Report - packages.diladele.com/squid/4.14/squid.msi

Report Overview

Visitedpublic

2024-12-11 00:52:27

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
packages.diladele.com	unknown	2006-08-08	2014-12-16	2024-02-08	496 B	18 MB	88.198.141.190

Related reports

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2024-12-11	medium	packages.diladele.com/squid/4.14/squid.msi	Detect files is `SliverFox` malware

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

packages.diladele.com/squid/4.14/squid.msi

IP / ASN

88.198.141.190

#24940 Hetzner Online GmbH

File Overview

File TypeComposite Document File V2 Document, Little Endian, Os: Windows, Version 6.3, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Installer for Squid from Diladele B.V., Author: Squid Project, Keywords: Installer, Comments: This installer database contains the logic and data required to install Squid., Template: x64;1033, Revision Number: {BEC11220-38CC-479D-950D-FF0506EB2BCD}, Create Time/Date: Thu May 13 20:14:12 2021, Last Saved Time/Date: Thu May 13 20:14:12 2021, Number of Pages: 200, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.1.2318), Security: 2

Size18 MB (17502208 bytes)

MD52025919c486437aca72b3499ac06dfd7

SHA15e2931bd047e77719d623995c51a83c8ddcd4432

SHA2566323a8db1327f5d7d5b0d1160a18d3216e4cc4e169db14cce7207163b735acb3

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect files is `SliverFox` malware

JavaScript (0)

HTTP Transactions (1)

	URL	IP	Response	Size