Report Overview
Visitedpublic
2024-06-17 13:11:43
Tags
Submit Tags
URL
packages.wazuh.com/4.x/windows/wazuh-agent-4.7.5-1.msi
Finishing URL
about:privatebrowsing
IP / ASN
3.164.230.32
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
packages.wazuh.com 1 alert(s) on this Domain | 194668 | 2014-12-24 | 2017-05-02 12:03:01 | 2024-04-17 23:19:50 | 508 B | 6.5 MB | 3.164.230.57 | |
r10.o.lencr.org | unknown | 2020-06-29 | 2024-06-06 21:45:11 | 2024-06-15 18:30:36 | 2.0 kB | 5.3 kB |  23.36.77.32 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-06-17 | medium | packages.wazuh.com/4.x/windows/wazuh-agent-4.7.5-1.msi | Detect files is `SliverFox` malware |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
packages.wazuh.com/4.x/windows/wazuh-agent-4.7.5-1.msi
IP / ASN
3.164.230.57
File Overview
File TypeComposite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Wazuh helps you to gain security visibility into your infrastructure by monitoring hosts at an operating system and application level. It provides the following capabilities: log analysis, file integrity monitoring, intrusions detection and policy and compliance monitoring, Author: Wazuh, Inc., Keywords: Installer, Comments: wazuh-agent, Template: Intel;1033, Revision Number: {CB60DD88-E320-4D22-B205-72A0C426CFC4}, Create Time/Date: Wed May 29 16:48:00 2024, Last Saved Time/Date: Wed May 29 16:48:00 2024, Number of Pages: 200, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
Size6.5 MB (6524928 bytes)
MD5ddeac83317792be043f82a839dc58e9a
SHA18c875718cc618eaca6ec727701a22feaa5ced5b0
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detect files is `SliverFox` malware |
JavaScript (0)
No JavaScripts
HTTP Transactions (7)
| URL | IP | Response | Size |
|---|