Report Overview
Visitedpublic
2025-02-09 10:15:56
Tags
Submit Tags
URL
cdn.discordapp.com/attachments/1334511698005987328/1338090776726343731/Casa_cloner.exe?ex=67a9d1a5&is=67a88025&hm=dc742a7e976c6655399d7ae4e0a7fb52fc6c7c2c85417f3d8eabada3e126b726&
Finishing URL
about:privatebrowsing
IP / ASN
162.159.135.233
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
cdn.discordapp.com 2 alert(s) on this Domain | 2474 | 2015-02-26 | 2015-08-24 | 2025-02-05 | 645 B | 8.8 MB | 162.159.134.233 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2025-02-09 | medium | cdn.discordapp.com/attachments/1334511698005987328/1338090776726343731/Casa_cloner.exe?ex=67a9d1a5&is=67a88025&hm=dc742a7e976c6655399d7ae4e0a7fb52fc6c7c2c85417f3d8eabada3e126b726& | Identifies executable converted using PyInstaller. |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
cdn.discordapp.com/attachments/1334511698005987328/1338090776726343731/Casa_cloner.exe?ex=67a9d1a5&is=67a88025&hm=dc742a7e976c6655399d7ae4e0a7fb52fc6c7c2c85417f3d8eabada3e126b726&
IP / ASN
162.159.134.233
File Overview
File TypePE32+ executable (console) x86-64, for MS Windows, 7 sections
Size8.8 MB (8752482 bytes)
MD566e6140ba9e19c29529dceb265b17b41
SHA1fefdb348596c3160bac45888d56e6e940a452907
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| Public InfoSec YARA rules | malware | Identifies executable converted using PyInstaller. |
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|