicode text, UTF-16, little-endian text

Localizable.strings

bdc016a8017c16f5121d9199eb1841b3

Unicode text, UTF-16, little-endian text

MagnifySmallerCursor.pdf

2f6bac08a82db441b126d2662cddf4ae

PDF document, version 1.3, 1 pages

MacWaitCursor.pdf

cac7271f53e54d946f42a307e5e84b76

PDF document, version 1.3, 1 pages

VolumeHigh.tiff

f2cde2b6af5347fa907d2c7dc015c9d7

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeHigh@2x.png, orientation=upper-left, width=36

StepBackward.tiff

1bdf93f8b3d1b746deff20350cab06cd

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=StepBackward@2x.png, orientation=upper-left, width=36

Localizable.strings

0f1ed3b877eba2aad51546a2cd8a0f88

Unicode text, UTF-16, little-endian text

FileTypeChooser.nib

c037d312b059dc38b25eac76ca19609e

Apple binary property list

Localizable.strings

3b8bbed753ffb6b4633733d2e60393e7

Unicode text, UTF-16, little-endian text

Info.plist

684bdebf18f8d0169cc4e13fb5647216

XML 1.0 document, Unicode text, UTF-8 text

VolumeOff.tiff

9fbe0ce03f6922fe345051ef56d6c265

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeOff@2x.png, orientation=upper-left, width=36

Localizable.strings

df086e5a6add93e244074288811b0453

Unicode text, UTF-16, little-endian text

Localizable.strings

5f25c3d03283fa2e886de46d565e1a3a

Unicode text, UTF-16, little-endian text

EastWestCursor.pdf

c5844782128516fc7cc7552ad91aad02

PDF document, version 1.3, 1 pages

Current

7fc56270e7a70fa81a5935b72eacbe29

very short file (no magic)

MBS_Picture_PicturePaletteTransform_Plugin_20159.dylib

e938637f66b00f2dc81a86ce25d83f25

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Picture_PictureRotate_Plugin_20159.dylib

e58174ab4ea12f23e7baa420614e876f

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

Crypto.dylib

1441c71a514975394c7adb413203d4ac

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK>

MBS_ChartDirector_ChartDirector6_Plugin_20159.dylib

3922ca61b9448cd9e331214a8880ef68

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Util_SystemInformation_Plugin_20159.dylib

d6eedd316550fc83514ea1801d0f926e

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

Info.plist

62987f64c6490f7fb1e13e384619be16

XML 1.0 document, Unicode text, UTF-8 text

PkgInfo

23b7d7d024abb0f558420e098800bf27

ASCII text, with no line terminators

.DS_Store

5bb535ef8f2aaf6c3328e1656f6783e3

Apple Desktop Services Store

._.DS_Store

f0d9d90674bab5908378533975df5a01

AppleDouble encoded Macintosh file

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	blackcatsystems.com/download/CarrierSleuth.zip	216.92.10.68	200 OK	21 MB
URL User Request GET HTTP/1.1 blackcatsystems.com/download/CarrierSleuth.zip IP 216.92.10.68:443 ASN #7859 PAIR-NETWORKS Certificate IssuerSectigo Limited Subjectblackcatsystems.com Fingerprint61:82:4E:BF:41:F8:66:84:13:3E:9C:B7:DD:16:90:BF:F2:91:44:AA ValiditySun, 10 Dec 2023 00:00:00 GMT - Thu, 09 Jan 2025 23:59:59 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 21 MB (20878685 bytes) Hash fb5dfa19e4f0ac0025aa639df1c4a180 f90ca5731a3e5c04c81dc3e77fc3e7a0de4fe7ae 73c40e31ac083a784a63b4dec6e6d241e1174b53a14fbd62e70932a4ce926453 HTTP Headers `GET /download/CarrierSleuth.zip HTTP/1.1 Host: blackcatsystems.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 28 Mar 2024 23:42:35 GMT Server: Apache Last-Modified: Wed, 06 Sep 2023 13:24:55 GMT ETag: "13e955d-604b0ab549626" Accept-Ranges: bytes Content-Length: 20878685 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/zip`

blackcatsystems.com/download/CarrierSleuth.zip

216.92.10.68

200 OK

21 MB

URL User Request GET HTTP/1.1
blackcatsystems.com/download/CarrierSleuth.zip
IP
216.92.10.68:443
ASN
#7859 PAIR-NETWORKS

Certificate
IssuerSectigo Limited
Subjectblackcatsystems.com
Fingerprint61:82:4E:BF:41:F8:66:84:13:3E:9C:B7:DD:16:90:BF:F2:91:44:AA
ValiditySun, 10 Dec 2023 00:00:00 GMT - Thu, 09 Jan 2025 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
21 MB (20878685 bytes)
Hash
fb5dfa19e4f0ac0025aa639df1c4a180
f90ca5731a3e5c04c81dc3e77fc3e7a0de4fe7ae
73c40e31ac083a784a63b4dec6e6d241e1174b53a14fbd62e70932a4ce926453

HTTP Headers

GET /download/CarrierSleuth.zip HTTP/1.1
Host: blackcatsystems.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 28 Mar 2024 23:42:35 GMT
Server: Apache
Last-Modified: Wed, 06 Sep 2023 13:24:55 GMT
ETag: "13e955d-604b0ab549626"
Accept-Ranges: bytes
Content-Length: 20878685
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (97)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers