Report - deo.shopeemobile.com/shopee/shopee-toclivestream/download/live/202109161142.zip

Report Overview

Submitted URL
deo.shopeemobile.com/shopee/shopee-toclivestream/download/live/202109161142.zip
IP
23.36.76.193
ASN
#20940 Akamai International B.V.
Submitted
2024-05-10 05:53:01
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
deo.shopeemobile.com	5985	2014-12-18	2019-10-16	2024-05-08	533 B	5.9 MB	23.36.76.193

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 05:52:41	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain
2024-05-10 05:52:47	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain
2024-05-10 05:52:56	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
deo.shopeemobile.com/shopee/shopee-toclivestream/download/live/202109161142.zip
IP
23.36.76.193
ASN
#20940 Akamai International B.V.

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
5.9 MB (5883754 bytes)
Hash
434695bd27d47de9979d0fe755ed4a20
e9e1e06aa2e4248a11216724920035a7f2845d74
d0fc8bac214814eaa758479d39f48319c54748619cd5b6c0e94ffceb1166b39b

Archive (12)

Modified	Filename	Size	Md5	File type
2021-09-16 11:41	config.json	208 B	190f4e389747d0080a831f6b190bd63a	JSON text data
2021-09-16 11:41	._config.json	433 B	9f511966a99d7dda6eef94b4540312a5	AppleDouble encoded Macintosh file
2021-09-13 14:48	M_SenseAR_Segment_MouthOcclusion_FastV1_1.1.2.model	266 kB	04e32a044e0743b924ac8d30d4ad3768	data
2021-09-13 14:48	._M_SenseAR_Segment_MouthOcclusion_FastV1_1.1.2.model	212 B	d7c50d1fa433ce34cc74e1aac5dc516d	AppleDouble encoded Macintosh file
2021-09-13 14:00	M_SenseME_Face_Extra_Advanced_6.0.11.model	2.9 MB	413e386ca4465134d24b40a42f8768e3	data
2021-09-13 14:00	._M_SenseME_Face_Extra_Advanced_6.0.11.model	212 B	d7c50d1fa433ce34cc74e1aac5dc516d	AppleDouble encoded Macintosh file
2021-08-23 11:03	LicenseiOS_2.lic	6.0 kB	d3ea3ee1d0a4d7cc1132412f0c1119dd	ASCII text
2021-08-23 11:03	._LicenseiOS_2.lic	368 B	1fcf32c860680e30cd81c8e143e86bb2	AppleDouble encoded Macintosh file
2021-08-23 10:58	LicenseAndroid_2.lic	6.0 kB	7456234ebed63a01337edaa63889ac29	ASCII text
2021-08-23 10:58	._LicenseAndroid_2.lic	1.4 kB	ca4f165d2859f6b995cd9f08faecd2fe	AppleDouble encoded Macintosh file
2021-06-24 20:13	M_SenseME_Face_Video_7.0.0.model	2.7 MB	ba73ff3bcc5dbb702205d0362bf1a7d9	data
2021-06-24 20:13	._M_SenseME_Face_Video_7.0.0.model	312 B	bd865fcbd8e264949f8291020e0ce675	AppleDouble encoded Macintosh file

