Report - www.rbcafe.com/download/reviewsherlock.zip

Report Overview

Submitted URL
www.rbcafe.com/download/reviewsherlock.zip
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 02:18:54
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.rbcafe.com	unknown	unknown	2013-04-11	2024-02-25	496 B	11 MB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.rbcafe.com/download/reviewsherlock.zip
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
11 MB (10921977 bytes)
Hash
bfc70da1292ca83fd9fb68fda1321a3f
0023aba83bee3b180f09f68365ae493fcac44b80
d359a6a8c8821184207c05364c1f6a3b41a84e111b70db733fe9b3a88084e81c

Archive (139)

Filename

Md5

File type

CodeResources

1b7b9b6ea9e6b4aa821c1162ca2e8549

XML 1.0 document, ASCII text

Crypto.dylib

355ca323f5ab59cdf0a23e24686953f0

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK>

HTMLViewerCocoa.dylib

15b23487af82f9d2b120c1a8a888898d

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK>

InternetEncodings.dylib

7e6ebd5ec7969849a878fbc7fe9a9c16

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>

RegEx.dylib

d2f843b4a0c085e37d8ca0c173f5904d

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK>

SSLSocket.dylib

a6619cf8f786b43ad4abe58b41fe6b8e

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK>

XML.dylib

804e5e68e6318bd4b3b3fea0968908c1

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|HAS_TLV_DESCRIPTORS>

Resources

e58c4cf10cc7c8ef7d7167ccb641aeb4

ASCII text, with no line terminators

CodeResources

ef17d61c3ca77955b754bc5a3bad49d2

XML 1.0 document, ASCII text

AllDirectionsCursor.pdf

bb2bc5c92beef0a0067ced4652470206

PDF document, version 1.3, 1 pages

Localizable.strings

d7ad6c94b070648c5097374d08028a7c

Unicode text, UTF-16, little-endian text

Localizable.strings

5f25c3d03283fa2e886de46d565e1a3a

Unicode text, UTF-16, little-endian text

ControllerBackgroundLeft.tiff

ec0c90971b02a58705da7c193a74ee12

TIFF image data, big-endian, direntries=20, height=48, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundLeft@2x.png, orientation=upper-left, width=2

ControllerBackgroundMiddle.tiff

163a0f18d58b4a1e6c24a359c445c047

TIFF image data, big-endian, direntries=20, height=48, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundMiddle@2x.png, orientation=upper-left, width=1

ControllerBackgroundRight.tiff

ea958353cb453dc649477e86308d5759

TIFF image data, big-endian, direntries=20, height=48, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundRight@2x.png, orientation=upper-left, width=2

Localizable.strings

655d4afb5acb0797d287108e69dd9efc

Unicode text, UTF-16, little-endian text

Cursors.plist

b297b404681cbef3e57aef45648b3d88

XML 1.0 document, ASCII text

Localizable.strings

53b2e0644dd6d444628129a9f702cf1b

Unicode text, UTF-16, little-endian text

Localizable.strings

b59cc40069f77e6124be0032ecfa9d07

Unicode text, UTF-16, little-endian text

EastWestCursor.pdf

c5844782128516fc7cc7552ad91aad02

PDF document, version 1.3, 1 pages

Localizable.strings

dcc081fb7ec740c28b089e5df123abe8

Unicode text, UTF-16, little-endian text

InfoPlist.strings

51ef59b60e5b41b91519cc662a9fe886

Unicode text, UTF-16, little-endian text

Localizable.strings

232827f6b3b9ebf0e4ccc41f628b95ec

Unicode text, UTF-16, little-endian text

Localizable.strings

505ea00483ad2ac7099fb589cc2a055c

Unicode text, UTF-16, little-endian text

Localizable.strings

f90fc16bbe8b14d898f62119986c9700

Unicode text, UTF-16, little-endian text

FileTypeChooser.nib

1872238e669b1233835c069e4cf49671

Apple binary property list

Localizable.strings

61370612caec41039c377a93fa2baf4d

Unicode text, UTF-16, little-endian text

Localizable.strings

f3481b5fbd50286c945e73f6e096de60

Unicode text, UTF-16, little-endian text

Localizable.strings

df086e5a6add93e244074288811b0453

Unicode text, UTF-16, little-endian text

Localizable.strings

fc597195dc6836628b8ecbf15f2be3a3

Unicode text, UTF-16, little-endian text

Info.plist

780f9e1fe436c2cf4568e8ba0592f600

XML 1.0 document, Unicode text, UTF-8 text

InvisibleCursor.png

bfba9387fc60fd1b6da70e29abc2afcf

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

Localizable.strings

4e3819474b07bad9562537e5c66ac88b

Unicode text, UTF-16, little-endian text

Localizable.strings

7581a82d256b3e76aa7707a55265819f

Unicode text, UTF-16, little-endian text

Localizable.strings

cc228f834bc97a9d5c77842875a4e3a7

Unicode text, UTF-16, little-endian text

MacWaitCursor.pdf

cac7271f53e54d946f42a307e5e84b76

PDF document, version 1.3, 1 pages

MagnifyLargerCursor.pdf

a2eb385c6f33138e2d00e4ad711e7449

PDF document, version 1.3, 1 pages

MagnifySmallerCursor.pdf

2f6bac08a82db441b126d2662cddf4ae

PDF document, version 1.3, 1 pages

Localizable.strings

c4c70e682a3000c92260d06115305284

Unicode text, UTF-16, little-endian text

Localizable.strings

abc2b635fac66d11c8d76999b239a656

Unicode text, UTF-16, little-endian text

NorthEastSouthWestCursor.pdf

dd2953ace5524b0bb987d0481fd12de5

PDF document, version 1.3, 1 pages

NorthSouthCursor.pdf

f645ef1f149970f7058dc0d59de6d70e

PDF document, version 1.3, 1 pages

NorthWestSouthEastCursor.pdf

1493dcafea1108131daf1fba38161b30

PDF document, version 1.3, 1 pages

Pause.tiff

84a82565e84799d4819e2dc13307653b

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=Pause@2x.png, orientation=upper-left, width=36

Localizable.strings

6d0719d6df7dd72172069a13115aafed

Unicode text, UTF-16, little-endian text

Play.tiff

586884d0e61ad5041d6a085d3132be73

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=Play@2x.png, orientation=upper-left, width=36

Localizable.strings

82be4675d302ed14c908710ace94884e

Unicode text, UTF-16, little-endian text

Localizable.strings

0f1ed3b877eba2aad51546a2cd8a0f88

Unicode text, UTF-16, little-endian text

Localizable.strings

3b8bbed753ffb6b4633733d2e60393e7

Unicode text, UTF-16, little-endian text

Localizable.strings

b1e0b199966a92658596d73d341e1721

Unicode text, UTF-16, little-endian text

ScrubberKnob.tiff

c17eb56444f2d49ec78945bce24fd895

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberKnob@2x.png, orientation=upper-left, width=20

ScrubberTrackLoadedLeft.tiff

c7a5b3c8acc06c3553cb9aefaa33fe81

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedLeft@2x.png, orientation=upper-left, width=10

ScrubberTrackLoadedMiddle.tiff

51ddfdc6147229287fb4b877f213422b

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedMiddle@2x.png, orientation=upper-left, width=2

ScrubberTrackLoadedRight.tiff

b642dc374ff3dee9878f35f433af8a8d

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedRight@2x.png, orientation=upper-left, width=10

ScrubberTrackUnloadedLeft.tiff

0fde8bf842041fb020cf404fae605b00

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedLeft@2x.png, orientation=upper-left, width=10

ScrubberTrackUnloadedMiddle.tiff

1f3efd1fcd55b3ae094a087558f3f565

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedMiddle@2x.png, orientation=upper-left, width=2

ScrubberTrackUnloadedRight.tiff

661ab170d8ee25d6975a75e1a801ce79

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedRight@2x.png, orientation=upper-left, width=10

Localizable.strings

fde49cab125b00288f6ca00f03a7f96f

Unicode text, UTF-16, little-endian text

StepBackward.tiff

9ce51a9b7af972b7bc594fed69915477

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=StepBackward@2x.png, orientation=upper-left, width=36

StepForward.tiff

a187ce8957a655b503f67b381c179b44

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=StepForward@2x.png, orientation=upper-left, width=36

Localizable.strings

3f7363c0235fb135f5186b5242172bbe

Unicode text, UTF-16, little-endian text

Localizable.strings

bdc016a8017c16f5121d9199eb1841b3

Unicode text, UTF-16, little-endian text

Localizable.strings

899c446b74bc8d5caeb09f8132f8ba16

Unicode text, UTF-16, little-endian text

Localizable.strings

3800d73f15e011776d61da9b93ffb566

Unicode text, UTF-16, little-endian text

VolumeHigh.tiff

f184fff62ec26b582d94aa580edc32b6

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeHigh@2x.png, orientation=upper-left, width=36

