Report Overview
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
w.mane.fun | unknown | 2023-02-01 | 2023-04-18 | 2023-11-06 | 389 B | 3.5 MB | 146.190.192.68 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
w.mane.fun/pnco.zip
IP
146.190.192.68
ASN
#14061 DIGITALOCEAN-ASN
File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
3.5 MB (3517355 bytes)
Hash
c07eec20ef21128f0e281e8d60d4ea7a
ff77a6de91ae23a12775b87ee1ad24a013732476
Archive (1)
Filename | Md5 | File type | |||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
blue_helper | eb4cadd564307359965a87ce6687614e
| ELF 64-bit LSB executable, x86-64, version 1 (GNU/Linux) |
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public Nextron YARA rules | malware | Detects Monero mining software |
Elastic Security YARA Rules | malware | Linux.Cryptominer.Camelot |
Elastic Security YARA Rules | malware | Linux.Cryptominer.Malxmr |
Elastic Security YARA Rules | malware | Linux.Trojan.Pornoasset |
Elastic Security YARA Rules | malware | MacOS.Cryptominer.Generic |
Elastic Security YARA Rules | malware | MacOS.Cryptominer.Xmrig |
VirusTotal | malicious |
JavaScript (0)
No Javascripts found
No Javascripts found
No Javascripts found
HTTP Transactions (1)
URL | IP | Response | Size | |||||||
---|---|---|---|---|---|---|---|---|---|---|
w.mane.fun/pnco.zip | 146.190.192.68 | 3.5 MB | ||||||||
Detections
HTTP Headers
| ||||||||||