Report - gsmclassic.com/download/tools/Android-Fastboot-Reset-Tool-V1.2.zip

Report Overview

Visitedpublic

2024-10-17 10:58:13

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
gsmclassic.com	336231	2021-07-04	2021-07-04	2024-04-18	520 B	608 kB	172.67.136.47

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

gsmclassic.com/download/tools/Android-Fastboot-Reset-Tool-V1.2.zip

IP / ASN

172.67.136.47

#13335 CLOUDFLARENET

File Overview

File TypeZip archive data, at least v1.0 to extract, compression method=store

Size607 kB (607422 bytes)

MD599d3f14d8cff4e0e8e44529803a33567

SHA1c309d4230a5a9f4cd2abaa9358a1af98c25e07f1

SHA2567d397bedcfec4df6b4a68fb50d0bdd964c8b7360e5ad2e796372b20c42fbd45a

Archive (6)

Modified	Filename	Size	MD5	File type
2012-05-02 05:46	adb.exe	163 kB	862c2b75b223e3e8aafeb20fe882a602	PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, 5 sections
2012-05-02 05:46	AdbWinApi.dll	96 kB	47a6ee3f186b2c2f5057028906bac0c6	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections
2012-05-02 05:46	AdbWinUsbApi.dll	61 kB	5f23f2f936bdfac90bb0a4970ad365cf	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections
2016-09-05 16:59	Android Fastboot Reset Tool V1.2.exe	100 kB	619e86a0ae9061f76e963af09692230d	PE32 executable (console) Intel 80386, for MS Windows, 5 sections
2016-03-10 19:34	fastboot-edl.exe	203 kB	83846850fe14720c22ad3cfbf09b7e5c	PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, 9 sections
2011-07-31 02:23	fastboot.exe	992 kB	6bbf05d97585c3c515bdb172eb9e7d12	PE32 executable (console) Intel 80386, for MS Windows, 7 sections

Detections

Analyzer	Verdict	Alert
Malpedia's yara-signator rules	malware	Detects win.koadic.
YARAhub by abuse.ch	malware	pe_detect_tls_callbacks
VirusTotal	malicious	VirusTotal - Scan result 34/64

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET gsmclassic.com/download/tools/Android-Fastboot-Reset-Tool-V1.2.zip

172.67.136.47

200 OK

607 kB

URL

gsmclassic.com/download/tools/Android-Fastboot-Reset-Tool-V1.2.zip

IP / ASN

172.67.136.47

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeZip archive data, at least v1.0 to extract, compression method=store

First Seen2024-08-31

Last Seen2025-05-15

Times Seen8

Size607 kB (607422 bytes)

MD599d3f14d8cff4e0e8e44529803a33567

SHA1c309d4230a5a9f4cd2abaa9358a1af98c25e07f1

SHA2567d397bedcfec4df6b4a68fb50d0bdd964c8b7360e5ad2e796372b20c42fbd45a

Certificate Info

IssuerGoogle Trust Services

Subjectgsmclassic.com

FingerprintDD:82:63:6F:80:8A:92:31:3B:DD:36:D8:BD:24:16:0C:AD:9A:2B:DF

ValidityFri, 20 Sep 2024 23:43:17 GMT - Thu, 19 Dec 2024 23:43:16 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 34/64

HTTP Headers

GET /download/tools/Android-Fastboot-Reset-Tool-V1.2.zip HTTP/1.1
Host: gsmclassic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 17 Oct 2024 10:57:46 GMT
content-type: application/zip
content-length: 607422
etag: "944be-65e4cc3f-2c6113f;;;"
last-modified: Sun, 03 Mar 2024 19:15:11 GMT
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vU6lYzvTJvMiNmTscv4NIObrBUxsNibt1gdcBD%2BY0MoQOHkrW7Ggsh6s2opPiiZv920uGcNF%2Ftsu2HEjmN1hLmTk5iYQmMdIsqxZNed3d1kr8yyVL3MtkfcSx4wgqT3GMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d3fc503fc4db527-OSL
X-Firefox-Spdy: h2