VolumeLow.tiff

ad6851b4d60b78d559eb5ce1a75db551

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeLow@2x.png, orientation=upper-left, width=36

VolumeMedium.tiff

5ec9d0f9d80aa89bee124a4688aa8c37

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeMedium@2x.png, orientation=upper-left, width=36

VolumeMuted.tiff

c44687b2422b96c3cd0fe3bd7712f65d

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeMuted@2x.png, orientation=upper-left, width=36

VolumeOff.tiff

0998d3e40e97b7ec9ec9a16df11c519a

TIFF image data, big-endian, direntries=20, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeOff@2x.png, orientation=upper-left, width=36

VolumeSliderKnob.tiff

cc62ebbd17b373ec501372b67867452b

TIFF image data, big-endian, direntries=20, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeSliderKnob@2x.png, orientation=upper-left, width=20

VolumeSliderTrack.tiff

e6ccd091a4cd2d4b3ab5d36877790c38

TIFF image data, big-endian, direntries=20, height=160, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeSliderTrack@2x.png, orientation=upper-left, width=20

VolumeWindow.tiff

954d8a3b5d2e59d60c90e0a0032b054e

TIFF image data, big-endian, direntries=20, height=228, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeWindow@2x.png, orientation=upper-left, width=44

XOJPrintProgressDialog.nib

cbd1f7a34c453623561c54c69ea15fa8

Apple binary property list

XOJTooltipController.nib

f789d2f81a76d2973c9c5c3f50d31092

Apple binary property list

Localizable.strings

7f3041eb81a083a86670fa88a935a2c9

Unicode text, UTF-16, little-endian text

Localizable.strings

180f6f73e2948929a402018d20682c81

Unicode text, UTF-16, little-endian text

XojoFramework

8e2d9d9e5f60c03006438972a908064e

Current

7fc56270e7a70fa81a5935b72eacbe29

very short file (no magic)

XojoFramework

45dc537dd1d862825789344d469acc37

ASCII text, with no line terminators

Info.plist

88cda2a0461798ab0b5e46c6fb260912

XML 1.0 document, Unicode text, UTF-8 text

Review Sherlock

05abc48ac00f79d355e22ddb6278ceb4

PkgInfo

23b7d7d024abb0f558420e098800bf27

ASCII text, with no line terminators

Localizable.strings

eb890be77bee240512f4855da51c609d

Unicode text, UTF-16, little-endian text, with CR line terminators

container-migration.plist

39b118490eab4affe284ef7df3ec7bf3

XML 1.0 document, ASCII text

Localizable.strings

1ef8b18eb47225fcefef4fc265763034

Unicode text, UTF-16, little-endian text, with CR line terminators

Localizable.strings

06b431e439f2146a0fcb87b1106f395a

Unicode text, UTF-16, little-endian text, with very long lines (355), with CR line terminators

Localizable.strings

81bd777edf2ea2c0adc1aebbe47e3c16

Unicode text, UTF-16, little-endian text, with CR line terminators

Localizable.strings

73e50055fa362309aa0ed18e41e85b50

Unicode text, UTF-16, little-endian text, with very long lines (383), with CR line terminators

Localizable.strings

cb3f471d6ccb3db1beb5409943267ed4

Unicode text, UTF-16, little-endian text, with CR line terminators

img_add_32.png

ae065677ca0ad916c958fa9c137554f0

PNG image data, 32 x 32, 8-bit colormap, non-interlaced

img_application_16.png

25cfd4795c0592c6bcdadcf2e4d5c100

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_application_32.png

428f13db042117b48d26a8d6a7c29803

PNG image data, 32 x 32, 8-bit colormap, non-interlaced

img_background.png

cad9ffe0f5e93d92147e997c118c474b

PNG image data, 200 x 152, 8-bit colormap, non-interlaced

img_chart_16.png

4506bd2ca6096e930f2ee5a2d79df954

PNG image data, 16 x 19, 8-bit colormap, non-interlaced

img_chart_bar_16.png

21de0f61d8db8072c2d8bb70b5c63b33

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

img_chart_bar_32.png

8926f3a3675a285addad5199bbc25bfa

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_chart_line_16.png

46441e5f0f51c2284502b78b671723c8

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

img_chart_line_32.png

2c3f82d8c406e2fb4f1b0e6527f297a3

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_chart_pie_32.png

1147638d41a8fb6c9b7c494427385a7f

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_copy_16.png

cb824033e2c392f2e3aa67190630a86c

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_data_mining_32.png

780c48dc28230e969bdf4bb32cd8f087

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_delete_16.png

e0e7e79aa65b73dfe94dd9510c69591e

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_delete_32.png

87910e0365673d5a253832999a76b706

PNG image data, 32 x 32, 8-bit colormap, non-interlaced

img_export_32.png

1616d537b3eb266553101f378a95b22e

PNG image data, 32 x 32, 8-bit colormap, non-interlaced

img_network_32.png

d90c10ce4b221becfc9e8e72f6b9a61f

PNG image data, 32 x 32, 8-bit colormap, non-interlaced

img_peoples_16.png

56efbac23665579990e5d12a705cade1

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_refresh_16.png

5342b37ed4aace89d6810e886b69367f

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_refresh_32.png

f8111f8dab7e19acc99e4a33f6eebd66

PNG image data, 32 x 32, 8-bit colormap, non-interlaced

img_review_32.png

c075db416d33432ee9d93e084bfbba30

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_review_sherlock_128.png

93d8f89ad443bdcfc838e634158c621d

PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced

img_review_sherlock_128@2x.png

3e826f7fd9c69426abed3473f04735ad

PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced

img_review_sherlock_128@3x.png

aae2ac3e29a9af8cbe98285924abffc6

PNG image data, 384 x 384, 8-bit/color RGBA, non-interlaced

img_review_sherlock_32.png

d8fadb945bb2297ce4af4001ba0fa0ac

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_review_sherlock_32@2x.png

271e4fb6109db76db3eee1c6ecf993a5

PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced

img_review_sherlock_32@3x.png

f72a8ab89f9fe1a5905061821453d079

PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced

img_reviews.png

d804103efe4fc1142220e7922b193b52

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_shovel_32.png

63d8e9047c306f4232960481d4b770d4

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_star_16.png

b5db1919535de7f71177aad1a6844ae8

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

img_star_32.png

e5da08fd20f13ce22ed751dd1cfb558f

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

img_stop_32.png

645ee98a4a8f47984b48ca0e0860ffa1

PNG image data, 32 x 32, 4-bit colormap, non-interlaced

img_tools_32.png

4c2a32518a7d30abfe202014bb247bc1

PNG image data, 32 x 32, 8-bit colormap, non-interlaced

img_user_16.png

e20d84136e940f1f029731363b333024

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_user_review_16.png

b44e853d29435a8ae9998aa9d0546626

PNG image data, 16 x 16, 8-bit colormap, non-interlaced

img_world_16.png

b23531518d89fd936f362014b324e84e

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

img_world_32.png

ac0def647d3175414d700f9f1bd09705

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

Localizable.strings

8935dbc8db68f7aa2ff41049f0bb457c

Unicode text, UTF-16, little-endian text, with CR line terminators

Localizable.strings

12646cef399a24348db4506535ae746a

Unicode text, UTF-16, little-endian text, with CR line terminators

Localizable.strings

5b8b8baba52db2f60dcde5b602716581

Unicode text, UTF-16, little-endian text, with CR line terminators

Localizable.strings

2ed889a8efa3d4bcdd21b2f552585e85

Unicode text, UTF-16, little-endian text, with CR line terminators

jquery.min.js

c01c2bd743766d00cd5b91bb029a4656

JavaScript source, ASCII text, with very long lines (32014)

jquery.qtip.min.css

48867ad179855c0c40b7d329badf291b

ASCII text, with very long lines (8648), with no line terminators

jquery.qtip.min.js

5e843aa450eb3478f995665ef117ad9e

JavaScript source, ASCII text, with very long lines (32006)

l.html

fe44fe911108818711d0ad96f63912c1

HTML document, ASCII text, with very long lines (975), with no line terminators

m.css

65c6e53d93ee4aaea6b98a0a219fe63a

ASCII text, with CRLF line terminators

m.html

c21136a91008066cb574b8b63ba7f6c1

HTML document, ASCII text, with very long lines (65536), with no line terminators

m.js

3ba04309e47b94e6d194a0f5b5c6db32

JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators

Reviewsherlock.icns

b0fb126e10bf3a9876097d5b0642f80f

Mac OS X icon, 818678 bytes, "ic07" type

Localizable.strings

33cc4aeb5fdebcf05d9f8aa3243e0924

Unicode text, UTF-16, little-endian text, with CR line terminators

Localizable.strings

e918245a125b9543a5d28cda383faca7

Unicode text, UTF-16, little-endian text, with CR line terminators

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	www.rbcafe.com/download/reviewsherlock.zip	188.114.97.1	200 OK	11 MB
URL User Request GET HTTP/2 www.rbcafe.com/download/reviewsherlock.zip IP 188.114.97.1:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectrbcafe.com FingerprintDF:97:70:CD:EB:CD:4B:23:A9:D9:24:A9:1D:95:AC:46:F9:C6:44:E0 ValidityThu, 25 Apr 2024 20:01:42 GMT - Wed, 24 Jul 2024 20:01:41 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 11 MB (10921977 bytes) Hash bfc70da1292ca83fd9fb68fda1321a3f 0023aba83bee3b180f09f68365ae493fcac44b80 d359a6a8c8821184207c05364c1f6a3b41a84e111b70db733fe9b3a88084e81c HTTP Headers `GET /download/reviewsherlock.zip HTTP/1.1 Host: www.rbcafe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 26 Apr 2024 02:18:22 GMT content-type: application/zip content-length: 10921977 x-frame-options: SAMEORIGIN permissions-policy: fullscreen=*,microphone=(),payment=(),geolocation=(),midi=(),camera=(),magnetometer=(),gyroscope=() vary: Accept-Encoding last-modified: Tue, 19 Jun 2018 08:20:07 GMT accept-ranges: bytes cache-control: max-age=31536000 expires: Sat, 26 Apr 2025 02:18:22 GMT referrer-policy: strict-origin-when-cross-origin x-xss-protection: 1;mode=block;report=https://rbcafe.report-uri.com/r/d/xss/enforce x-content-type-options: nosniff content-security-policy: img-src https: data:; font-src https: data:; media-src https:; expect-staple: max-age=31536000;includeSubDomains;preload;report-uri='https://rbcafe.report-uri.com/r/d/staple/reportOnly' expect-ct: max-age=604800,report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" strict-transport-security: max-age=31536000; includeSubDomains; preload x-iplb-request-id: A29EDEBD:84F0_D5BA2102:0050_662B0EEE_1B236:1166 x-iplb-instance: 51758 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YnqzCe5PDIXgzGudc9o%2BKjic12Cqcs7GpKU7bKjJI3jK%2FwGH2jX5RIub7ib0mvZchzBEifMMdeI0CFuQE0EArz1tFXzDG1Ts9HvZPIRC0e5b0b1zTLr8lxvcVhHLYy7quQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 87a314ef69677129-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

www.rbcafe.com/download/reviewsherlock.zip

188.114.97.1

200 OK

11 MB

URL User Request GET HTTP/2
www.rbcafe.com/download/reviewsherlock.zip
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectrbcafe.com
FingerprintDF:97:70:CD:EB:CD:4B:23:A9:D9:24:A9:1D:95:AC:46:F9:C6:44:E0
ValidityThu, 25 Apr 2024 20:01:42 GMT - Wed, 24 Jul 2024 20:01:41 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
11 MB (10921977 bytes)
Hash
bfc70da1292ca83fd9fb68fda1321a3f
0023aba83bee3b180f09f68365ae493fcac44b80
d359a6a8c8821184207c05364c1f6a3b41a84e111b70db733fe9b3a88084e81c

HTTP Headers

GET /download/reviewsherlock.zip HTTP/1.1
Host: www.rbcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 02:18:22 GMT
content-type: application/zip
content-length: 10921977
x-frame-options: SAMEORIGIN
permissions-policy: fullscreen=*,microphone=(),payment=(),geolocation=(),midi=(),camera=(),magnetometer=(),gyroscope=()
vary: Accept-Encoding
last-modified: Tue, 19 Jun 2018 08:20:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 26 Apr 2025 02:18:22 GMT
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1;mode=block;report=https://rbcafe.report-uri.com/r/d/xss/enforce
x-content-type-options: nosniff
content-security-policy: img-src https: data:; font-src https: data:; media-src https:;
expect-staple: max-age=31536000;includeSubDomains;preload;report-uri='https://rbcafe.report-uri.com/r/d/staple/reportOnly'
expect-ct: max-age=604800,report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-iplb-request-id: A29EDEBD:84F0_D5BA2102:0050_662B0EEE_1B236:1166
x-iplb-instance: 51758
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YnqzCe5PDIXgzGudc9o%2BKjic12Cqcs7GpKU7bKjJI3jK%2FwGH2jX5RIub7ib0mvZchzBEifMMdeI0CFuQE0EArz1tFXzDG1Ts9HvZPIRC0e5b0b1zTLr8lxvcVhHLYy7quQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a314ef69677129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (139)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers