Report - cdn.discordapp.com/attachments/700020795056848908/1228123541686321152/modest-menu_v1.0.0_unknowncheats.me__unknowncheats.me_.zip?ex=662ae62d&is=6618712d&hm=aa693b8da0a9b76ae7172c15bfd0a7179d670dcdf6143096ee0b802dc387d9a6&

Report Overview

Submitted URL
cdn.discordapp.com/attachments/700020795056848908/1228123541686321152/modest-menu_v1.0.0_unknowncheats.me__unknowncheats.me_.zip?ex=662ae62d&is=6618712d&hm=aa693b8da0a9b76ae7172c15bfd0a7179d670dcdf6143096ee0b802dc387d9a6&
IP
162.159.130.233
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 11:06:14
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.discordapp.com	2474	2015-02-26	2015-08-24	2024-04-18	675 B	18 MB	162.159.133.233

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
cdn.discordapp.com/attachments/700020795056848908/1228123541686321152/modest-menu_v1.0.0_unknowncheats.me__unknowncheats.me_.zip?ex=662ae62d&is=6618712d&hm=aa693b8da0a9b76ae7172c15bfd0a7179d670dcdf6143096ee0b802dc387d9a6&
IP
162.159.133.233
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
18 MB (17664451 bytes)
Hash
13b33baf9597ae6ddc68fa9634af16f1
57f3a723634ec00b4f09d066bc0607084cc4b6e5
75a3295f8c688359fcb7555b80e3f71ee42c5ac1d4525a39b2571107acf06a45

Archive (9)

Filename

Md5

File type

config.json

3bea77ef233e2e32636ba889ceb489e3

JSON text data

demo.lua

a0cdff1f4eaf5af121513b9885295341

ASCII text, with CRLF line terminators

menu.lua

9596bef3ecd38e99364eb58e56cd49be

ASCII text, with CRLF line terminators

Readme.api

36754844e4b9d76b810066b529af0e5b

ASCII text, with CRLF line terminators

sirius.lua.example

1fdd7bce4f24c51ec8267d7fe65b265e

ASCII text, with CRLF line terminators

vehicle.lua

1eceb52600b875b85a169687fb62ed1e

ASCII text, with CRLF line terminators

weapon.lua

402a9279c76afb2c5977cf97d270c3d1

ASCII text, with CRLF line terminators

themes.json

ecc97a512f2bee4c4344a7a4126b5a5b

JSON text data

modest-menu.exe

ce03d8db32b901caba01fa8b1beefe54

PE32+ executable (GUI) x86-64, for MS Windows, 9 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 15/63

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

cdn.discordapp.com/attachments/700020795056848908/1228123541686321152/modest-menu_v1.0.0_unknowncheats.me__unknowncheats.me_.zip?ex=662ae62d&is=6618712d&hm=aa693b8da0a9b76ae7172c15bfd0a7179d670dcdf6143096ee0b802dc387d9a6&

162.159.133.233

18 MB

URL
cdn.discordapp.com/attachments/700020795056848908/1228123541686321152/modest-menu_v1.0.0_unknowncheats.me__unknowncheats.me_.zip?ex=662ae62d&is=6618712d&hm=aa693b8da0a9b76ae7172c15bfd0a7179d670dcdf6143096ee0b802dc387d9a6&
IP
162.159.133.233:0
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
18 MB (17664451 bytes)
Hash
13b33baf9597ae6ddc68fa9634af16f1
57f3a723634ec00b4f09d066bc0607084cc4b6e5
75a3295f8c688359fcb7555b80e3f71ee42c5ac1d4525a39b2571107acf06a45

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 15/63

HTTP Headers

GET /attachments/700020795056848908/1228123541686321152/modest-menu_v1.0.0_unknowncheats.me__unknowncheats.me_.zip?ex=662ae62d&is=6618712d&hm=aa693b8da0a9b76ae7172c15bfd0a7179d670dcdf6143096ee0b802dc387d9a6& HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 11:05:25 GMT
content-type: application/zip
content-length: 17664451
cf-ray: 87642dfc2876b518-OSL
cf-cache-status: MISS
accept-ranges: bytes, bytes
cache-control: public, max-age=31536000
content-disposition: attachment; filename="modest-menu_v1.0.0_unknowncheats.me__unknowncheats.me_.zip"
etag: "13b33baf9597ae6ddc68fa9634af16f1"
expires: Fri, 18 Apr 2025 11:05:25 GMT
last-modified: Thu, 11 Apr 2024 23:24:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-goog-generation: 1712877869854007
x-goog-hash: crc32c=ysm7Hg==, md5=E7M7r5WXrm3caPqWNK8W8Q==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 17664451
x-guploader-uploadid: ABPtcPrJEZqp-wfTAKLXk9Htco4LOTiMbEbBVD5_U62d_GWYxS5cpwXzrLcAHOm60x_G9cToxP9WX9zpDQ
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bIRHs6Ka5xD%2BIsd5nLUDegQwOjQ3MceDZ7tPePlQG5ZPJEJ8%2BaoRQBjMCYqyUk4XcK5Lb%2B44mw3s%2F2qJqN%2F4VYTVafu305gpwBO5TSM%2Bwc5wIrU5jw%2BHD3pOiXjZ8oWhGqyazg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=V31dk.SRwoOTgwLK785j23hOQgIASUlNIHvcXWWkKvo-1713438325-1.0.1.1-T1aa7Ft391t7iBgMOOosCDgqjq.70tJK9YbSHi9ydQbR8_0kE.j.CdabrHMi3gVcldwLsOiPjIg95L8lJf7dcA; path=/; expires=Thu, 18-Apr-24 11:35:25 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=QRmZCb5pQHHSeNXHdjOWedX3.LX9W89u.xIjsa3.fsE-1713438325748-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2