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	deo.shopeemobile.com/shopee/shopee-toclivestream/download/live/202109161142.zip	23.36.76.193	200 OK	5.9 MB
URL User Request GET HTTP/2 deo.shopeemobile.com/shopee/shopee-toclivestream/download/live/202109161142.zip IP 23.36.76.193:443 ASN #20940 Akamai International B.V. Certificate IssuerDigiCert Inc Subjectcv.shopee.sg FingerprintF4:1C:E0:BA:B5:A8:65:7A:15:63:D3:C1:22:B9:D1:45:92:6E:FB:FF ValidityMon, 05 Feb 2024 00:00:00 GMT - Fri, 07 Feb 2025 23:59:59 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 5.9 MB (5883754 bytes) Hash 434695bd27d47de9979d0fe755ed4a20 e9e1e06aa2e4248a11216724920035a7f2845d74 d0fc8bac214814eaa758479d39f48319c54748619cd5b6c0e94ffceb1166b39b HTTP Headers GET /shopee/shopee-toclivestream/download/live/202109161142.zip HTTP/1.1 Host: deo.shopeemobile.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/zip content-length: 5883754 x-ratelimit-limit: 625 x-ratelimit-remaining: 564 access-control-expose-headers: x-cdn, x-cache, x-origin, via, etag, Content-Encoding, x-ratelimit-limit, x-ratelimit-remaining, x-powered-by, x-ser, x-amz-cf-id, x-amz-cf-pop etag: "Fo2zB8w_voB235Gx3dYjoK9QiawZ-2" last-modified: Sat, 16 Jul 2022 20:21:37 GMT x-origin: uss x-request-id: bd75bec2-966d-4671-a9b6-a2b5df4d4128 content-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-eval' .shopeemobile.com storage.googleapis.com; style-src data: 'unsafe-inline'; img-src * data:; font-src * data:; connect-src ; media-src ; object-src 'none'; worker-src ; report-uri https://secreporter.susercontent.com/csp cache-control: max-age=3600 date: Fri, 10 May 2024 05:52:37 GMT x-cache: TCP_MISS from a23-36-76-189.deploy.akamaitechnologies.com (AkamaiGHost/11.5.0.1-56213035) (-) x-cache-remote: TCP_REFRESH_MISS from a2-17-160-207.deploy.akamaitechnologies.com (AkamaiGHost/11.5.0.1-56213035) (S), TCP_HIT from a2-17-160-207.deploy.akamaitechnologies.com (AkamaiGHost/11.5.0.1-56213035) (-) timing-allow-origin: access-control-allow-origin: * x-cdn: akamai x-check-cacheable: YES X-Firefox-Spdy: h2

deo.shopeemobile.com/shopee/shopee-toclivestream/download/live/202109161142.zip

23.36.76.193

200 OK

5.9 MB

URL User Request GET HTTP/2
deo.shopeemobile.com/shopee/shopee-toclivestream/download/live/202109161142.zip
IP
23.36.76.193:443
ASN
#20940 Akamai International B.V.

Certificate
IssuerDigiCert Inc
Subjectcv.shopee.sg
FingerprintF4:1C:E0:BA:B5:A8:65:7A:15:63:D3:C1:22:B9:D1:45:92:6E:FB:FF
ValidityMon, 05 Feb 2024 00:00:00 GMT - Fri, 07 Feb 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
5.9 MB (5883754 bytes)
Hash
434695bd27d47de9979d0fe755ed4a20
e9e1e06aa2e4248a11216724920035a7f2845d74
d0fc8bac214814eaa758479d39f48319c54748619cd5b6c0e94ffceb1166b39b

HTTP Headers

GET /shopee/shopee-toclivestream/download/live/202109161142.zip HTTP/1.1
Host: deo.shopeemobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/zip
content-length: 5883754
x-ratelimit-limit: 625
x-ratelimit-remaining: 564
access-control-expose-headers: x-cdn, x-cache, x-origin, via, etag, Content-Encoding, x-ratelimit-limit, x-ratelimit-remaining, x-powered-by, x-ser, x-amz-cf-id, x-amz-cf-pop
etag: "Fo2zB8w_voB235Gx3dYjoK9QiawZ-2"
last-modified: Sat, 16 Jul 2022 20:21:37 GMT
x-origin: uss
x-request-id: bd75bec2-966d-4671-a9b6-a2b5df4d4128
content-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-eval' *.shopeemobile.com storage.googleapis.com; style-src * data: 'unsafe-inline'; img-src * data:; font-src * data:; connect-src *; media-src *; object-src 'none'; worker-src *; report-uri https://secreporter.susercontent.com/csp
cache-control: max-age=3600
date: Fri, 10 May 2024 05:52:37 GMT
x-cache: TCP_MISS from a23-36-76-189.deploy.akamaitechnologies.com (AkamaiGHost/11.5.0.1-56213035) (-)
x-cache-remote: TCP_REFRESH_MISS from a2-17-160-207.deploy.akamaitechnologies.com (AkamaiGHost/11.5.0.1-56213035) (S), TCP_HIT from a2-17-160-207.deploy.akamaitechnologies.com (AkamaiGHost/11.5.0.1-56213035) (-)
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: akamai
x-check-cacheable: YES
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (12)

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers