Report - www.tenwayradio.com/wp-content/uploads/2019/07/BF-480.zip

Report Overview

Submitted URL
www.tenwayradio.com/wp-content/uploads/2019/07/BF-480.zip
IP
74.220.219.131
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2024-04-23 16:54:24
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.tenwayradio.com	unknown	2018-05-11	2019-06-03	2024-02-11	511 B	2.1 MB	74.220.219.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

Files detected

URL
www.tenwayradio.com/wp-content/uploads/2019/07/BF-480.zip
IP
74.220.219.131
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
2.1 MB (2075259 bytes)
Hash
de3202eaa883b0f00ad05e1fa0919347
7e78fd5727e8474f1c5cd1be3c0bdac8dc2bbca8
375c82707f3db2ac13d8fc5937367993c92e1772eda9dbdf29171616ab78ef69

Archive (9)

Filename

Md5

File type

BF-480 VR07.01.UCIP

4a2fb1e4393e52b3469274f5fe530e6e

XML 1.0 document, ISO-8859 text, with CRLF line terminators

BF480.exe

e294f8e97d0e5aed0c771ffa120c23a0

PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections

BF_Chinese.chm

bf6db3edbfe7e9c6ba6b2b98096b8c94

MS Windows HtmlHelp Data

BF_English.chm

8c9113503ef38baa1c33abbd9dc088ea

MS Windows HtmlHelp Data

Chinese.Ini

52cb5d3cf090103bf842ab87286c9ab0

Generic INItialization configuration [fMainFrm]

English.Ini

fd5c1621168043a5faa8db4631cfda8b

Generic INItialization configuration [fMainFrm]

Print.fr3

0f9820a0956d22612cb6c7b5c1c94bc8

XML 1.0 document, ISO-8859 text, with very long lines (700), with CRLF line terminators

SysInfo.Ini

652c0f8fcba92c47d10df92e13212614

ISO-8859 text, with CRLF line terminators

pLanguage.exe

4c1ab0aca34de8d1685c29ca1acf5193

PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/64

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

www.tenwayradio.com/wp-content/uploads/2019/07/BF-480.zip

74.220.219.131

200 OK

2.1 MB

URL User Request GET HTTP/2
www.tenwayradio.com/wp-content/uploads/2019/07/BF-480.zip
IP
74.220.219.131:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subjectwww.tenwayradio.com
Fingerprint0D:C1:EA:14:58:FA:1D:D1:69:66:91:A8:58:77:4F:BA:8B:0E:51:6A
ValidityThu, 11 Apr 2024 18:20:41 GMT - Wed, 10 Jul 2024 18:20:40 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
2.1 MB (2075259 bytes)
Hash
de3202eaa883b0f00ad05e1fa0919347
7e78fd5727e8474f1c5cd1be3c0bdac8dc2bbca8
375c82707f3db2ac13d8fc5937367993c92e1772eda9dbdf29171616ab78ef69

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/64

HTTP Headers

GET /wp-content/uploads/2019/07/BF-480.zip HTTP/1.1
Host: www.tenwayradio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 10 Jul 2019 09:51:00 GMT
accept-ranges: bytes
content-length: 2075259
cache-control: max-age=21600
expires: Tue, 23 Apr 2024 22:53:58 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
content-type: application/zip
date: Tue, 23 Apr 2024 16:53:58 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (9)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers