Report Overview

  1. Submitted URL

    member.ipmu.jp/yuji.tachikawa/spires/zips/logger.php?spires_1.4.6.zip

  2. IP

    157.82.236.62

    ASN

    #2501 The University of Tokyo

  3. Submitted

    2024-04-18 12:01:33

    Access

    public

  4. Website Title

    about:privatebrowsing

  5. Final URL

    about:privatebrowsing

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    4

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
member.ipmu.jp7310652007-11-042017-02-162023-12-23

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.6.zip

  2. IP

    157.82.236.62

  3. ASN

    #2501 The University of Tokyo

  1. File type

    Zip archive data, at least v1.0 to extract, compression method=store

    Size

    922 kB (921494 bytes)

  2. Hash

    3dc645c64eb9684f81e94fca3e262924

    a587c3daff7e1eff3133e4bbcb768499e3ddcba5

  1. Archive (82)

    2. FilenameMd5File type
    CodeResources
    aaddcc807503e83ecdcddd1807331a33
    		XML 1.0 document, ASCII text
    CodeResources
    d54d6c1efacbb45ac0ed1be4597e6bbd
    		ASCII text, with no line terminators
    Headers
    86c63de7bd8775780ac77380b5c049c4
    		ASCII text, with no line terminators
    Resources
    e58c4cf10cc7c8ef7d7167ccb641aeb4
    		ASCII text, with no line terminators
    Sparkle
    078cd5564ff6fd5418ddc4d9179fca8c
    		ASCII text, with no line terminators
    Sparkle.strings
    c8310a6a61c3da7348afe30fc822121b
    		Unicode text, UTF-16, big-endian text, with very long lines (368)
    classes.nib
    fb99a49b19c34f97f77a81e5eecbb184
    		XML 1.0 document, ASCII text
    info.nib
    95c17a87b57873d9888a97231d0c18e1
    		XML 1.0 document, ASCII text
    keyedobjects.nib
    ee303bb6f990b556dcd84060df93c07f
    		Apple binary property list
    classes.nib
    c137beae670f04fa9f87968d627d2a23
    		XML 1.0 document, ASCII text
    info.nib
    cd718d7588fcdb442eb2f25edb0ffe6c
    		XML 1.0 document, ASCII text
    keyedobjects.nib
    9ec4d1f38e1016863838664f8a537cd6
    		Apple binary property list
    classes.nib
    b9c3d0c2670efd8f5e1fba7c969ab20f
    		XML 1.0 document, ASCII text
    info.nib
    c43fc1c5b5710ba09288aba30cc91e6f
    		XML 1.0 document, ASCII text
    keyedobjects.nib
    f68ea826bf866a9be1f213c4b6e2b520
    		Apple binary property list
    Info.plist
    13ffb6413a0fbc36342ccb6b6f1bfa40
    		XML 1.0 document, ASCII text
    License.txt
    29284fe742e0698808c766d3384bf6c1
    		ASCII text, with very long lines (460)
    relaunch
    a667fe69ff3182b7ecead62789869256
    		Mach-O universal binary with 3 architectures: [ppc: - Mach-O ppc executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] [ - i386: - Mach-O i386 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] [ - x86_64: - Mach-O 64-bit x86_64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>]
    SUModelTranslation.plist
    f1ea04fe15a18d331dd1cde62aee3953
    		XML 1.0 document, ASCII text
    classes.nib
    f549ec7c9d48cf0940b33c63feb55429
    		XML 1.0 document, ASCII text
    info.nib
    e36a13c27ce71939ad81e1e0a162618c
    		XML 1.0 document, ASCII text
    keyedobjects.nib
    6ceb5d9320a931354362b208b5240536
    		Apple binary property list
    Sparkle
    ee0fe60e7d3aa52c7dab1cfa79f81116
    		Mach-O universal binary with 3 architectures: [ppc: - Mach-O ppc dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - i386: - Mach-O i386 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - x86_64: - Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>]
    Current
    7fc56270e7a70fa81a5935b72eacbe29
    		very short file (no magic)
    Info.plist
    64022acc526ae4bf13321e7013b22072
    		XML 1.0 document, ASCII text
    spires
    531ef0fa64bfb38c256a840e43928462
    		Mach-O universal binary with 2 architectures: [x86_64: - Mach-O 64-bit x86_64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] [ - i386: - Mach-O i386 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_HEAP_EXECUTION>]
    PkgInfo
    23b7d7d024abb0f558420e098800bf27
    		ASCII text, with no line terminators
    Acknowledgments.html
    994bd5cebb1a5a127fc4620398219813
    		HTML document, ASCII text
    ActivityMonitor.nib
    e26321bd5f0f1a78ccc3041d4b47ad10
    		Apple binary property list
    arxiv.png
    e3ef0e839b91cfc62599c24331f8a2f9
    		PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
    ArxivNewCreateSheet.nib
    9dc3a5581e55be0ac60d006f830b155c
    		Apple binary property list
    arXivTeXifier.safariextz
    a8dde99a55875ac97e15acb2a184a635
    		xar archive compressed TOC: 4107, SHA-1 checksum
    BibView.nib
    c6e4f7447848cec666c60c49eb096b36
    		Apple binary property list
    blackOut.pdf
    c417fc89216af5f730ba2bd2bac201e3
    		PDF document, version 1.3, 1 pages
    ButtonBarPullDownArrow.pdf
    a3e21e098edbc5fba4bd2bf689f8192b
    		PDF document, version 1.7, 1 pages
    canned-search.png
    8697f1b1e03650a9b77b375dc4e5602f
    		PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced
    defaults.plist
    75126d66ef985ad75f38df46378c49c2
    		XML 1.0 document, ASCII text
    drop.png
    ceeb19004e55c8c49e3f93dde6aafa95
    		PNG image data, 91 x 91, 8-bit/color RGBA, non-interlaced
    dsa_pub.pem
    c491fa208a0ff99498dedfd2592a55fa
    		ASCII text
    InfoPlist.strings
    e39ae9c9f0e9293a7c68c7d1e15d18ae
    		Unicode text, UTF-16, little-endian text
    MainMenu.nib
    9a9d66f25d42c23452820f217850726a
    		Apple binary property list
    flagged.png
    5325ddf732780e2dd3eefbb0e9318160
    		PNG image data, 85 x 85, 8-bit/color RGBA, non-interlaced
    hasPDF.png
    835db1891a523476374e2f8a8a5635b2
    		PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced
    Localizable.strings
    80144a694cf0ce44f73e9bc39be9bd1d
    		Unicode text, UTF-16, little-endian text
    magicRegExps.perl
    8a92c6fedaa882eb8999ed6d97b9fd2b
    		Perl script text executable
    marc2spires.xsl
    4071d975cf6eaf62d26582afdc960d7c
    		XML 1.0 document, ASCII text
    MessageViewer.nib
    e84e83a3e23a925c9fb61aeb5c4e546f
    		Apple binary property list
    MigrationProgress.nib
    6bafb7771dbf23720a8989e5b7780657
    		Apple binary property list
    parseTeXandEmitPlist.perl
    5ae34ab8022034950935117b06498410
    		Perl script text executable
    pdfScanHelper
    2680da5b148df2ad19434481f6d1c41f
    		Mach-O universal binary with 2 architectures: [x86_64: - Mach-O 64-bit x86_64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] [ - i386: - Mach-O i386 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_HEAP_EXECUTION>]
    PrefPane.nib
    56ff989716fc7a4fe9af8142d58f0ec0
    		Apple binary property list
    Release Notes.html
    628e8f4e13e090893fbf5ef5d2a92a0b
    		HTML document, ASCII text
    Requests.html
    23cd8515b623151e0edabbe0c4e6a6a5
    		HTML document, Unicode text, UTF-8 text
    SnowLeopardAlert.rtf
    ad6d98d65c8ac96942e5f425854eb20a
    		Rich Text Format data, version 1, ANSI, code page 932
    spires-blue.png
    8578a1869ee3ba0c048d73995aa7c026
    		PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
    spires-red.png
    bed8ddb7de2b396b4e3983053971ed96
    		PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
    spires.icns
    499cdb8df675b16b7cc88ffba45a755d
    		Mac OS X icon, 90832 bytes, "is32" type
    spires.sdef
    2f11eac3255608d2f4766635f03fdd51
    		XML 1.0 document, ASCII text
    spires_DataModel 2.mom
    91ec42e4a37be01636153bdb8f23762f
    		Apple binary property list
    spires_DataModel 3.mom
    ef61c9463a395c1bf54864dbb11a12d6
    		Apple binary property list
    spires_DataModel 4.mom
    4cb4c2aacf6dfca4f5979e7e56f1eb37
    		Apple binary property list
    spires_DataModel 5.mom
    c264e1f02249a9eb60bb49538d4bd00f
    		Apple binary property list
    spires_DataModel 6.mom
    2d2fffc971553a663cb5b0cf48fca0b4
    		Apple binary property list
    spires_DataModel 6.omo
    715536553ac7f3c0168564e1cf2b64e6
    		data
    spires_DataModel.mom
    f917b338742803589dded9cd77116e6f
    		Apple binary property list
    VersionInfo.plist
    455a453e878fa177fadb97602d5feab4
    		XML 1.0 document, ASCII text
    SpiresRelaunchHelper
    3ef22498b2ac1915a017847f4ea64170
    		Mach-O i386 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_HEAP_EXECUTION>
    template.html
    5fedd74dc26eeddba321b723c1bac404
    		HTML document, ASCII text
    tex.js
    866b06c8545ba88412026d2705df8b69
    		Unicode text, UTF-8 text
    TeXWatcher.nib
    5a875384bb32e0e119682155ba7e38a2
    		Apple binary property list
    unread.png
    130ce0a88eb58d2bde54f74577d7df9b
    		PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced
    v1-v2.cdm
    45017a5277fb20ab6480e960d55196f3
    		Apple binary property list
    v1.3alert.rtf
    7f1a0a7aae6f63b8e78f0a7f555680a4
    		Rich Text Format data, version 1, ANSI, code page 932
    v1.4.4alert.rtf
    35847f8f54740342ffd3fa5e55d10471
    		Rich Text Format data, version 1, ANSI, code page 932
    v1.4alert.rtf
    959c4774a0db932bb390425a99389122
    		Rich Text Format data, version 1, ANSI, code page 932
    v2-v3.cdm
    2f6cd57cb839d3a036cb4904adae3a10
    		Apple binary property list
    v3-v4.cdm
    25bae09f674f7f3887a3be056cc5cdfd
    		Apple binary property list
    v4-v5.cdm
    225ee72672d8e4ef1e8fd0d3b901d18b
    		Apple binary property list
    v5-v6.cdm
    3cf04f38f44e77ba3c559af8148b89c7
    		Apple binary property list
    whiteIn.pdf
    f39471fc051b4824ff0ff6ae7fb72dd4
    		PDF document, version 1.3, 1 pages
    whiteOut.pdf
    588cbaa67435cc5ad2cbcd11f8a86d86
    		PDF document, version 1.3, 1 pages
    wwwrefsbibtex2xmlpublic.perl
    1bc09e8f36a647ede480aa0d9979dcff
    		Perl script text executable

    Detections

    AnalyzerVerdictAlert
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip

JavaScript (0)

HTTP Transactions (2)

URLIPResponseSize
member.ipmu.jp/yuji.tachikawa/spires/zips/logger.php?spires_1.4.6.zip
157.82.236.62302 Found1 B
member.ipmu.jp/yuji.tachikawa/spires/zips/spires_1.4.6.zip
157.82.236.62200 OK922 kB