Report - www.strcprstskrzkrk.co.uk/curl.zip

Report Overview

Submitted URL
www.strcprstskrzkrk.co.uk/curl.zip
IP
45.56.114.145
ASN
#63949 Akamai Connected Cloud
Submitted
2024-05-05 06:53:41
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.strcprstskrzkrk.co.uk	unknown	unknown	No data	No data	404 B	631 kB	45.56.114.145

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.strcprstskrzkrk.co.uk/curl.zip
IP
45.56.114.145
ASN
#63949 Akamai Connected Cloud

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
631 kB (630886 bytes)
Hash
24d67e7963dc334782684f7797335981
8d83e9e7c9af42f1e310e4332e78a3989c99a3ee
a877a9818efcb90fa4fd87d4ab0c6554cf6bf9eafed03f247ccdb6710ce23490

Archive (9)

Filename

Md5

File type

!Bootfeb

71cad6633deb73d0d0a5f4ec88d6669a

ASCII text

!Runfeb

fece6308ed7cc62c64af0c317e04ff86

ASCII text

!Spritesff9

2215538923b0a93b542610dfbe72f484

GLS_BINARY_LSB_FIRST

Messages

331627f4e1933f5fdf3d3125c6b7def0

ASCII text

!Help

97cb681b606a4ee89a21fb1d2e598f36

ISO-8859 text

Templatesfec

5600ac62f4eeb2b923ce6cc21d4f3c7e

DOS executable (block device driver)

Desc

1eff1b8636e9c90a941dbb8c96325230

ASCII text

curlff8

dbfa35ba3745d3d155711cadef49556c

RISC OS AIF executable

ca-bundle

783531dfa814457dad12fa8112b671b3

ASCII text

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	www.strcprstskrzkrk.co.uk/curl.zip	45.56.114.145	200 OK	631 kB
URL User Request GET HTTP/1.1 www.strcprstskrzkrk.co.uk/curl.zip IP 45.56.114.145:80 ASN #63949 Akamai Connected Cloud File type Zip archive data, at least v1.0 to extract, compression method=store Size 631 kB (630886 bytes) Hash 24d67e7963dc334782684f7797335981 8d83e9e7c9af42f1e310e4332e78a3989c99a3ee a877a9818efcb90fa4fd87d4ab0c6554cf6bf9eafed03f247ccdb6710ce23490 HTTP Headers `GET /curl.zip HTTP/1.1 Host: www.strcprstskrzkrk.co.uk User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sun, 05 May 2024 06:53:16 GMT Server: Apache/2.4.25 (Debian) Last-Modified: Sun, 25 Jan 2004 13:30:48 GMT ETag: "9a066-3d1bda9355200" Accept-Ranges: bytes Content-Length: 630886 Cache-Control: max-age=86400 Expires: Mon, 06 May 2024 06:53:16 GMT Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/zip Content-Language: en`

www.strcprstskrzkrk.co.uk/curl.zip

45.56.114.145

200 OK

631 kB

URL User Request GET HTTP/1.1
www.strcprstskrzkrk.co.uk/curl.zip
IP
45.56.114.145:80
ASN
#63949 Akamai Connected Cloud

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
631 kB (630886 bytes)
Hash
24d67e7963dc334782684f7797335981
8d83e9e7c9af42f1e310e4332e78a3989c99a3ee
a877a9818efcb90fa4fd87d4ab0c6554cf6bf9eafed03f247ccdb6710ce23490

HTTP Headers

GET /curl.zip HTTP/1.1
Host: www.strcprstskrzkrk.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 06:53:16 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Sun, 25 Jan 2004 13:30:48 GMT
ETag: "9a066-3d1bda9355200"
Accept-Ranges: bytes
Content-Length: 630886
Cache-Control: max-age=86400
Expires: Mon, 06 May 2024 06:53:16 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip
Content-Language: en

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (9)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers