Report Overview
Submitted URL
dl-dr-4.xyz/drv/old/Intel-FORCED-7x86-WIGIG_3.0.30108.4_old-drp.zip
IP
89.41.180.201
ASN
#25198 Interkvm Host Srl
Submitted
2024-04-19 15:48:56
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
3
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
dl-dr-4.xyz | unknown | 2023-06-04 | 2023-06-04 | 2024-04-17 | 521 B | 2.9 MB | 89.41.180.201 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Timestamp | Severity | Source IP | Destination IP | Alert |
---|---|---|---|---|
2024-04-19 15:48:29 | medium | 89.41.180.201 | Client IP |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-19 | medium | dl-dr-4.xyz | Sinkholed |
ThreatFox
No alerts detected
Files detected
URL
dl-dr-4.xyz/drv/old/Intel-FORCED-7x86-WIGIG_3.0.30108.4_old-drp.zip
IP
89.41.180.201
ASN
#25198 Interkvm Host Srl
File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
2.9 MB (2886995 bytes)
Hash
f4bcd363af50dd775e54ecbde0cb94e4
5108280f9e378778980cedd03b0f769f294091c9
Archive (15)
Filename | Md5 | File type | |||
---|---|---|---|---|---|
BPRGInst.exe | 9493cab6eddc3f2446368f8663751bc4 | PE32 executable (console) Intel 80386, for MS Windows, 5 sections | |||
WdfCoinstaller01011.dll | 3d2a2d921135801835073451f002480f | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 5 sections | |||
WiGigClassInstaller.dll | a9965ce0091a6871fed5679a6d836755 | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections | |||
iWiGiG.inf | 1ffcc4f5e97e0da3d323ba25c8c8bead | Windows setup INFormation | |||
iWiGiG.sys | 030d62058c83a783b504dc402aa66b6e
| PE32 executable (native) Intel 80386, for MS Windows, 7 sections | |||
iWiGigUM.dll | 5297bc6ef11364b2099d32804a66c0cd | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections | |||
iWiGigUM.inf | 77e203afbe6b31ca0d1a0cb4aa7b87fa | Windows setup INFormation | |||
imausbhpal.cat | 42aacd968ea24092fac9f5680efaf0e4 | DER Encoded PKCS#7 Signed Data | |||
imausbhpal.inf | a31b7bf66df9f506a2d91c0dde56ef7b | Windows setup INFormation | |||
imausbhpal.sys | 36e7249ed73aea273ea792421e0c9142 | PE32 executable (native) Intel 80386, for MS Windows, 7 sections | |||
imausbhub.cat | 91572dc32baf220c1d4361d5fe2c4281 | DER Encoded PKCS#7 Signed Data | |||
imausbhub.inf | f4cd374281a8f865d32712128119400d | Windows setup INFormation | |||
imausbhub.sys | 34adb7678912ad8d72c87162c2f57c91 | PE32 executable (native) Intel 80386, for MS Windows, 9 sections | |||
iwigig.cat | d9f1122138c13dc033a226fa1df62f1b | DER Encoded PKCS#7 Signed Data | |||
iwigigum.cat | 065e2a94062cbe5d6f2e7e6ffddb4a70 | DER Encoded PKCS#7 Signed Data |
Detections
Analyzer | Verdict | Alert |
---|---|---|
YARAhub by abuse.ch | malware | signed_sys_with_vulnerablity |
JavaScript (0)
HTTP Transactions (1)
URL | IP | Response | Size | |||||||
---|---|---|---|---|---|---|---|---|---|---|
dl-dr-4.xyz/drv/old/Intel-FORCED-7x86-WIGIG_3.0.30108.4_old-drp.zip | 89.41.180.201 | 200 OK | 2.9 MB | |||||||
Detections
HTTP Headers
| ||||||||||