Report - unsolicited.elementfx.com/OSM/ObamaSlotMachineV2.zip

Report Overview

Submitted URL
unsolicited.elementfx.com/OSM/ObamaSlotMachineV2.zip
IP
198.91.81.13
ASN
#32475 SINGLEHOP-LLC
Submitted
2024-05-10 10:00:38
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
unsolicited.elementfx.com	unknown	2005-01-31	2013-05-17	2021-12-19	506 B	2.5 MB	198.91.81.13

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
unsolicited.elementfx.com/OSM/ObamaSlotMachineV2.zip
IP
198.91.81.13
ASN
#32475 SINGLEHOP-LLC

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
2.5 MB (2508920 bytes)
Hash
7393016b98aa285e882d9d2e1d3bb789
76bf08a708d9925dba7a2abb71a943c7f4b8bb4f
573a45480170a652a77dfe8d5c436d99c881e7792fb362e611ab0663cdb17d62

Archive (77)

Modified	Filename	Size	Md5	File type
2014-04-19 22:52	.DS_Store	6.1 kB	3fc3e8ec3f4615853005eedcffba2f73	Apple Desktop Services Store
2014-04-19 22:52	._.DS_Store	82 B	5a259a297943054a2cd1456706912d5c	AppleDouble encoded Macintosh file
2014-04-19 22:52	.DS_Store	6.1 kB	b74f6d3407a7b7815de5dc4a705c37ed	Apple Desktop Services Store
2014-04-19 22:52	._.DS_Store	82 B	5a259a297943054a2cd1456706912d5c	AppleDouble encoded Macintosh file
2012-11-13 00:51	BlameBush.png	8.5 kB	1cf646d2c45664f4ca4349b5b132f1b6	PNG image data, 84 x 70, 8-bit/color RGBA, non-interlaced
2012-11-13 00:51	._BlameBush.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-13 00:50	Obama2008.png	13 kB	0406fe6e9436208f2370fbc39b1d7e9e	PNG image data, 76 x 74, 8-bit/color RGBA, non-interlaced
2012-11-13 00:50	._Obama2008.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2014-04-19 22:52	.DS_Store	6.1 kB	194577a7e20bdcc7afbb718f502c134c	Apple Desktop Services Store
2014-04-19 22:52	._.DS_Store	82 B	5a259a297943054a2cd1456706912d5c	AppleDouble encoded Macintosh file
2012-11-18 10:55	OSMWaysChart.jpg	59 kB	2884f75a74a8b791c60b36568285699d	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 391x270, components 3
2012-11-18 10:55	._OSMWaysChart.jpg	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-12 22:42	reel_normal.png	136 kB	64c926f2316d6cd3d837b8b6431faeea	PNG image data, 100 x 1400, 8-bit/color RGBA, non-interlaced
2012-11-12 22:42	._reel_normal.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-16 08:55	SOC_hdr2.png	29 kB	01ee84b9adf28ea81b3315aeae0272d9	PNG image data, 310 x 82, 8-bit/color RGBA, non-interlaced
2012-11-16 08:55	._SOC_hdr2.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-14 10:33	SOCad01_200.jpg	34 kB	a459560e5b2ee116685e9d964f4baa47	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 200x259, components 3
2012-11-14 10:33	._SOCad01_200.jpg	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-14 12:45	SOCad01_200bdr.png	106 kB	65719803c773b491d744d08d9967c713	PNG image data, 200 x 259, 8-bit/color RGBA, non-interlaced
2012-11-14 12:45	._SOCad01_200bdr.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2014-04-19 22:52	._OSM1	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2014-04-19 22:52	.DS_Store	6.1 kB	194577a7e20bdcc7afbb718f502c134c	Apple Desktop Services Store
2014-04-19 22:52	._.DS_Store	82 B	5a259a297943054a2cd1456706912d5c	AppleDouble encoded Macintosh file
2012-11-16 08:29	BM_hdr1.png	31 kB	294a908490164a3c90b3663906540305	PNG image data, 310 x 82, 8-bit/color RGB, non-interlaced
2012-11-16 08:29	._BM_hdr1.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-15 10:20	BMad01_200bdr.jpg	32 kB	dd42c3a4eda4a00285f31a35c6573d45	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 200x259, components 3
2012-11-15 10:20	._BMad01_200bdr.jpg	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-18 10:55	OSMWaysChart.jpg	59 kB	2884f75a74a8b791c60b36568285699d	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 391x270, components 3
2012-11-18 10:55	._OSMWaysChart.jpg	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-17 10:06	reel_normal.png	138 kB	9db8c41368f3cbd334a5d68c4c138636	PNG image data, 100 x 1400, 8-bit/color RGBA, non-interlaced
2012-11-17 10:06	._reel_normal.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2014-04-19 22:52	._OSM2	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-04 20:45	Breadstick.png	51 kB	cec43d65747754af60327dee326adf07	PNG image data, 340 x 329, 8-bit/color RGBA, non-interlaced
2012-12-04 20:45	._Breadstick.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-30 18:56	Deliveryman-icon.png	43 kB	1641b4741bffd1f2f8ac5d514ef255a0	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
2012-11-30 18:56	._Deliveryman-icon.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-07 22:35	OP_hdr.png	39 kB	7b77e9740e35d5d563a38b4b4b1f0f36	PNG image data, 512 x 82, 8-bit/color RGBA, non-interlaced
2012-12-07 22:35	._OP_hdr.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-06 19:44	OPad01_200bdr.png	58 kB	a7fdee833378d8daa4623942cb9a8adb	PNG image data, 200 x 259, 8-bit/color RGBA, non-interlaced
2012-12-06 19:44	._OPad01_200bdr.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-07 22:59	OPreel0.png	332 kB	4e1553ab57468688ec6abce769e6bc0c	PNG image data, 96 x 3200, 8-bit/color RGBA, non-interlaced
2012-12-07 22:59	._OPreel0.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-07 22:49	OPreel1.png	323 kB	22945901e9541fdfdcb63ce8af3c9b88	PNG image data, 96 x 3200, 8-bit/color RGBA, non-interlaced
2012-12-07 22:49	._OPreel1.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-07 22:45	OPreel2.png	304 kB	95840ffbf3f15a3dcf3a5cda8fb78f44	PNG image data, 96 x 3200, 8-bit/color RGBA, non-interlaced
2012-12-07 22:45	._OPreel2.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-08 09:56	OPreel3.png	292 kB	4fdb219a412aeebb8db9aac29d26bc65	PNG image data, 96 x 3200, 8-bit/color RGBA, non-interlaced
2012-12-08 09:56	._OPreel3.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-07 22:39	OPreel4.png	294 kB	226bf408cf014f92c31085260430600a	PNG image data, 96 x 3200, 8-bit/color RGBA, non-interlaced
2012-12-07 22:39	._OPreel4.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-30 18:57	Pizza-icon.png	36 kB	610f8d2a9f38288f941f94da46a47af3	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
2012-11-30 18:57	._Pizza-icon.png	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2014-04-19 22:52	._OSM3	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2014-04-19 22:52	._images	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-11-16 07:47	index.html	8.2 kB	bc70016167a1a7b7ed84a856b502c56b	HTML document, Unicode text, UTF-8 text, with CR, LF line terminators
2012-11-16 07:47	._index.html	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2009-11-14 09:50	jquery-1.3.2.js	121 kB	e4af2b4805203f1ac490ad67531b848b	JavaScript source, ASCII text
2009-11-14 09:50	._jquery-1.3.2.js	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2011-08-01 16:13	jquery-1.6.2.min.js	92 kB	a1a8cb16a060f6280a767187fd22e037	JavaScript source, Unicode text, UTF-8 text, with very long lines (32764)
2011-08-01 16:13	._jquery-1.6.2.min.js	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2011-06-14 04:32	jquery.backgroundPosition.js	2.0 kB	01b10a0ae83320e370f891e4f243b763	JavaScript source, ASCII text
2011-06-14 04:32	._jquery.backgroundPosition.js	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2011-06-14 04:32	jquery.spritely.js	17 kB	2953ebab000431bc9b3c068e9b69d78e	JavaScript source, ASCII text
2011-06-14 04:32	._jquery.spritely.js	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-08 14:52	OSM.html	17 kB	23ed5ac50b81426d40764ff796a7345d	HTML document, ISO-8859 text, with very long lines (1646), with CR, LF line terminators
2012-12-08 14:52	._OSM.html	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-08 14:58	OSM2.html	20 kB	3f993892ef4db5e0fc262529db8cf5c6	HTML document, ISO-8859 text, with very long lines (1775), with CR, LF line terminators
2012-12-08 14:58	._OSM2.html	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-08 20:04	OSM3.html	20 kB	052b21098607ca14a71f72d5da040a09	HTML document, ISO-8859 text, with very long lines (1099), with CR, LF line terminators
2012-12-06 20:52	README.txt	3.0 kB	957f92e40cd41882cab46899baf36101	ASCII text, with very long lines (497)
2012-11-15 16:41	slot.js	13 kB	50fa68aba423e5b3fbc8ba321bf5102f	JavaScript source, ASCII text, with very long lines (417)
2012-11-15 16:41	._slot.js	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-06 22:02	slot2.js	14 kB	e96121a96c059720753f4808996fb851	JavaScript source, ASCII text, with very long lines (417)
2012-12-06 22:02	._slot2.js	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2012-12-08 20:04	slot3.js	13 kB	dd7e4596ca8b74730641b8f8c2b7dda0	JavaScript source, Unicode text, UTF-8 text, with CRLF, CR, LF line terminators
2012-12-08 20:04	._slot3.js	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file
2014-04-19 22:52	._ObamaSlotMachineV2	197 B	c58b77ffeb904283fe9d4f8d2a7350b0	AppleDouble encoded Macintosh file

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/60

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

unsolicited.elementfx.com/OSM/ObamaSlotMachineV2.zip

198.91.81.13

200 OK

2.5 MB

URL User Request GET HTTP/2
unsolicited.elementfx.com/OSM/ObamaSlotMachineV2.zip
IP
198.91.81.13:443
ASN
#32475 SINGLEHOP-LLC

Certificate
IssuerLet's Encrypt
Subject*.unsolicited.elementfx.com
FingerprintC1:45:CA:F2:9C:17:B9:08:EA:F4:28:A8:46:F2:EC:80:61:6E:AD:77
ValidityWed, 27 Mar 2024 04:51:05 GMT - Tue, 25 Jun 2024 04:51:04 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
2.5 MB (2508920 bytes)
Hash
7393016b98aa285e882d9d2e1d3bb789
76bf08a708d9925dba7a2abb71a943c7f4b8bb4f
573a45480170a652a77dfe8d5c436d99c881e7792fb362e611ab0663cdb17d62

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 2/60

HTTP Headers

GET /OSM/ObamaSlotMachineV2.zip HTTP/1.1
Host: unsolicited.elementfx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/zip
last-modified: Sun, 20 Apr 2014 02:53:37 GMT
etag: "264878-535336b1-f7d86786f453c910;;;"
accept-ranges: bytes
content-length: 2508920
date: Fri, 10 May 2024 09:59:42 GMT
server: LiteSpeed
vary: User-Agent
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains
referrer-policy: same-origin
feature-policy: geolocation 'self'; vibrate 'none'
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (77)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers