Report - github.com/tablacus/TablacusExplorer/releases/download/24.4.21/te240421.zip

Report Overview

Submitted URL
github.com/tablacus/TablacusExplorer/releases/download/24.4.21/te240421.zip
IP
140.82.121.3
ASN
#36459 GITHUB
Submitted
2024-04-24 14:45:30
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
github.com	1423	2007-10-09	2016-07-13	2024-03-24	529 B	3.9 kB	140.82.121.4
objects.githubusercontent.com	134060	2014-02-06	2021-11-01	2024-04-24	989 B	769 kB	185.199.108.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
objects.githubusercontent.com/github-production-release-asset-2e65be/11879182/5aa52235-8f9e-4ab1-aee8-ad5f8f88cf90?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T144504Z&X-Amz-Expires=300&X-Amz-Signature=0bb3ee9b8b396aa29465b4b851c7de687496e67f4ae10f56af10581819dd1c97&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=11879182&response-content-disposition=attachment%3B%20filename%3Dte240421.zip&response-content-type=application%2Foctet-stream
IP
185.199.108.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
768 kB (768420 bytes)
Hash
bf64682ef47d9364df9c23ebb24397a9
ecaca9b67b822a5de5d3042c54a4d5e9c4dba9fe
382ee3b4247e4c0b84235c087864ea824acaecd0b665fade1423aa0c77e5f780

Archive (121)

Filename

Md5

File type

config.xml

d01f96da0703463c41a50f4615736dda

Unicode text, UTF-8 text, with CRLF line terminators

script.js

9719414efdbde1a45006f226d87818d6

ASCII text, with CRLF line terminators

sync.js

0f251b8104bdced093720b58e1ce9762

ASCII text, with CRLF line terminators

config.xml

e86e4fde318397ef7fbdb00c867823aa

Unicode text, UTF-8 text, with CRLF line terminators

options.html

23dc2e87becb1dc36a6855a4a6e3e252

ASCII text, with CRLF line terminators

script.js

bd2dbde24673684c705ceadbffe85196

JavaScript source, ASCII text, with very long lines (1084), with CRLF line terminators

sync.js

0452af99f631620b07b765a523e9d3cf

ASCII text, with CRLF line terminators

config.xml

0f92d497f1ae2619727957784ca44bf0

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

script.js

ffab1894e122e29ddc9570af0c515cf4

ASCII text, with CRLF line terminators

config.xml

c2fdb3d814b5490416a85ae9dea00c13

Unicode text, UTF-8 text, with CRLF line terminators

options.html

434bc115b10134695019a551a5bdaf75

HTML document, ASCII text, with CRLF line terminators

script.js

e3d3f2d2e367d6566b5518006bb1aa39

ASCII text, with CRLF line terminators

sync.js

690bfcb38a178b4ee6431b647f8f36ad

ASCII text, with CRLF line terminators

config.xml

265b1306065bc9b25d74845dcc0323be

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

options.html

a09fa46204aef44003400f911d39ca91

HTML document, ASCII text, with CRLF line terminators

options.js

e37a935f935c7bcd4f7bb21795300684

ASCII text, with CRLF line terminators

script.js

e37cc3babb0dcab277895e14c311e711

ASCII text, with CRLF line terminators

sync.js

3d11000a3dfa88ed998b30d000de82c9

ASCII text, with CRLF line terminators

config.xml

500ad9edf5a3b858076cb352fb5fefe1

Unicode text, UTF-8 text, with CRLF line terminators

script.js

d4d06aa804241f9a59bae6f1aca35fd4

JavaScript source, ASCII text, with very long lines (525), with CRLF line terminators

config.xml

dceca230b1d940be4d2649987d2d94c8

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

script.js

7e686080b03bfd30a91ed58879c7f015

ASCII text, with CRLF line terminators

config.xml

78db368804a72b94b725fd92638d84ec

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

options.html

21d4c5eb5a4ecaa54492e6c583947804

HTML document, ASCII text, with CRLF line terminators

options.js

418c7801afc18a4c42247a065c52427e

ASCII text, with CRLF line terminators

script.js

1d5821fa7e71d3e8ac470345803d6252

ASCII text, with CRLF line terminators

sync.js

38fd3775f08e185b78cbc2a3473a63d2

ASCII text, with CRLF line terminators

config.xml

401ddb736832e5b6366d62965e66847f

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

script.js

df49d912a200fc887d32755de67e05c3

JavaScript source, ASCII text, with CRLF line terminators

sync.js

b6db9c5b5879bf54b93ede41f161b841

ASCII text, with CRLF line terminators

config.xml

d8999784d1d888f52cf7508dc553d8f0

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

options.html

9b876d974cbb907a91833fae7f62c530

HTML document, ASCII text, with CRLF line terminators

options.js

80e20a0de009703d8173be2cac896cf6

ASCII text, with CRLF line terminators

script.js

84ef6019a6508db00bd60f4e5e1ce2e9

ASCII text, with CRLF line terminators

sync.js

53afae0f6d0a5c7885ef6029d6e5831a

JavaScript source, ASCII text, with CRLF line terminators

config.xml

a67a5ad65336f326c30d175d2108584a

Unicode text, UTF-8 text, with CRLF line terminators

script.js

0d9611d338a5189d430c074ae9bcce14

ASCII text, with CRLF line terminators

sync.js

8346f91b2b7cd033b18c944a03f53fd1

ASCII text, with CRLF line terminators

config.xml

6ee6ffeb647125545308ba93a07c0b54

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

options.html

5013ee8efeb2f84d278433bbf55ccb6e

ASCII text, with CRLF line terminators

script.js

66fc25301df18eeee59b995cb4cdfaa8

ASCII text, with CRLF line terminators

sync.js

75b76c8ac4c882485bc7054620a831c4

ASCII text, with CRLF line terminators

config.xml

6da99882a5406b720fb90fba2e6a7bdb

Unicode text, UTF-8 text, with CRLF line terminators

script.js

e65dbaeaf2954ac9e91830b026937eda

ASCII text, with CRLF line terminators

sync.js

682a09117bb10cd1224f4dab1a3aacc9

ASCII text, with CRLF line terminators

config.xml

c6a1c823df232ff9aab71ca39c2c621e

Unicode text, UTF-8 text, with CRLF line terminators

options.html

d639548928505d41af06a0530d52e39e

HTML document, ASCII text, with CRLF line terminators

options.js

dd4288a0f7e6c59158d75ef136bb8442

ASCII text, with CRLF line terminators

script.js

cfbc891641e0031b9cfdc28570d12ae3

JavaScript source, ASCII text, with CRLF line terminators

sync.js

c76bde649c2c0d9ac2288b64fbee9033

ASCII text, with CRLF line terminators

config.xml

c5671c66f4e4b469ea457a3801212523

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

script.js

3ea13fd52120169bc6f481be755c1a4a

ASCII text, with CRLF line terminators

config.xml

7bb7d3a0cb695e7a3fa0f3a47466791c

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

options.html

d550a2622cab5b08beb5095f9e718438

HTML document, ASCII text, with CRLF line terminators

options.js

201c17560d572f6197142f6fd4fdade6

exported SGML document, ASCII text, with CRLF line terminators

script.js

cee70da2f17598fbda82c7b819a2391e

JavaScript source, ASCII text, with CRLF line terminators

sync.js

33f8243d348f3477ddad503e64121e2b

ASCII text, with CRLF line terminators

config.xml

1bab3018abd5374c1203ed2047a36109

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

options.html

475e2dc3c3560f543a844cd349ee4dfa

ASCII text, with CRLF line terminators

script.js

039232bd4662684f2a888911cf1bcb81

ASCII text, with CRLF line terminators

sync.js

a7788a8932b35975758defaf05b4491c

JavaScript source, ASCII text, with very long lines (353), with CRLF line terminators

config.xml

2229b3a5f4cee4b1156b86b6ae0dfc48

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

script.js

b2c8cdd5a3e5914d366132efe4a12185

JavaScript source, ASCII text, with CRLF line terminators

sync.js

6dac3f74d1a7398c585f9e9516dc8548

ASCII text, with CRLF line terminators

config.xml

fae9eccbdc90e1229d9c43bf3ba66c3e

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

script.js

43fb41548f497b600dc26a6a675bda33

ASCII text, with CRLF line terminators

addons.xml

d05109328cf2697a88370b9f6abe31fe

ASCII text, with very long lines (591), with CRLF line terminators

key.xml

347ecf2c11b802fa1be637155ad64d48

Unicode text, UTF-8 (with BOM) text, with very long lines (1611), with CRLF line terminators

