Report - www.yamicsoft.com/windows10manager/software/windows10manager

Report Overview

Submitted URL
www.yamicsoft.com/windows10manager/software/windows10manager_portable.zip
IP
162.144.66.67
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2024-04-19 19:08:48
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
23

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.yamicsoft.com	unknown	2005-08-02	2012-05-21	2024-04-15	527 B	21 MB	162.144.66.67

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.yamicsoft.com/windows10manager/software/windows10manager_portable.zip
IP
162.144.66.67
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
21 MB (20820422 bytes)
Hash
9b4c8bfaec09ddec5fc02c0c59a3fafd
9af68984db99f5fb47e11d2e954db41fb5e1d33e
57f213c6664a412b0c8fa7891a85ba3f036fd3daa1ecf998a86264706401432d

Archive (88)

Filename

Md5

File type

DeviceManager.exe

bf2b46a1ac41bdeb310934e184befa21

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

EventViewer.exe

465492024c7a1bff7a8997fd905f77ad

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

DesktopCleaner.exe

696251d2ecfe70971df80095cc64b3bf

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ContextMenuManager.exe

527627f9e80acc41dc6cf88f3336a7b3

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

URLManager.exe

81ff3458cb3896d2ed43ec02d902499b

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

TaskSchedulerManager.exe

90e29f1c2f43aa818a2299b835e34346

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

StartupManager.exe

6a7f97a57cbaba7c6cc4054c50dfa704

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

StartMenuManager.exe

e43fe9df96c360d5a9749954284af8ff

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ServiceManager.exe

4c8355640071cd61601b13dde2802998

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

JunkFileCleaner.exe

5829a1381de50979e855bd477adf1246

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

WindowsUtilities.exe

493fbc24da555bf35f5ef3ca6d58ea43

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

OptimizationWizard.exe

90cf819665b7a3c82959566a5f9ba8f2

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Windows10Manager.exe

7c19b61ddf337a0b108b31261b937851

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Winapp.dll

0345462fd755f1a852d6fadea1db8474

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

RepairCenter.exe

2064042b83b6950bee5d2e5e729f7560

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

LaunchTaskCommand.exe

05214e469ad18d3b109e61b21eecdca1

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

NavigationPaneManager.exe

b9cd686df2745303e59e80844c363de7

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

W10MImageRes.dll

968a2119bd12b722272d736657af5b8e

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

NetworkMonitor.exe

cdf01378430971a90e4a3a79c5ebbf4b

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

DuplicateFilesFinder.exe

b4cd78c78c006c5f7aa83bc2018199da

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

SecurityLock.exe

a7aae6d9e8ffcc5e155433dd1b9da5c3

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

BingImages.exe

70a6379b0cd3d9436a3010c3c4b57574

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ThisPCManager.exe

7c000e8846d2fc76838f254e23cfa8d1

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

LiveUpdate.exe

0a3a93b3e8636add2824dc661929c3cf

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

HotkeyManager.exe

21c6975938969927751f3ca4b0dfb12b

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

1-ClickCleaner.exe

1256a55f9238502244441e10b2f78f4d

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FileSecurity.exe

e0168283e44081a9b01e3ec18ad7bea0

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

WindowsAppSettings.exe

2a949691ebd331b428e9d1ea5f316616

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

SmartUninstaller.exe

851d07ead9eafb9361291c4a0ac10e6b

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

NetworkTools.exe

43e2f8a89c8fbc52c4adeab533d83c52

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

IPSwitcher.exe

3b6885ec2bfbfc81906133ccf0badab5

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FileSplitter.exe

26efe36d17952ba23ce6a31b4d0f7508

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

WinXMenuEditor.exe

7c87e76da88707808ec0ae583ea5e4dc

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

SuperCopy.exe

229b62abf23ee271bb59e325627e1a72

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

JumpListQuickLauncher.exe

681d06da8854fad338d46702fad12e17

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

WindowsAppUninstaller.exe

72e00e719424e25578ab1fb1075ce9be

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

WiFiManager.exe

ea5fec5a4d71c550b3fa2f882fefc073

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

DiskAnalyzer.exe

f4bba42b9ffd1ea2c14e2199edd898f2

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

RegistryDefrag.exe

e305cda17e72c98f85b5b405dfd0ce5d

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

HardwareMonitor.exe

2042a36ce0f2feccd8e0271af8827072

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

W10MFolderRes.dll

ff015efc6eb28a459d97c217b7d29f4a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Help.chm

18bd34161b44c828825626b3c44121d0

MS Windows HtmlHelp Data

LiveUpdateCopy.exe

ebd1319d6a70b89fe6078f984d00ca92

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Win32.TaskScheduler.dll

c0c515668a76a0a3df96567864537ab8

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

CMMultipleFiles.exe

938d570621a3ff7bfbcfa91e838696a6

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

TaskDialog.dll

7f7073853911497b869b86ae2e0e4a13

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ServiceControllerEx.dll

dcaff5e9a189bc470af9a9252a9ff164

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

DevComponents.DotNetBar2.dll

caafc76b9b81f5f95246025161abdf39

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 5 sections

CheckBoxComboBox.dll

84401e715f90ec42623c6d214c7647e0

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Arabic.lang

db485dc79113f79bba4f44d163f04a48

Unicode text, UTF-16, little-endian text, with very long lines (787), with CRLF line terminators

Bulgarian.lang

43f33e66886eb9b1e9e03b0ce30338bb

Unicode text, UTF-16, little-endian text, with very long lines (904), with CRLF line terminators

Chinese_Simplified.lang

325fd2845183855d6b4fdcab677bd938

Unicode text, UTF-16, little-endian text, with CRLF line terminators

Chinese_Traditional.lang

c0b86d3b026452bb558dfd63270b982f

Unicode text, UTF-16, little-endian text, with CRLF, CR line terminators

Croatian.lang

2ed6fd1fc9efe980ff42da598e46c6eb

Unicode text, UTF-16, little-endian text, with very long lines (934), with CRLF line terminators

Czech.lang

21e928232d62d380800826fe4030e79e

Unicode text, UTF-16, little-endian text, with very long lines (945), with CRLF line terminators

Dutch_Netherlands.lang

18af384c52a6349290a401f29951a2f6

Unicode text, UTF-16, little-endian text, with very long lines (1072), with CRLF line terminators

English.lang

354ce235197c4c2ed250ccc487435fe9

Unicode text, UTF-16, little-endian text, with very long lines (983), with CRLF line terminators

French.lang

56e875056dfaf58157c47b8c8d2f99f1

Unicode text, UTF-16, little-endian text, with very long lines (1134), with CRLF line terminators

German.lang

7674477811ce01d71c523e0fb148fbe6

Unicode text, UTF-16, little-endian text, with very long lines (964), with CRLF line terminators

Greek.lang

4a7e87698724647aa235ec5c4c48abb1

Unicode text, UTF-16, little-endian text, with very long lines (1086), with CRLF line terminators

Hebrew.lang

63f14d02ba84ef67a6aedcbbbc2b2c43

Unicode text, UTF-16, little-endian text, with very long lines (804), with CRLF line terminators

Hungarian.lang

220245a72b578b2299a595789ab06f48

Unicode text, UTF-16, little-endian text, with very long lines (474), with CRLF line terminators

Indonesian.lang

d16fb305eee7200f11910378916b9e4a

Unicode text, UTF-16, little-endian text, with very long lines (1052), with CRLF line terminators

Italian.lang

b92d5de70065cb9bfc0520da6261feb4

Unicode text, UTF-16, little-endian text, with very long lines (989), with CRLF line terminators

Japanese.lang

d0e48242446e17a6ad0e9b7a4741f1ff

Unicode text, UTF-16, little-endian text, with very long lines (534), with CRLF line terminators

Korean.lang

4fe9281ff2251aa53975986f0fc88919

Unicode text, UTF-16, little-endian text, with very long lines (515), with CRLF line terminators

Polish.lang

85928c3f9e7b4aa6f54a102ec3fe8778

Unicode text, UTF-16, little-endian text, with very long lines (1011), with CRLF line terminators

Portuguese.lang

74accf0ccdb0ad5c722ad11b8fe98879

Unicode text, UTF-16, little-endian text, with very long lines (1150), with CRLF line terminators

Russian.lang

8d41e7766ebd5c0099573fbfc469dcc3

Unicode text, UTF-16, little-endian text, with very long lines (1002), with CRLF line terminators

Serbian.lang

03a1fccefd12cd215db475c06beb8ffb

Unicode text, UTF-16, little-endian text, with very long lines (925), with CRLF line terminators

Slovenian.lang

437c7ed4f5a93d63aed198104b40a3df

Unicode text, UTF-16, little-endian text, with very long lines (979), with CRLF line terminators

