Report - raw.githubusercontent.com/RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip

Report Overview

Submitted URL
raw.githubusercontent.com/RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip
IP
185.199.108.133
ASN
#54113 FASTLY
Submitted
2024-04-26 04:39:07
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
raw.githubusercontent.com	35802	2014-02-06	2014-03-01	2024-04-24	539 B	5.9 MB	185.199.108.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
raw.githubusercontent.com/RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip
IP
185.199.108.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
5.9 MB (5862397 bytes)
Hash
fa151918034545176ff807bff10dc9c8
9231cfc0ee0c0dc114e01505d209a9bb426d3a9a
df9a14919100e0ec08d5083ed0a23c08ba0ab15be14c423c89037dccac75a459

Archive (30)

Filename

Md5

File type

Gusin_skin_CityAction_feibiao_add.unity3d

aaf81de3a149a605a4933ecab33119a0

data

Gusin_skin_CityAction_foot_add.unity3d

72f5e703628e0476b2138bc6eee6cc4c

DIY-Thermocam raw data (Lepton 3.x), scale 1024-0, spot sensor temperature 0.000000, unit celsius, color scheme 1, maximum point enabled, calibration: offset -563053032636416.000000, slope 38685626227668133590597632.000000

Gusin_skin_CityAction_wuqi_add.unity3d

d223b68afcb0175ad220f6c51915515b

data

hero_Gusin_skin01_add.unity3d

e2c15e2bea224783f38b85edb27cd23c

data

hero_Gusin_skin01_high_add.unity3d

b099f9f753cf5f62b45f77d857097d4d

data

next_Gusion_attack1.unity3d

6aa5d8509e96e4df37ba319bc8edaeac

data

next_Gusion_attack1_hit.unity3d

a4f63ae0ba471ceb784da2c8b4996558

data

next_Gusion_attack2.unity3d

2eef383cba179e593cd948dbd60bbc50

data

next_Gusion_attack2_hit.unity3d

3f8931cddbe32f6264d29973025ffce4

next_Gusion_attack3.unity3d

5b2aa0162a07fa0ab9e30eabc9a77282

data

next_Gusion_attack3_hit.unity3d

9c9543edd35cde1200542d4901499155

data

next_Gusion_skill1_01.unity3d

a8a836d6748ad87e1963dd114b22e77a

data

next_Gusion_skill1_01_hit.unity3d

5908f01990a31f3c8336df991c52dd9e

data

next_Gusion_skill1_hit.unity3d

4206ad5c8d47b087695bee48ca027f96

data

next_Gusion_skill1_icon.unity3d

37ba0b60dbeb6199e1776ac4e1a8adc2

data

next_Gusion_skill1_star.unity3d

fdefdb94a24a92658f45f67cca21763b

data

next_Gusion_skill1_trail.unity3d

e4945bdc69a97540a50b890132af8554

data

next_Gusion_skill2_01.unity3d

6384385a197c8e567089995174cf33a3

DIY-Thermocam raw data (Lepton 2.x), scale 1024-0, spot sensor temperature 0.000000, unit celsius, color scheme 1, minimum point enabled, calibration: offset -0.000000, slope 0.015625

next_Gusion_skill2_02.unity3d

0faff371898db591aa1e41d3ba8a13d1

next_Gusion_skill2_03.unity3d

9f1e0d6555ce6e8fc0968877487ea996

data

next_Gusion_skill2_04.unity3d

5347ed449483325686bf20ee9047a51e

data

next_Gusion_skill2_05.unity3d

4ed4a1e5bb88c4d65219485695c422b2

data

next_Gusion_skill2_end.unity3d

dbd8123915f8cbe9a19d6b80ee5d1362

data

next_Gusion_skill2_hit.unity3d

15013d09390f7f2b8150f032f2f84417

data

next_Gusion_skill2_star.unity3d

5ae4c266029caeae155be8a3ded568ce

data

next_Gusion_skill3_01.unity3d

7dc8c93b2ca95a2d6ca77b0b602ec8c3

data

next_Gusion_skill3_02.unity3d

37b4e2b821b60de7dbafa19dcde7f282

data

next_Gusion_skill3_03.unity3d

2bbfc946483117c490a0f5f3515be9d7

data

next_Gusion_weapon.unity3d

1461775546e6d8f930447ca8a2b15274

data

Hero562_add.unity3d

dad800bb1152cd3f2120b2ca7005639e

data

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	raw.githubusercontent.com/RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip	185.199.108.133	200 OK	5.9 MB
URL User Request GET HTTP/2 raw.githubusercontent.com/RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip IP 185.199.108.133:443 ASN #54113 FASTLY Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type Zip archive data, at least v2.0 to extract, compression method=store Size 5.9 MB (5862397 bytes) Hash fa151918034545176ff807bff10dc9c8 9231cfc0ee0c0dc114e01505d209a9bb426d3a9a df9a14919100e0ec08d5083ed0a23c08ba0ab15be14c423c89037dccac75a459 HTTP Headers GET /RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip HTTP/1.1 Host: raw.githubusercontent.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK cache-control: max-age=300 content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox content-type: application/zip etag: W/"7f03ef1d3a21cabd9adc0fd816ebca0947cb662ae97c030f6cbdeef3649078e8" strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-frame-options: deny x-xss-protection: 1; mode=block x-github-request-id: FDBE:46929:72CE35:789F31:662B2FC8 accept-ranges: bytes date: Fri, 26 Apr 2024 04:38:40 GMT via: 1.1 varnish x-served-by: cache-hel1410022-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1714106320.157953,VS0,VE321 vary: Authorization,Accept-Encoding,Origin access-control-allow-origin: cross-origin-resource-policy: cross-origin x-fastly-request-id: acc0175f8be2d3fd70f67393d635cbf196bea56c expires: Fri, 26 Apr 2024 04:43:40 GMT source-age: 0 content-length: 5862397 X-Firefox-Spdy: h2

raw.githubusercontent.com/RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip

185.199.108.133

200 OK

5.9 MB

URL User Request GET HTTP/2
raw.githubusercontent.com/RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip
IP
185.199.108.133:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
5.9 MB (5862397 bytes)
Hash
fa151918034545176ff807bff10dc9c8
9231cfc0ee0c0dc114e01505d209a9bb426d3a9a
df9a14919100e0ec08d5083ed0a23c08ba0ab15be14c423c89037dccac75a459

HTTP Headers

GET /RyuDevGFX/V53/main/skin2skin/Moonlight%20-%20Relevation.zip HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/zip
etag: W/"7f03ef1d3a21cabd9adc0fd816ebca0947cb662ae97c030f6cbdeef3649078e8"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: FDBE:46929:72CE35:789F31:662B2FC8
accept-ranges: bytes
date: Fri, 26 Apr 2024 04:38:40 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714106320.157953,VS0,VE321
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: acc0175f8be2d3fd70f67393d635cbf196bea56c
expires: Fri, 26 Apr 2024 04:43:40 GMT
source-age: 0
content-length: 5862397
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (30)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers