Report - cdncoredatastorageprod.azureedge.net/device/swarm-driver/kone-pure-owl-eye/kone-pure-owl-eye_170-1.0127-1.0127-3751-v1.7z

Report Overview

Submitted URL
cdncoredatastorageprod.azureedge.net/device/swarm-driver/kone-pure-owl-eye/kone-pure-owl-eye_170-1.0127-1.0127-3751-v1.7z
IP
13.107.213.53
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2024-05-08 01:21:11
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdncoredatastorageprod.azureedge.net	unknown	2014-01-22	2021-05-19	2022-12-08	575 B	2.7 MB	13.107.246.53

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
cdncoredatastorageprod.azureedge.net/device/swarm-driver/kone-pure-owl-eye/kone-pure-owl-eye_170-1.0127-1.0127-3751-v1.7z
IP
13.107.246.53
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
7-zip archive data, version 0.4
Size
2.7 MB (2651292 bytes)
Hash
5d494d3e552a82f3ebf6b3b5e86d8f34
a4e3db85c3e0422c3a6dbdb29602bc43e1bb7749
5130246ea58ab9c1bab1a2ad3e8a16e4587ff9d5057f72aab4ecaac95c66bb60

Archive (24)

Filename

Md5

File type

KONE_PURE_Owl-Eye_V1.12.bin

c9717fd9c86be1e042f57046bcf8b630

data

firmware_upgrade.ini

82e5216fb1943466d3d4279d086a3624

ASCII text, with CRLF line terminators

version.ini

f75369ffd392bb12129694d250824b23

Generic INItialization configuration [25]

1c0eea0b-ee0f-469f-a720-bd67ed556415.devicemetadata-ms

5b2c87c1e6870372d331206acafcfd6a

Microsoft Cabinet archive data, Device Metadata Package, 707972 bytes, 26 files, at 0x2c last modified Sun, Apr 17 2017 14:00:48 +A "PackageInfo.xml" last modified Sun, Nov 18 2016 11:29:48 +A "DeviceInformation\device.ico", number 1, 28 datablocks, 0x1 compression

china.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

chinese.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

danish.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

english.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

finnish.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

france.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

germany.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

italian.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

japanese.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

korean.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

polish.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

portuguese.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

russian.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

spain.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

swedish.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

thai.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

vietnamese.qm

bcebcf42735c6849bdecbb77451021dd

Qt Translation file

AlienFX32_VID_1E7D&PID_2DCD.dll

82221c6b72c1d218b1c5a27df3677627

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

AlienFX64_VID_1E7D&PID_2DCD.dll

6ca4973b09b95d0608374b6d5499c4e2

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

kone_pure_owl-eye.dll

c8a2bbd10a640b17b92513f14ed3585b

PE32 executable (DLL) (GUI) Intel 80386 (stripped to external PDB), for MS Windows, 11 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

cdncoredatastorageprod.azureedge.net/device/swarm-driver/kone-pure-owl-eye/kone-pure-owl-eye_170-1.0127-1.0127-3751-v1.7z

13.107.246.53

2.7 MB

URL
cdncoredatastorageprod.azureedge.net/device/swarm-driver/kone-pure-owl-eye/kone-pure-owl-eye_170-1.0127-1.0127-3751-v1.7z
IP
13.107.246.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
7-zip archive data, version 0.4
Size
2.7 MB (2651292 bytes)
Hash
5d494d3e552a82f3ebf6b3b5e86d8f34
a4e3db85c3e0422c3a6dbdb29602bc43e1bb7749
5130246ea58ab9c1bab1a2ad3e8a16e4587ff9d5057f72aab4ecaac95c66bb60

HTTP Headers

GET /device/swarm-driver/kone-pure-owl-eye/kone-pure-owl-eye_170-1.0127-1.0127-3751-v1.7z HTTP/1.1
Host: cdncoredatastorageprod.azureedge.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 01:20:43 GMT
content-type: application/x-7z-compressed
content-length: 2651292
last-modified: Tue, 15 Nov 2022 09:03:18 GMT
etag: 0x8DAC6E83CD10673
x-ms-request-id: ff56c415-401e-0029-05e5-a00fdf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20240508T012043Z-er15bb998b7j7j4mh17hha48xg00000003ug000000000rds
x-fd-int-roxy-purgeid: 0
x-cache: TCP_MISS
accept-ranges: bytes
X-Firefox-Spdy: h2