Spanish.lang

fddb0ee79f6f5a4d81724a54607e06a3

Unicode text, UTF-16, little-endian text, with very long lines (1083), with CRLF line terminators

Swedish.lang

671e1368a712dad5840c2df06cefebb6

Unicode text, UTF-16, little-endian text, with very long lines (1021), with CRLF line terminators

TranslationHelp.rtf

f43937769ce3c3a5d0e2964491afdfb1

Rich Text Format data, version 1, ANSI, code page 936, default language ID 1033

Turkish.lang

6f8f18e107023e3ceb7174f152eb8ad9

Unicode text, UTF-16, little-endian text, with very long lines (1092), with CRLF line terminators

Ukrainian.lang

79b285a1e76ecade3817ff1419291ed5

Unicode text, UTF-16, little-endian text, with very long lines (986), with CRLF line terminators

Vietnamese.lang

71289d3f5a7c09fb02c0c40ce1c206f7

Unicode text, UTF-16, little-endian text, with very long lines (973), with CRLF line terminators

W10MPCL.dll

361b3512f2453b8351f5908000ba03ca

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

VisualCustomizer.exe

dd8c795c2a778ef06b82f7662eff699c

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

SystemInfo.exe

eeaba21a2416ac9d240d54577d81687b

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

SettingsSecurity.exe

38af6b0783d0ef3b7630e3e566137749

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

RunShortcutCreator.exe

3d260ff15b117a79184ee604218d0116

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

RegistryCleaner.exe

658c8b0900a42c7c94ed055a62cbc6ce

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

RegistryTools.exe

811673863a9d497584a2131f2f74777b

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ProcessManager.exe

13503b853175149772a81375634fc5e9

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

PrivacyProtector.exe

04acce523630e063714a3b61b0b83c41

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FileUndelete.exe

709481a8c86d7b425d867c8596510d08

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

MyTask.exe

855ad09fe8a4f102d7764a1243e573bb

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Detects suspicious InjectDLL keyword found in hacktools or possibly unwanted applications

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	www.yamicsoft.com/windows10manager/software/windows10manager_portable.zip	162.144.66.67	200 OK	21 MB
URL User Request GET HTTP/1.1 www.yamicsoft.com/windows10manager/software/windows10manager_portable.zip IP 162.144.66.67:443 ASN #46606 UNIFIEDLAYER-AS-1 Certificate IssuerLet's Encrypt Subjectyamicsoft.com Fingerprint85:9A:FF:24:C7:41:04:0E:E1:BA:11:8B:A7:FA:61:F5:4D:6D:AB:50 ValidityWed, 10 Apr 2024 02:17:32 GMT - Tue, 09 Jul 2024 02:17:31 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 21 MB (20820422 bytes) Hash 9b4c8bfaec09ddec5fc02c0c59a3fafd 9af68984db99f5fb47e11d2e954db41fb5e1d33e 57f213c6664a412b0c8fa7891a85ba3f036fd3daa1ecf998a86264706401432d HTTP Headers GET /windows10manager/software/windows10manager_portable.zip HTTP/1.1 Host: www.yamicsoft.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Fri, 19 Apr 2024 19:09:44 GMT Server: Apache Last-Modified: Thu, 21 Mar 2024 02:33:52 GMT Accept-Ranges: bytes Cache-Control: max-age=604800 Expires: Fri, 26 Apr 2024 19:09:44 GMT Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: application/zip`

www.yamicsoft.com/windows10manager/software/windows10manager_portable.zip

162.144.66.67

200 OK

21 MB

URL User Request GET HTTP/1.1
www.yamicsoft.com/windows10manager/software/windows10manager_portable.zip
IP
162.144.66.67:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subjectyamicsoft.com
Fingerprint85:9A:FF:24:C7:41:04:0E:E1:BA:11:8B:A7:FA:61:F5:4D:6D:AB:50
ValidityWed, 10 Apr 2024 02:17:32 GMT - Tue, 09 Jul 2024 02:17:31 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
21 MB (20820422 bytes)
Hash
9b4c8bfaec09ddec5fc02c0c59a3fafd
9af68984db99f5fb47e11d2e954db41fb5e1d33e
57f213c6664a412b0c8fa7891a85ba3f036fd3daa1ecf998a86264706401432d

HTTP Headers

GET /windows10manager/software/windows10manager_portable.zip HTTP/1.1
Host: www.yamicsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 19:09:44 GMT
Server: Apache
Last-Modified: Thu, 21 Mar 2024 02:33:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 26 Apr 2024 19:09:44 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (88)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers