Report Overview
Visitedpublic
2024-12-13 14:09:47
Tags
Submit Tags
URL
update.bitsum.com/files/auto/64/beta/pl4sfx.exe
Finishing URL
about:privatebrowsing
IP / ASN
104.26.5.102
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
update.bitsum.com 1 alert(s) on this Host | 336582 | 2002-08-03 | 2017-01-21 | 2024-12-12 | 501 B | 3.0 MB | 104.26.4.102 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-12-13 | medium | update.bitsum.com/files/auto/64/beta/pl4sfx.exe | Detects an SFX archive with automatic script execution |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
update.bitsum.com/files/auto/64/beta/pl4sfx.exe
IP / ASN
104.26.4.102
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 6 sections
Size3.0 MB (3017840 bytes)
MD577646b83086bff14f2775e62b9f6c62b
SHA151438117269650a84dd06d6d488208d1f71fcf03
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detects an SFX archive with automatic script execution |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|