Report Overview

  1. Submitted URL

    cdn-usw003.manage.trellix.com/Software/Current/EPOAGENT3000/Install/0409/FrameworkInstall.zip

  2. IP

    54.240.174.93

    ASN

    #16509 AMAZON-02

  3. Submitted

    2024-10-15 22:26:45

    Access

    public

  4. Website Title

    about:privatebrowsing

  5. Final URL

    about:privatebrowsing

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    1

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
cdn-usw003.manage.trellix.comunknown1996-09-042022-12-09T06:23:57Z2024-01-15T16:00:35Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Mnemonic Secure DNS

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    cdn-usw003.manage.trellix.com/Software/Current/EPOAGENT3000/Install/0409/FrameworkInstall.zip

  2. IP

    54.240.174.93

  3. ASN

    #16509 AMAZON-02

  1. File type

    Zip archive data, at least v2.0 to extract, compression method=deflate

    Size

    20 MB (20139834 bytes)

  2. Hash

    891a0f51392a725e023a31ef18837090

    afaf0c96d1ab0a8c6a8ea194e424e8dfb8908db8

  1. Archive (10)

    2. FilenameMd5File type
    cleanup.exe
    d453bd1be1a248d6aab9faefa6984e3e
    		PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections
    FrmInst.exe
    0f2a9ceb602ab5afaf0c4e89be0a3f02
    		PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, 3 sections
    MFEagent.msi
    c749451319627d6df621130180a051a2
    		Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Trellix Agent 5.0 Installer, Author: Trellix, Keywords: Installer,MSI,Database, Comments: This installer database contains the logic and data required to install Trellix Agent 5.0., Create Time/Date: Fri Jul 5 05:48:36 2024, Name of Creating Application: InstallShield 2012 Spring - Professional Edition 19, Security: 1, Template: Intel;0,2052,1028,1029,1030,1043,1033,1035,1036,1031,1040,1041,1042,1044,1045,1046,2070,1049,1034,1053,1055, Last Saved By: Intel;0, Revision Number: {FA8BC624-F7A3-4CF0-A15A-1885DD214B5E}5.08.2001;{FA8BC624-F7A3-4CF0-A15A-1885DD214B5E}5.08.2001;{7989F42C-2125-406F-8BAD-AB8CDD09675C}, Number of Pages: 200, Number of Characters: 1
    MFEagent_x64.msi
    81df877ad0ba5a26324522c4210a188b
    		Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Trellix Agent 5.0 Installer, Author: Trellix, Keywords: Installer,MSI,Database, Comments: This installer database contains the logic and data required to install Trellix Agent 5.0., Create Time/Date: Fri Jul 5 05:49:02 2024, Name of Creating Application: InstallShield 2012 Spring - Professional Edition 19, Security: 1, Template: x64;0,2052,1028,1029,1030,1043,1033,1035,1036,1031,1040,1041,1042,1044,1045,1046,2070,1049,1034,1053,1055, Last Saved By: x64;0, Revision Number: {FA8BC624-F7A3-4CF0-A15A-1885DD214B5E}5.08.2001;{FA8BC624-F7A3-4CF0-A15A-1885DD214B5E}5.08.2001;{7989F42C-2125-406F-8BAD-AB8CDD09675C}, Number of Pages: 200, Number of Characters: 1
    Shared.cab
    fe7811d84da81e41c4bf5d8cb9f97b7f
    		Microsoft Cabinet archive data, many, 7061140 bytes, 295 files, at 0x5c last modified Sun, Jul 03 2024 22:13:02 +A "componentpointproduct.dll" last modified Sun, Nov 19 2021 05:54:40 +A "msvcp140.dll", 7 cffolders, ID 1111, number 1, 107 datablocks, 0x1503 compression
    Shared64.cab
    074b8cc1a5923f75b9ac33660091cf5f
    		Microsoft Cabinet archive data, many, 3608204 bytes, 63 files, at 0x44 last modified Sun, Nov 19 2021 05:54:40 +A "msvcp140.dll1" last modified Sun, Dec 02 2020 05:30:48 +A "api_ms_win_core_file_l1_2_0.", 4 cffolders, ID 1111, number 1, 104 datablocks, 0x1503 compression
    Svc_x64.cab
    6692f128c7e88cfc544fec03c1d58d1b
    		Microsoft Cabinet archive data, many, 870416 bytes, 19 files, at 0x2c last modified Sun, Jul 03 2024 22:15:20 +A "ma_aac_service.dll" last modified Sun, Jul 03 2024 22:15:22 +A "ma_ahclient.dll1", ID 1111, number 1, 94 datablocks, 0x1503 compression
    Svc_x86.cab
    bcee6cbff199530fa89a044a8ed8392c
    		Microsoft Cabinet archive data, many, 781232 bytes, 20 files, at 0x2c last modified Sun, Jul 03 2024 22:07:58 +A "cmdagent.exe" last modified Sun, Jul 03 2024 22:13:10 +A "ma_aac_service.dll1", ID 1111, number 1, 93 datablocks, 0x1503 compression
    DXL.zip
    684d958aad8067175495ed8b75a70668
    		Zip archive data, at least v2.0 to extract, compression method=deflate
    contrib.ini
    3d0b1d1a9042955616039b6b0a8eeab8
    		ASCII text, with CRLF line terminators

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize
cdn-usw003.manage.trellix.com/Software/Current/EPOAGENT3000/Install/0409/FrameworkInstall.zip
54.240.174.93200 OK20 MB