menus.xml

6c92bcd9b7b7da2b34ec11a04e7c265e

ASCII text, with very long lines (2873), with CRLF line terminators

mouse.xml

02094635b233528d977c5991613cca12

ASCII text, with very long lines (1225), with CRLF line terminators

de.xml

fc0a9236da2e865db36ac269bc7e53d0

Unicode text, UTF-8 text, with CRLF line terminators

el.xml

7e54c51aeeadf0ad061ac055e9c175e4

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

en.xml

5ba7a66ec5b05cdbb6ad62d7adec1771

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

es.xml

8d0677a230fd8c962aa85c146ef29609

Unicode text, UTF-8 text, with CRLF line terminators

es_la.xml

7c21c06b69d51b5d77384542eee36ed8

Unicode text, UTF-8 text, with CRLF line terminators

fr.xml

7b721136331c27a1b681a225bd800972

Unicode text, UTF-8 text, with CRLF line terminators

it.xml

d6761dfb9b866a837e7b4e65503fe1d6

Unicode text, UTF-8 text, with CRLF line terminators

ja.xml

5f1ee3a336f58e7677cec5d0a75c0530

Unicode text, UTF-8 text, with CRLF line terminators

ko.xml

5f79cd5dfd75c1fa4bdcf8c06d943608

Unicode text, UTF-8 text, with CRLF line terminators

nl.xml

d6c4d9573717ad99cb921f7b4fcae13a

ASCII text, with CRLF line terminators

pl.xml

e901b2e9be9b7fb98c7d632f1cf3a41f

Unicode text, UTF-8 text, with CRLF line terminators

pt.xml

105ee0f51a10859cf850d4964e8c89ba

Unicode text, UTF-8 text, with CRLF line terminators

ru.xml

264bb301ec5442226cc3a742ae5e9e14

Unicode text, UTF-8 text, with CRLF line terminators

sr_lat.xml

93847174e2d3afc9c4b68390b483824a

exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators

tr.xml

c91e01728e6175cb48eb404b684d09db

Unicode text, UTF-8 text, with CRLF line terminators

uk.xml

93b89b496df9cd0354ac4d721e28fe40

Unicode text, UTF-8 text, with CRLF line terminators

zh.xml

4663b153e911c63b10bab14a485cab95

Unicode text, UTF-8 text, with CRLF line terminators

zh_cn.xml

ae8e0066be1fb0a23b66b44daeec177e

Unicode text, UTF-8 text, with CRLF line terminators

1tab.xml

3878c81dfb2c3c6ddf3337d2111ae5ec

XML 1.0 document, ASCII text, with CRLF line terminators

4tabs.xml

6521e156e3a7ed636b59ae68b18b3c2e

XML 1.0 document, ASCII text, with CRLF line terminators

bottom_tab.xml

8f07b8c61826eebec36f12bbaff4267b

XML 1.0 document, ASCII text, with CRLF line terminators

h2tabs.xml

1027ec6d98aa114e7b107b7f1e7a4d5d

XML 1.0 document, ASCII text, with CRLF line terminators

left_tab.xml

8ba2c0721e92d29cf219960add76848d

XML 1.0 document, ASCII text, with CRLF line terminators

right_tab.xml

8e6d1b28a31b0ff9e286be34d4c3e4dc

XML 1.0 document, ASCII text, with CRLF line terminators

tree_1tab.xml

2fbf06f2971683721e8c0ad6eeb2cec5

XML 1.0 document, ASCII text, with CRLF line terminators

tree_2tabs.xml

444f782ddeeebff97d15e70031aed71b

XML 1.0 document, ASCII text, with very long lines (719), with CRLF line terminators

v2tabs.xml

3d836e188657c612d58df2fbf49ba8a0

XML 1.0 document, ASCII text, with CRLF line terminators

vertical_tab.xml

03fe152295957e548916fec444a7b5b5

XML 1.0 document, ASCII text, with CRLF line terminators

te32.dll

248a2d0d25a162ff584cedeb4c335e74

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

te64.dll

fd5129afa6603a0c44012a765f2487e4

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

readme.txt

5d7faee46b09d3d8a11255fb8cfbfc4b

Unicode text, UTF-8 text, with CRLF line terminators

readme_jp.txt

2ac68a33c6824b896234f71f203abc0e

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

background.js

bb4aa131e67978efe6a959b8d31a5bca

ASCII text, with CRLF line terminators

common.js

279429ee48d40793e5da2875b4c50395

JavaScript source, ASCII text, with CRLF line terminators

consts.js

d62723ccf44fc24af8c9bdc1b7411c37

JavaScript source, ASCII text, with CRLF line terminators

dialog.html

4e0a4415a06d21ed1600b1779782e88a

HTML document, ASCII text, with CRLF line terminators

index.css

f1bebcddade286b54711df3ab28d9db0

ASCII text, with CRLF line terminators

index.html

f39248f0fb5cb7a0fdafebe81e57b381

HTML document, ASCII text, with CRLF line terminators

index.js

9d01044045aeb4c211ed6c3ca3d42f4f

JavaScript source, ASCII text, with very long lines (394), with CRLF line terminators

location.html

d0e7c792b71400c2fbd9d29d3ba7b53a

HTML document, ASCII text, with CRLF line terminators

options.css

be1414c00e97250b4957de8cb7f03bf5

assembler source, ASCII text, with CRLF line terminators

options.html

93fbeda2e02414bf287ab8f26d1cb73d

HTML document, ASCII text, with CRLF line terminators

options.js

ce2dd93d7926830d6b8f0dcb01b0a7b7

JavaScript source, ASCII text, with very long lines (368), with CRLF line terminators

sync.js

4037b5da7c3ed965ed8fe1eb8f123645

JavaScript source, ASCII text, with very long lines (409), with CRLF line terminators

sync1.js

dc16ec63f6b77be5bc72e632ec39a5ef

ASCII text, with CRLF line terminators

syncb.js

eaa9f631f470279312d61b169a96525c

ASCII text, with CRLF line terminators

threads.js

4a21affcaa4ddbd6198b1a601bef4d5e

ASCII text, with CRLF line terminators

ui.js

31b9730eaf7242afabb02b9129b76409

ASCII text, with CRLF line terminators

update.js

6fea5dcf7168d3c3753aed11f9bd829e

ASCII text, with CRLF line terminators

TE32.exe

78eb724310f8ffa790db9f87bb411681

PE32 executable (GUI) Intel 80386, for MS Windows, 6 sections

TE64.exe

c3f752c2958b094757370f98ac9e7942

PE32+ executable (GUI) x86-64, for MS Windows, 6 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
VirusTotal	suspicious	VirusTotal - Scan result 1/68

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

github.com/tablacus/TablacusExplorer/releases/download/24.4.21/te240421.zip

140.82.121.4

302 Found

0 B

URL User Request GET HTTP/2
github.com/tablacus/TablacusExplorer/releases/download/24.4.21/te240421.zip
IP
140.82.121.4:443
ASN
#36459 GITHUB

Certificate
IssuerSectigo Limited
Subjectgithub.com
FingerprintE7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0
ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tablacus/TablacusExplorer/releases/download/24.4.21/te240421.zip HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: GitHub.com
date: Wed, 24 Apr 2024 14:45:04 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/11879182/5aa52235-8f9e-4ab1-aee8-ad5f8f88cf90?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T144504Z&X-Amz-Expires=300&X-Amz-Signature=0bb3ee9b8b396aa29465b4b851c7de687496e67f4ae10f56af10581819dd1c97&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=11879182&response-content-disposition=attachment%3B%20filename%3Dte240421.zip&response-content-type=application%2Foctet-stream
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: 29E2:0FA9:41F83CD:429FCA5:66291AF0
X-Firefox-Spdy: h2

objects.githubusercontent.com/github-production-release-asset-2e65be/11879182/5aa52235-8f9e-4ab1-aee8-ad5f8f88cf90?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T144504Z&X-Amz-Expires=300&X-Amz-Signature=0bb3ee9b8b396aa29465b4b851c7de687496e67f4ae10f56af10581819dd1c97&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=11879182&response-content-disposition=attachment%3B%20filename%3Dte240421.zip&response-content-type=application%2Foctet-stream

185.199.108.133

200 OK

768 kB

URL User Request GET HTTP/2
objects.githubusercontent.com/github-production-release-asset-2e65be/11879182/5aa52235-8f9e-4ab1-aee8-ad5f8f88cf90?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T144504Z&X-Amz-Expires=300&X-Amz-Signature=0bb3ee9b8b396aa29465b4b851c7de687496e67f4ae10f56af10581819dd1c97&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=11879182&response-content-disposition=attachment%3B%20filename%3Dte240421.zip&response-content-type=application%2Foctet-stream
IP
185.199.108.133:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
768 kB (768420 bytes)
Hash
bf64682ef47d9364df9c23ebb24397a9
ecaca9b67b822a5de5d3042c54a4d5e9c4dba9fe
382ee3b4247e4c0b84235c087864ea824acaecd0b665fade1423aa0c77e5f780

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/68

HTTP Headers

GET /github-production-release-asset-2e65be/11879182/5aa52235-8f9e-4ab1-aee8-ad5f8f88cf90?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T144504Z&X-Amz-Expires=300&X-Amz-Signature=0bb3ee9b8b396aa29465b4b851c7de687496e67f4ae10f56af10581819dd1c97&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=11879182&response-content-disposition=attachment%3B%20filename%3Dte240421.zip&response-content-type=application%2Foctet-stream HTTP/1.1
Host: objects.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 24 Apr 2024 12:50:18 GMT
etag: "0x8DC645D18AC4D5B"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a4ca7a7a-801e-0046-1146-96d5d2000000
x-ms-version: 2020-10-02
x-ms-creation-time: Wed, 24 Apr 2024 12:50:18 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
content-disposition: attachment; filename=te240421.zip
x-ms-server-encrypted: true
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Wed, 24 Apr 2024 14:45:04 GMT
x-served-by: cache-iad-kcgs7200156-IAD, cache-hel1410020-HEL
x-cache: HIT, MISS
x-cache-hits: 28, 0
x-timer: S1713969904.332655,VS0,VE496
content-length: 768420
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (121)

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers