Report - dr-dl-4.xyz/drv/common/Realtek_Semiconductor_Corp._Realtek_8812AU_Wireless_LAN_802.11ac_USB_NIC_U

Report Overview

Submitted URL
dr-dl-4.xyz/drv/common/Realtek_Semiconductor_Corp._Realtek_8812AU_Wireless_LAN_802.11ac_USB_NIC_U_1030.31.1113.2018.zip
IP
89.41.180.203
ASN
#25198 Interkvm Host Srl
Submitted
2024-04-26 11:47:07
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dr-dl-4.xyz	unknown	2023-06-04	2023-06-04	2023-12-05	573 B	4.9 MB	89.41.180.203

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
dr-dl-4.xyz/drv/common/Realtek_Semiconductor_Corp._Realtek_8812AU_Wireless_LAN_802.11ac_USB_NIC_U_1030.31.1113.2018.zip
IP
89.41.180.203
ASN
#25198 Interkvm Host Srl

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
4.9 MB (4850646 bytes)
Hash
e934ebf0aa31b53d3aeaa115df2b99e7
eb8ee962a4f8a9afd1addf202d3fc8ca171582dd
c2d5fa03b319de4a209c82d1da46c4a271f351702dd31621d4a649ce1cce8b13

Archive (9)

Filename

Md5

File type

RtlExtUI.dll

065c3082b143ac7d2697ca8705257f36

PE32+ executable (DLL) (console) x86-64, for MS Windows, 5 sections

Rtlihvs.dll

33b03550ef52353d07a11894ad259cda

PE32+ executable (DLL) (console) x86-64, for MS Windows, 5 sections

netrtwlanu.cat

9dea94de23527619c49f76bb49751e65

DER Encoded PKCS#7 Signed Data

netrtwlanu_Vista.inf

d3c75c2801eef16e1a62faa187cfa772

Windows setup INFormation

netrtwlanu_XP.inf

db2c3d71a33a2b6b6cfd08276140804b

Windows setup INFormation

rtlCoInst.dat

03e6c72c9b842cb25b7b2b77446ff841

ASCII text, with CRLF, LF line terminators

rtlCoInst.dll

b8fc580ec699a6204cf57ad50ae89992

PE32+ executable (DLL) (console) x86-64, for MS Windows, 5 sections

rtwlanu_Vista.sys

6ee2558ee471b4fbd004052e245ab4cc

PE32+ executable (native) x86-64, for MS Windows, 7 sections

rtwlanu_XP.sys

32fb7f0c710850a6629dfd0146ec8c48

PE32 executable (native) Intel 80386, for MS Windows, 6 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_stackstrings

JavaScript (0)

HTTP Transactions (1)

	URL	IP	Response	Size
	dr-dl-4.xyz/drv/common/Realtek_Semiconductor_Corp._Realtek_8812AU_Wireless_LAN_802.11ac_USB_NIC_U_1030.31.1113.2018.zip	89.41.180.203	200 OK	4.9 MB
URL User Request GET HTTP/1.1 dr-dl-4.xyz/drv/common/Realtek_Semiconductor_Corp._Realtek_8812AU_Wireless_LAN_802.11ac_USB_NIC_U_1030.31.1113.2018.zip IP 89.41.180.203:443 ASN #25198 Interkvm Host Srl Certificate IssuerLet's Encrypt Subjectdr-dl-4.xyz FingerprintB5:BA:48:A9:8B:9D:7B:22:B6:1C:D2:D5:0E:56:7D:EB:CA:6E:4C:54 ValidityMon, 12 Feb 2024 17:40:37 GMT - Sun, 12 May 2024 17:40:36 GMT File type Zip archive data, at least v2.0 to extract, compression method=store Size 4.9 MB (4850646 bytes) Hash e934ebf0aa31b53d3aeaa115df2b99e7 eb8ee962a4f8a9afd1addf202d3fc8ca171582dd c2d5fa03b319de4a209c82d1da46c4a271f351702dd31621d4a649ce1cce8b13 HTTP Headers GET /drv/common/Realtek_Semiconductor_Corp._Realtek_8812AU_Wireless_LAN_802.11ac_USB_NIC_U_1030.31.1113.2018.zip HTTP/1.1 Host: dr-dl-4.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx-n.wtf/1.25.2 Date: Fri, 26 Apr 2024 11:46:39 GMT Content-Type: application/zip Content-Length: 4850646 Last-Modified: Wed, 26 Oct 2022 18:44:37 GMT Connection: keep-alive ETag: "63598015-4a03d6" Accept-Ranges: bytes`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (9)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers