Report - geodacenter.github.io/data-and-lab/data/sacramento.zip

Report Overview

Submitted URL
geodacenter.github.io/data-and-lab/data/sacramento.zip
IP
185.199.109.153
ASN
#54113 FASTLY
Submitted
2024-05-10 19:16:58
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
geodacenter.github.io	unknown	2013-03-08	2016-05-03	2024-03-07	508 B	5.4 MB	185.199.111.153

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
geodacenter.github.io/data-and-lab/data/sacramento.zip
IP
185.199.111.153
ASN
#54113 FASTLY

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
5.4 MB (5436749 bytes)
Hash
8643d4ae7a9faccdf3605ca8a1d362ea
0feb57da3467825083b91a9eb6e7d99864c7d10c
72ddeb533cf2917dc1f458add7c6042b93c79b31316ae2d22f1c855a9da275f9

Archive (67)

Filename

Md5

File type

.DS_Store

194577a7e20bdcc7afbb718f502c134c

Apple Desktop Services Store

._.DS_Store

f0d9d90674bab5908378533975df5a01

AppleDouble encoded Macintosh file

sacramento_metadata.html

183a8626541406373d2c4acc7d8a2fb6

HTML document, Unicode text, UTF-8 text

._sacramento_metadata.html

6b0cd1154b08290d87eb08d1215702ec

AppleDouble encoded Macintosh file

sacramentot2.csv

1fa5e5dc0210991bb4206a1501067eb1

CSV text

sacramentot2.dbf

8d0b8f05ec6c791e92d0607917345363

FoxBase+/dBase III DBF, 403 records * 428, update-date 120-9-12, codepage ID=0x57, at offset 993 1st record "06061022001 Sacramento "

a00000001.gdbindexes

85022decc419825cdcb0c2b8c0e1355e

data

a00000001.gdbtable

9d5785839412365ffc5a8b39adf2a00e

data

a00000001.gdbtablx

3400fc5593f4a50c6126204ac381a04b

data

a00000001.TablesByName.atx

f10415f612e5891d01dee83226caf1b1

data

a00000002.gdbtable

ccaa9bdb9b51e2848e0a53004e2535ef

data

a00000002.gdbtablx

bc11a2a8ad57c9cb1cd6e760bc366a65

data

a00000003.gdbindexes

f56e7d854fe89ea7d26f7ee865d8f0a5

data

a00000003.gdbtable

6cf6cb00c88c42d1857ef856c5aa6226

data

a00000003.gdbtablx

5fe9c0fb48fec7c80faf14c408937fd1

data

a00000004.CatItemsByPhysicalName.atx

7df4e33a96452fc4e47f8feff3dadb4b

data

a00000004.CatItemsByType.atx

b6fa347be356efc6bd3ab396d6e1b0f9

data

a00000004.FDO_UUID.atx

1549fbd7a9a4b80acc4a1ceb605558c8

data

a00000004.gdbindexes

6c458f4bf707ee637122876d926a20f5

data

a00000004.gdbtable

20a0e101808d20c05c512407e88a9aab

data

a00000004.gdbtablx

6dfca79c38af32014461a564435609c9

data

a00000004.spx

47ee12476f0e5488768d7b898ecffc38

data

a00000005.CatItemTypesByName.atx

72f49ff8cb0d59964052b704483117c3

data

a00000005.CatItemTypesByParentTypeID.atx

648a521678130820d3974967919b941a

data

a00000005.CatItemTypesByUUID.atx

84e42c749061e202d64760881663f06a

data

a00000005.gdbindexes

3585065e17c6580b63043f419a2a17cb

data

a00000005.gdbtable

953f6078842c8b8591cf738338d9da0f

data

a00000005.gdbtablx

70f7ce3bac529387959430eb8cc73ef0

data

a00000006.CatRelsByDestinationID.atx

8367cfa3d3529fc36bb371d93fa21264

data

a00000006.CatRelsByOriginID.atx

82298591f9b7e0dd130a3b96bec546d3

data

a00000006.CatRelsByType.atx

9cc9f2765bd5494886d50dcb39cfafd5

data

a00000006.FDO_UUID.atx

132fced78755ae4814f37d4ceaff26fe

data

a00000006.gdbindexes

82cc637cc7e2ca712226d2493179ad0c

data

a00000006.gdbtable

d4ba2b529ed4c8e677a92ae44d3e6493

data

a00000006.gdbtablx

a16421506e54ce4d7866ac766ba2fbdd

data

a00000007.CatRelTypesByBackwardLabel.atx

9ba621137ebabb228374a697c4cc06fa

GLS_BINARY_LSB_FIRST

a00000007.CatRelTypesByDestItemTypeID.atx

02f6c7ed5fdd188ed6b293f9c81d08c5

GLS_BINARY_LSB_FIRST

a00000007.CatRelTypesByForwardLabel.atx

9ebd85856e69bc9f3eaa4b9da74d3759

GLS_BINARY_LSB_FIRST

a00000007.CatRelTypesByName.atx

1805e90c2f8fc66e478d58cf0b993781

GLS_BINARY_LSB_FIRST

a00000007.CatRelTypesByOriginItemTypeID.atx

0b7e484e7d2d1673847691f60ccb1ece

GLS_BINARY_LSB_FIRST

a00000007.CatRelTypesByUUID.atx

0061f98bb54e8a3eb92a567ab00ed4ea

GLS_BINARY_LSB_FIRST

a00000007.gdbindexes

d7c9c452f4fafb3b4cd5036ef90a9031

data

a00000007.gdbtable

8cc505d77764bfb0435d834b8d2d394e

GLS_BINARY_LSB_FIRST

a00000007.gdbtablx

4f9b3075d0e12da22d9e2ce8eb21c7b2

data

a00000009.gdbindexes

1ce12fbc59dc1470d13b0e8ddc6651cf

data

a00000009.gdbtable

ffdb11ff01e18e77db9a347f12ccd320

data

a00000009.gdbtablx

e5b735260682a922d419c5280739a19d

data

a00000009.spx

cf3e0480897d0f14564673353f1e4f67

data

gdb

89c21b9e5e51d2cabbb44e7d7278c4a4

data

timestamps

29d20c72cc28eaef06d004d2bd9fe130

data

sacramentot2.geojson

58d6e817df73e1bbc0c65ef1b1ab07cf

JSON text data

sacramentot2.gpkg

a7a449e98702489e5fb9fb423f8ddb4f

SQLite 3.x database (OGC GeoPackage version 1.0 file), last written using SQLite version 3008002, page size 1024, file counter 5, database pages 1748, cookie 0x27, schema 4, UTF-8, version-valid-for 5

sacramentot2.kml

1579a067b5d8566bea9113c2626f8737

XML 1.0 document, ASCII text, with very long lines (48093)

sacramentot2.mid

f33b0324c309e06243efdd2c23a8d1d0

CSV text

sacramentot2.mif

ebce3a62edea77e2a3b1bda3a87c7a7f

ASCII text

sacramentot2.prj

e729936bf5360b37a15365fc295a1901

ASCII text, with no line terminators

sacramentot2.sbn

e9ac9181e45b9d0aeab191bfe6e31a31

ESRI Shapefile version -1828651008 length 5586

._sacramentot2.sbn

438ccc6d47f2cf06ee6778ebf262776a

AppleDouble encoded Macintosh file

sacramentot2.sbx

cb4b05be91cd7f29bc690cf601c10d7a

ESRI Shapefile version -1828651008 length 294

._sacramentot2.sbx

438ccc6d47f2cf06ee6778ebf262776a

AppleDouble encoded Macintosh file

sacramentot2.shp

8d7db2d377835276ad80bccf0a3bc58d

ESRI Shapefile version 1000 length 793906 type Polygon

sacramentot2.shx

2c9f86ed719357467f036b9f0288b88a

ESRI Shapefile version 1000 length 1662 type Polygon

sacramentot2.sqlite

78de0d5e0c7b2470442e8b74e4c1046d

SQLite 3.x database, last written using SQLite version 3008002, page size 1024, file counter 16, database pages 5255, cookie 0x72, schema 4, UTF-8, version-valid-for 16

sacramentot2.xlsx

93ec365cb3013d0e62fa9c2ad8541764

Microsoft Excel 2007+

style.css

d95745f2be73112f1e88b2b198b1ce0a

HTML document, ASCII text, with CRLF line terminators

._style.css

438ccc6d47f2cf06ee6778ebf262776a

AppleDouble encoded Macintosh file

._sacramento

438ccc6d47f2cf06ee6778ebf262776a

AppleDouble encoded Macintosh file

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	geodacenter.github.io/data-and-lab/data/sacramento.zip	185.199.111.153	200 OK	5.4 MB
URL User Request GET HTTP/2 geodacenter.github.io/data-and-lab/data/sacramento.zip IP 185.199.111.153:443 ASN #54113 FASTLY Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 5.4 MB (5436749 bytes) Hash 8643d4ae7a9faccdf3605ca8a1d362ea 0feb57da3467825083b91a9eb6e7d99864c7d10c 72ddeb533cf2917dc1f458add7c6042b93c79b31316ae2d22f1c855a9da275f9 HTTP Headers `GET /data-and-lab/data/sacramento.zip HTTP/1.1 Host: geodacenter.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: GitHub.com content-type: application/zip permissions-policy: interest-cohort=() x-origin-cache: HIT last-modified: Wed, 11 Oct 2023 22:05:52 GMT access-control-allow-origin: etag: "65271c40-52f54d" expires: Fri, 10 May 2024 19:26:29 GMT cache-control: max-age=600 x-proxy-cache: MISS x-github-request-id: 88CE:3C6FA0:2114646:21F62A9:663E728D accept-ranges: bytes date: Fri, 10 May 2024 19:16:29 GMT via: 1.1 varnish age: 0 x-served-by: cache-hel1410033-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1715368589.188221,VS0,VE379 vary: Accept-Encoding x-fastly-request-id: 08fa5419da6dbb1031b3fe96f08df372a390f6e2 content-length: 5436749 X-Firefox-Spdy: h2

geodacenter.github.io/data-and-lab/data/sacramento.zip

185.199.111.153

200 OK

5.4 MB

URL User Request GET HTTP/2
geodacenter.github.io/data-and-lab/data/sacramento.zip
IP
185.199.111.153:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
5.4 MB (5436749 bytes)
Hash
8643d4ae7a9faccdf3605ca8a1d362ea
0feb57da3467825083b91a9eb6e7d99864c7d10c
72ddeb533cf2917dc1f458add7c6042b93c79b31316ae2d22f1c855a9da275f9

HTTP Headers

GET /data-and-lab/data/sacramento.zip HTTP/1.1
Host: geodacenter.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: application/zip
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Wed, 11 Oct 2023 22:05:52 GMT
access-control-allow-origin: *
etag: "65271c40-52f54d"
expires: Fri, 10 May 2024 19:26:29 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 88CE:3C6FA0:2114646:21F62A9:663E728D
accept-ranges: bytes
date: Fri, 10 May 2024 19:16:29 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715368589.188221,VS0,VE379
vary: Accept-Encoding
x-fastly-request-id: 08fa5419da6dbb1031b3fe96f08df372a390f6e2
content-length: 5436749
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (67)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers