Report - nic.funet.fi/index/msdos/Mirrors/winsite/win95/miscutil/EmailSeeker10shareware.zip

Report Overview

Submitted URL
nic.funet.fi/index/msdos/Mirrors/winsite/win95/miscutil/EmailSeeker10shareware.zip
IP
193.166.3.1
ASN
#1741 Tieteen tietotekniikan keskus Oy
Submitted
2024-05-11 05:52:02
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
nic.funet.fi	238458	unknown	No data	No data	536 B	950 kB	193.166.3.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
nic.funet.fi/index/msdos/Mirrors/winsite/win95/miscutil/EmailSeeker10shareware.zip
IP
193.166.3.1
ASN
#1741 Tieteen tietotekniikan keskus Oy

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
950 kB (949514 bytes)
Hash
b0efecebbc75c48b6004f39ffdeaeaca
589a2fc5649e46c7816d05dcb1d574c906e9f060
0a216546a8dbbe2f99c0f663d5cbd3264492f747bbd76c985b87da09cfe8dd95

Archive (28)

Filename

Md5

File type

help_local.html

3014c18532dad2311843c84dc488b032

HTML document, ASCII text, with CRLF line terminators

styles.css

d97bccfb331ac015ca02745c88a1e563

ASCII text, with CRLF line terminators

setupscreen.gif

2e9c48ba6ae3741a14babbed849c4dc0

GIF image data, version 89a, 366 x 275

sendscr.gif

fc7e1c579b927f103ae7de8c343d91a3

GIF image data, version 89a, 383 x 266

seekscr.gif

c00cf7d4b3be7fb55253742a55aa699e

GIF image data, version 89a, 383 x 136

newsendscreen.gif

7d5f778f765dd193518092e403141260

GIF image data, version 89a, 474 x 459

newsendbtn.gif

e1c72f4c4090710a77f441d2230b71ad

GIF image data, version 89a, 132 x 43

newseekbtn.gif

bb15df6315dd92279b15d32bce530e1e

GIF image data, version 89a, 142 x 41

newseek.gif

59686305c8e015075b2e8a8fadf13fd0

GIF image data, version 89a, 530 x 118

logotop.gif

b02c1729bc712edde9384fdbf78f9385

GIF image data, version 89a, 590 x 60

sending.gif

40f900074c1bb578698a4e10c44202fd

GIF image data, version 89a, 510 x 242

sendjoblisting.gif

5ce0fb9ce2e88339297986697547fede

GIF image data, version 89a, 354 x 87

sendout.gif

7742584c63bd8c354c5fb22cc1323a6c

GIF image data, version 89a, 510 x 354

mainwindow.gif

15d3841a74e52347c82b99ce0b8a3fe0

GIF image data, version 89a, 383 x 287

logo.bmp

bcd63b6870702d440a1ce8895f9ebfe5

PC bitmap, Windows 3.x format, 500 x 333 x 24, image size 499500, resolution 3779 x 3779 px/m, cbSize 499554, bits offset 54

List1.txt

4ed93ba48e86ca3851ef303143bc74e1

ASCII text, with CRLF line terminators

combo1.txt

d5eea7588d18e2e704d8e9052997f23c

ASCII text, with CRLF line terminators

combo2.txt

d41d8cd98f00b204e9800998ecf8427e

Copy of www.Altavista.com.txt

2953e163e09cd58e9ec05d2a8ca083c5

ASCII text, with CRLF line terminators

List2.txt

fa4820cf857fb227e5b686508a6977e4

ASCII text, with CRLF line terminators

www.search.lt.txt

12946d47e4cbd892b37fe70f82f55d8d

ASCII text, with CRLF line terminators

www.altavista.com.txt

12946d47e4cbd892b37fe70f82f55d8d

ASCII text, with CRLF line terminators

www.google.com.txt

3a87c70844ca6cd1dc818f79a73a0762

ASCII text, with CRLF line terminators

www.googlas.com.txt

3a87c70844ca6cd1dc818f79a73a0762

ASCII text, with CRLF line terminators

server.txt

cb492b7df9b5c170d7c87527940eff3b

ASCII text, with CRLF line terminators

ESeeker.exe

12fab89943c6c1045b1a2b4c5444371e

PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections

seek_emails.bmp

c3d2538b709be3128728c25b08676045

PC bitmap, Windows 3.x format, 640 x 39 x 24, image size 74880, cbSize 74934, bits offset 54

send_emails.bmp

605cec1d3b7c281374b986999a784a8b

PC bitmap, Windows 3.x format, 640 x 39 x 24, image size 74880, cbSize 74934, bits offset 54

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/65

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

nic.funet.fi/index/msdos/Mirrors/winsite/win95/miscutil/EmailSeeker10shareware.zip

193.166.3.1

200 OK

950 kB

URL User Request GET HTTP/1.1
nic.funet.fi/index/msdos/Mirrors/winsite/win95/miscutil/EmailSeeker10shareware.zip
IP
193.166.3.1:443
ASN
#1741 Tieteen tietotekniikan keskus Oy

Certificate
IssuerSectigo Limited
Subject*.nic.funet.fi
Fingerprint43:07:F0:E5:83:B4:FB:13:78:8D:65:10:0B:FD:9F:6A:31:55:03:07
ValidityTue, 26 Sep 2023 00:00:00 GMT - Wed, 25 Sep 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
950 kB (949514 bytes)
Hash
b0efecebbc75c48b6004f39ffdeaeaca
589a2fc5649e46c7816d05dcb1d574c906e9f060
0a216546a8dbbe2f99c0f663d5cbd3264492f747bbd76c985b87da09cfe8dd95

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/65

HTTP Headers

GET /index/msdos/Mirrors/winsite/win95/miscutil/EmailSeeker10shareware.zip HTTP/1.1
Host: nic.funet.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 11 May 2024 04:06:48 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Last-Modified: Sun, 26 Aug 2001 08:01:00 GMT
ETag: "e7d0a-38c6a3db7a700"
Accept-Ranges: bytes
Content-Length: 949514
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=40, max=30
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (28)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers