Report - static.dhsf.xqhuyu.com/game_mubao/20220126/mod

Report Overview

Submitted URL
static.dhsf.xqhuyu.com/game_mubao/20220126/mod_fgcq.zip?v=20240419163255
IP
47.246.44.240
ASN
#24429 Zhejiang Taobao Network Co.,Ltd
Submitted
2024-04-19 12:57:24
Access
public
Website Title
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.dhsf.xqhuyu.com	unknown	2018-03-02	2022-06-03	2024-04-15	526 B	779 kB	47.246.44.242

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
static.dhsf.xqhuyu.com/game_mubao/20220126/mod_fgcq.zip?v=20240419163255
IP
47.246.44.242
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
778 kB (777958 bytes)
Hash
f7edc2f70dcdf9018d2d3d37d8fd6022
f3c62e0f7bbee32e8b14598918bcdd7fea271a8d
73c601edeb03f0d383a2c06d161287a7adb1889621d54cc8a53b76d540a50b04

Archive (3)

Filename

Md5

File type

game.dat

d999e2929339add9cebbef295d1bbeb7

ASCII text, with no line terminators

libcocos2d.dll

d41d8cd98f00b204e9800998ecf8427e

Game.exe

875c31064b2b780ed07bf59d6d1fc70a

PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Size
	static.dhsf.xqhuyu.com/game_mubao/20220126/mod_fgcq.zip?v=20240419163255	47.246.44.242	778 kB
URL static.dhsf.xqhuyu.com/game_mubao/20220126/mod_fgcq.zip?v=20240419163255 IP 47.246.44.242:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 778 kB (777958 bytes) Hash f7edc2f70dcdf9018d2d3d37d8fd6022 f3c62e0f7bbee32e8b14598918bcdd7fea271a8d 73c601edeb03f0d383a2c06d161287a7adb1889621d54cc8a53b76d540a50b04 HTTP Headers GET /game_mubao/20220126/mod_fgcq.zip?v=20240419163255 HTTP/1.1 Host: static.dhsf.xqhuyu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: Tengine content-type: application/zip content-length: 777958 date: Fri, 19 Apr 2024 10:15:51 GMT x-oss-request-id: 662244572851783034B57656 vary: Origin x-oss-cdn-auth: success accept-ranges: bytes etag: "F7EDC2F70DCDF9018D2D3D37D8FD6022" last-modified: Tue, 10 Oct 2023 08:52:17 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 9897471071352201710 x-oss-storage-class: Standard content-md5: 9+3C9w3N+QGNLT032P1gIg== x-oss-server-time: 183 ali-swift-global-savetime: 1713521751 via: cache30.l2fr1[0,0,200-0,H], cache27.l2fr1[1,0], ens-cache13.se2[0,0,200-0,H], ens-cache2.se2[0,0] age: 9660 x-cache: HIT TCP_MEM_HIT dirn:10:210394726 x-swift-savetime: Fri, 19 Apr 2024 12:56:07 GMT x-swift-cachetime: 2582384 access-control-allow-methods: GET,POST,OPTIONS access-control-allow-origin: * timing-allow-origin: * eagleid: 2ff62c9617135314113552690e X-Firefox-Spdy: h2

static.dhsf.xqhuyu.com/game_mubao/20220126/mod_fgcq.zip?v=20240419163255

47.246.44.242

778 kB

URL
static.dhsf.xqhuyu.com/game_mubao/20220126/mod_fgcq.zip?v=20240419163255
IP
47.246.44.242:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
778 kB (777958 bytes)
Hash
f7edc2f70dcdf9018d2d3d37d8fd6022
f3c62e0f7bbee32e8b14598918bcdd7fea271a8d
73c601edeb03f0d383a2c06d161287a7adb1889621d54cc8a53b76d540a50b04

HTTP Headers

GET /game_mubao/20220126/mod_fgcq.zip?v=20240419163255 HTTP/1.1
Host: static.dhsf.xqhuyu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: application/zip
content-length: 777958
date: Fri, 19 Apr 2024 10:15:51 GMT
x-oss-request-id: 662244572851783034B57656
vary: Origin
x-oss-cdn-auth: success
accept-ranges: bytes
etag: "F7EDC2F70DCDF9018D2D3D37D8FD6022"
last-modified: Tue, 10 Oct 2023 08:52:17 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9897471071352201710
x-oss-storage-class: Standard
content-md5: 9+3C9w3N+QGNLT032P1gIg==
x-oss-server-time: 183
ali-swift-global-savetime: 1713521751
via: cache30.l2fr1[0,0,200-0,H], cache27.l2fr1[1,0], ens-cache13.se2[0,0,200-0,H], ens-cache2.se2[0,0]
age: 9660
x-cache: HIT TCP_MEM_HIT dirn:10:210394726
x-swift-savetime: Fri, 19 Apr 2024 12:56:07 GMT
x-swift-cachetime: 2582384
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9617135314113552690e
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (3)

JavaScript (0)

HTTP Transactions (1)

URL

IP

ASN

File type

Size

Hash

HTTP Headers