Report - nirvtek.com/downloads/SDKDemos.zip

Report Overview

Submitted URL
nirvtek.com/downloads/SDKDemos.zip
IP
192.64.117.188
ASN
#22612 NAMECHEAP-NET
Submitted
2024-05-04 15:48:00
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
nirvtek.com	unknown	2012-01-05	2015-03-12	2024-01-18	488 B	683 kB	192.64.117.188

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
nirvtek.com/downloads/SDKDemos.zip
IP
192.64.117.188
ASN
#22612 NAMECHEAP-NET

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
682 kB (682478 bytes)
Hash
ff93c26cf3c341bfc9d974d9e39f1661
c07c42b8c497775ac8a5b5353cdbd2a0071aa6e4
6c94cb4059f9cd78eda40df75ffc8df23384879508f0e5cb09b0e45c0b3efa5e

Archive (32)

Filename

Md5

File type

frame.exe

add77acb08da415e9abf2cc21166ac1c

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

htri1.exe

2cd9464f0fc41abb205f869b4d89b001

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

htri2.exe

741b1f6b0d5ee2109b2f3180b7e50ca5

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

htri3.exe

499c8ef7b4fd6592056d4c8f3eacfc57

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

htri4.exe

b61a5851fc1ffe2275248bfe2fbd7c02

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

htri5.exe

6c9a7aa2cb32be5a4187342d66aecce7

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

htri6.exe

569799331bb5ab1a95dcbda2adeec897

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

Rendition.cfg

51ed2677343aa4ab793bc977bb159437

ASCII text, with CRLF line terminators

sphere.bat

9040c20d633fa559ea10bb437301c044

ASCII text, with CRLF line terminators

sphere.exe

3529125d42f19272074038a3a0527987

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

textureInfo.txt

23be641cc48e2d8da703f2409ece26b1

CSV text

triangle.exe

68ee16f94434033f7e04197d576e0a61

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

ucube.bat

657ae99df183e8b28f8b335203164347

ASCII text, with CRLF line terminators

ucube.exe

001fabcdbc7f4d8a3f2a1f3b4b72da40

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

v3ds.bat

e22bdf95fd57b23c6ac02a69dc22dbeb

ASCII text, with CRLF line terminators

v3ds.exe

83fb9704a6e8bed363f38afa8ffe3b04

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

black.bmp

397ff772c67ece7e77d3a3f49a1445e6

PC bitmap, Windows 3.x format, 128 x 128 x 24, image size 49152, resolution 3790 x 3780 px/m, cbSize 49206, bits offset 54

brick.bmp

b0be2cce8dc40fce71abeb444db82644

PC bitmap, Windows 3.x format, 128 x 128 x 24, resolution 2834 x 2834 px/m, cbSize 49208, bits offset 54

duck0000.bmp

528a41c17539fb0bb292e3e8e292ecf1

PC bitmap, Windows 3.x format, 128 x 128 x 24, image size 49152, cbSize 49206, bits offset 54

platmtl.bmp

82bdbdb4a9e5e5381723617438bf9993

PC bitmap, Windows 3.x format, 128 x 128 x 24, resolution 2834 x 2834 px/m, cbSize 49208, bits offset 54

rlogo.bmp

ddede271e1c9dc217df0964676492ba4

PC bitmap, Windows 3.x format, 256 x 256 x 24, image size 196608, cbSize 196662, bits offset 54

scenery.bmp

03ba8d29a5d33b1dbe913ea797147cde

PC bitmap, Windows 3.x format, 128 x 128 x 24, image size 49152, cbSize 49206, bits offset 54

specks.bmp

8604bdea404fe7042dff6e4f887fa08f

PC bitmap, Windows 3.x format, 128 x 128 x 24, image size 49152, resolution 3790 x 3780 px/m, cbSize 49206, bits offset 54

dr_2c.bmp

41682fccc57b3e98b0cca7a7ae2d4c42

PC bitmap, Windows 3.x format, 256 x 128 x 24, resolution 2834 x 2834 px/m, cbSize 98360, bits offset 54

dr_door2.bmp

62fb8cb3dfa93aba5af44cf38bd363f2

PC bitmap, Windows 3.x format, 128 x 128 x 24, resolution 2834 x 2834 px/m, cbSize 49208, bits offset 54

dr_flrb3.bmp

36c109607d2ab42c5c23de7b1c474f93

PC bitmap, Windows 3.x format, 256 x 128 x 24, resolution 2834 x 2834 px/m, cbSize 98360, bits offset 54

dr_roof5.bmp

7d1acd0bd1dc1c03ce933e565ffadfa4

PC bitmap, Windows 3.x format, 256 x 128 x 24, resolution 2834 x 2834 px/m, cbSize 98360, bits offset 54

walkthru.mli

34f6c35308cde7191e53b6b0b1d668e7

data

wt.asc

4cf1a8e0cf3c71409ceebbb1b69299f4

ASCII text

wt.cmd

de63d50f19cfb8d261d837d44677b428

ASCII text

verite.bmp

dcadb3391b49ba5769330a47177d01af

PC bitmap, Windows 3.x format, 256 x 256 x 24, resolution 2834 x 2834 px/m, cbSize 196664, bits offset 54

white.bmp

0087225cd19f5eea20b16b36130e3d9b

PC bitmap, Windows 3.x format, 128 x 128 x 24, image size 49152, resolution 3790 x 3780 px/m, cbSize 49206, bits offset 54

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/60

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

nirvtek.com/downloads/SDKDemos.zip

192.64.117.188

200 OK

682 kB

URL User Request GET HTTP/2
nirvtek.com/downloads/SDKDemos.zip
IP
192.64.117.188:443
ASN
#22612 NAMECHEAP-NET

Certificate
IssuerSectigo Limited
Subjectnirvtek.com
Fingerprint71:01:33:03:4A:43:15:94:BE:17:A9:6F:FA:D1:A0:1F:25:D5:16:C3
ValidityTue, 12 Sep 2023 00:00:00 GMT - Thu, 12 Sep 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
682 kB (682478 bytes)
Hash
ff93c26cf3c341bfc9d974d9e39f1661
c07c42b8c497775ac8a5b5353cdbd2a0071aa6e4
6c94cb4059f9cd78eda40df75ffc8df23384879508f0e5cb09b0e45c0b3efa5e

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/60

HTTP Headers

GET /downloads/SDKDemos.zip HTTP/1.1
Host: nirvtek.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/zip
last-modified: Mon, 06 Mar 2023 21:45:55 GMT
accept-ranges: bytes
content-length: 682478
date: Sat, 04 May 2024 15:47:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (32)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers