Report - github.com/xupefei/Locale-Emulator/releases/download/v2.5.0.1/Locale.Emulator.2.5.0.1.zip

Report Overview

Submitted URL
github.com/xupefei/Locale-Emulator/releases/download/v2.5.0.1/Locale.Emulator.2.5.0.1.zip
IP
140.82.121.4
ASN
#36459 GITHUB
Submitted
2024-03-28 05:58:19
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
github.com	1423	2007-10-09	2016-07-13	2024-03-24	543 B	4.0 kB	140.82.121.4
objects.githubusercontent.com	134060	2014-02-06	2021-11-01	2024-03-28	1.0 kB	155 kB	185.199.109.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
objects.githubusercontent.com/github-production-release-asset-2e65be/8835057/739b1f0b-17b0-43d9-88bc-8f30b01d1016?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240328%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240328T055754Z&X-Amz-Expires=300&X-Amz-Signature=b305672c6671884429c0768af8756e62d05adfba10c409705330ec07a3c07773&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=8835057&response-content-disposition=attachment%3B%20filename%3DLocale.Emulator.2.5.0.1.zip&response-content-type=application%2Foctet-stream
IP
185.199.109.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
154 kB (154135 bytes)
Hash
6e1a6cb34e33966befef0ae119c532b8
755a554e3f15104707d979a56c8e7ed46e469c0d
808ff584426d52cc775ad6406da00622f454be95bd4c8fbca42eef4b7235ad5c

Archive (51)

Filename

Md5

File type

ca.xaml

854f03be38750dbb9dd7880a21e167a6

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ca.xml

5349503fece5add350680291e6002c04

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

cs.xaml

6a3002be2da6358e799cf6096cc5cd6e

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

cs.xml

312e9b44eb1c0c6d9bc4afaa16e8458a

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

de.xaml

98835872597c635d4ba139d838b462a1

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

de.xml

a3a3677200fe7b776d15a926b2b87375

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

DefaultLanguage.xaml

c27af0f032d1a4f9ff0df7ab652711de

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

DefaultLanguage.xml

b730cbf194b9a04df38749022efaa0d6

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

es.xaml

76a04b41700181cf354f9b2bc8699848

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

es.xml

7c689afa6a1f354e774d9b2de17c61a4

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

fr.xaml

1fa86553b21ca545cef831563f7b1a3a

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

fr.xml

48e483be9f67cf4dd7c9e6a4949c15f0

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ind.xaml

f1930a45604a0b7081a3cb2e81f733cc

ASCII text, with CRLF line terminators

ind.xml

0330ab72d8be082b4829c47d9ed4cec5

XML 1.0 document, ASCII text, with CRLF line terminators

it.xaml

4699a03b2f780a1cb36d0181ca396273

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

it.xml

d33c3ef5abdd562187e2866f22f13476

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ja.xaml

09663151240e73186da82539ec73465b

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ja.xml

a21f456ae6d155fa21d86a8541fa9513

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ka.xaml

57703c4ad0a4ff6067809e2b5fd9923d

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ka.xml

863e870cf1f8c91d27f9c3cc97701612

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

ko.xaml

d8491b6ba614f153f78ac7ac78835fbf

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ko.xml

18a518ed5432796dab602680ad8fe88b

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

lt.xaml

07eab1fc4dfc5d539405ffff3760c267

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

lt.xml

65d9441fe3ac0b5eed3dd37facd6b3f8

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

nb.xaml

8e87b22cbd4c9c515cec9c2c5f8045c7

Unicode text, UTF-8 text, with CRLF line terminators

nb.xml

9a27fdfed15b92632bb3acbef549d5ff

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

nl.xaml

026406b8fad3f623ff0820520577779d

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

nl.xml

c8b4c178f131932c9693b17f14dad0c1

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

pl.xaml

726711e42751c1eed1188e817176a5d5

Unicode text, UTF-8 text, with CRLF line terminators

pl.xml

5bc6f3f65fbc93330a99b014761472f7

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

pt-BR.xaml

a34ef2d48abf656d175e606f966578cc

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

pt-BR.xml

6734a10acc4a94c819f29b4fd9e1382f

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ru.xaml

fa706b3453a315290531a5a262e99824

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

ru.xml

f086fcbf7176d8cb8c2bf8dcd2abb095

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

th.xaml

12b66a1329ff61c2aa2de26be32a3117

Unicode text, UTF-8 text, with CRLF line terminators

th.xml

c058dd71ba4932bc4a0c55a0a3dee3d1

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

tr-TR.xaml

d86b7d2cd041244aab660604c0ea7c79

Unicode text, UTF-8 text, with CRLF line terminators

tr-TR.xml

79084fc3a2828a93a55f26697370e11c

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

zh-CN.xaml

5f4889fc14c8002832fa978c1120b546

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

zh-CN.xml

a4b1010ce3b576ea5197a7e9928f6a91

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

zh-HK.xaml

f993638d037956f7d5826525f8e7776b

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

zh-HK.xml

e68ee861247383b7302bfff6f56022ca

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

zh-TW.xaml

182a376224a0d4ee29763896b7957e51

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

zh-TW.xml

e68ee861247383b7302bfff6f56022ca

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

LEGUI.exe

9a93c283cd5f34ea188601e0d1225724

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

LEInstaller.exe

460f7b9447fd6ad7eebf26a049961046

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

LEProc.exe

c8940efaac819ee5cc2de53a566716ca

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

LEUpdater.exe

9ecb6eebfd45314baec52220e635040b

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

LEVersion.xml

435be7ca3ef8399151b0b2aed58f8a34

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

LoaderDll.dll

4c9d31a794e5930708cd4622431c8e04

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 3 sections

LocaleEmulator.dll

3434299884d61fff4ab71460ecc03c0a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 3 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 6/64

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

github.com/xupefei/Locale-Emulator/releases/download/v2.5.0.1/Locale.Emulator.2.5.0.1.zip

140.82.121.4

302 Found

0 B

URL User Request GET HTTP/2
github.com/xupefei/Locale-Emulator/releases/download/v2.5.0.1/Locale.Emulator.2.5.0.1.zip
IP
140.82.121.4:443
ASN
#36459 GITHUB

Certificate
IssuerSectigo Limited
Subjectgithub.com
FingerprintE7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0
ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xupefei/Locale-Emulator/releases/download/v2.5.0.1/Locale.Emulator.2.5.0.1.zip HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: GitHub.com
date: Thu, 28 Mar 2024 05:57:54 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/8835057/739b1f0b-17b0-43d9-88bc-8f30b01d1016?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240328%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240328T055754Z&X-Amz-Expires=300&X-Amz-Signature=b305672c6671884429c0768af8756e62d05adfba10c409705330ec07a3c07773&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=8835057&response-content-disposition=attachment%3B%20filename%3DLocale.Emulator.2.5.0.1.zip&response-content-type=application%2Foctet-stream
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: 5FE8:38A2B7:4955453:4A36CB8:660506E2
X-Firefox-Spdy: h2

objects.githubusercontent.com/github-production-release-asset-2e65be/8835057/739b1f0b-17b0-43d9-88bc-8f30b01d1016?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240328%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240328T055754Z&X-Amz-Expires=300&X-Amz-Signature=b305672c6671884429c0768af8756e62d05adfba10c409705330ec07a3c07773&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=8835057&response-content-disposition=attachment%3B%20filename%3DLocale.Emulator.2.5.0.1.zip&response-content-type=application%2Foctet-stream

185.199.109.133

200 OK

154 kB

URL User Request GET HTTP/2
objects.githubusercontent.com/github-production-release-asset-2e65be/8835057/739b1f0b-17b0-43d9-88bc-8f30b01d1016?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240328%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240328T055754Z&X-Amz-Expires=300&X-Amz-Signature=b305672c6671884429c0768af8756e62d05adfba10c409705330ec07a3c07773&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=8835057&response-content-disposition=attachment%3B%20filename%3DLocale.Emulator.2.5.0.1.zip&response-content-type=application%2Foctet-stream
IP
185.199.109.133:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
154 kB (154135 bytes)
Hash
6e1a6cb34e33966befef0ae119c532b8
755a554e3f15104707d979a56c8e7ed46e469c0d
808ff584426d52cc775ad6406da00622f454be95bd4c8fbca42eef4b7235ad5c

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 6/64

HTTP Headers

GET /github-production-release-asset-2e65be/8835057/739b1f0b-17b0-43d9-88bc-8f30b01d1016?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240328%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240328T055754Z&X-Amz-Expires=300&X-Amz-Signature=b305672c6671884429c0768af8756e62d05adfba10c409705330ec07a3c07773&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=8835057&response-content-disposition=attachment%3B%20filename%3DLocale.Emulator.2.5.0.1.zip&response-content-type=application%2Foctet-stream HTTP/1.1
Host: objects.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-md5: bhpss04zlmvv7wrhGcUyuA==
last-modified: Wed, 08 Dec 2021 07:50:51 GMT
etag: "0x8D9BA1F74EDC9FF"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f3b533f1-401e-0049-72f8-61a3be000000
x-ms-version: 2020-10-02
x-ms-creation-time: Wed, 08 Dec 2021 07:50:51 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
content-disposition: attachment; filename=Locale.Emulator.2.5.0.1.zip
x-ms-server-encrypted: true
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 28 Mar 2024 05:57:54 GMT
age: 3209
x-served-by: cache-iad-kiad7000050-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 6467, 1
x-timer: S1711605474.463071,VS0,VE391
content-length: 154135
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (51)

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers