Report Overview

  1. Submitted URL

    raw.githubusercontent.com/amannkrmishra/PuTOrigin/main/Aman.exe

  2. IP

    185.199.108.133

    ASN

    #54113 FASTLY

  3. Submitted

    2024-05-10 15:20:41

    Access

    public

  4. Website Title

    about:privatebrowsing

  5. Final URL

    about:privatebrowsing

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    3

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
raw.githubusercontent.com358022014-02-062014-03-012024-05-09

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules
SeverityIndicatorAlert
mediumraw.githubusercontent.com/amannkrmishra/PuTOrigin/main/Aman.exeIdentifies compiled AutoIT script (as EXE).

OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    raw.githubusercontent.com/amannkrmishra/PuTOrigin/main/Aman.exe

  2. IP

    185.199.111.133

  3. ASN

    #54113 FASTLY

  1. File type

    PE32+ executable (GUI) x86-64, for MS Windows, 6 sections

    Size

    2.7 MB (2681344 bytes)

  2. Hash

    a5c48d0bfa0adc0551846c2ac5bfdecb

    589485286c17aa20f20544c8b7d6a7fd7375069b

    Detections

    AnalyzerVerdictAlert
    Public InfoSec YARA rulesmalware
    Identifies compiled AutoIT script (as EXE).
    VirusTotalmalicious
    VirusTotal - Scan result 16/72

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize
raw.githubusercontent.com/amannkrmishra/PuTOrigin/main/Aman.exe
185.199.111.133200 OK2.7 MB