Report - s3.amazonaws.com/awesomeminer-download/srbminer-cn-v1-9-1.zip

Report Overview

Visited public
2023-11-01 06:08:12
Tags
URL
s3.amazonaws.com/awesomeminer-download/srbminer-cn-v1-9-1.zip
Finishing URL
about:privatebrowsing
IP / ASN
54.231.137.232
#16509 AMAZON-02
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
s3.amazonaws.com	unknown	2005-08-18	2020-05-13 22:53:44	2023-09-21 00:21:58	517 B	7.6 MB	52.216.29.110
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12 22:43:53	2023-10-31 12:25:03	340 B	942 B	143.204.53.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
s3.amazonaws.com/awesomeminer-download/srbminer-cn-v1-9-1.zip
IP
52.216.29.110
ASN
#16509 AMAZON-02

File type
Zip archive data, at least v2.0 to extract, compression method=store\012- data
Size
7.6 MB (7593074 bytes)
Hash
3f7902ed2f8671ec814187e21bd0c20e
e493327337554330772218fc1c36b2aa4194996e
f4e5b7e005897d9a5646f5d8ff6743917deaa360050a44c3dbdfc99b403a6de1

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 19/58

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

ocsp.r2m01.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d813dfc0a799a7151bfc3b6c1e81e4d1
7b457ec030b131d52635fecf5866156bde4abc26
9ab7148c1f93b2a32c1aa2cf8220ecb0ee740e2f21b0dc0b933ed54a60f92351

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 01 Nov 2023 06:07:54 GMT
Last-Modified: Wed, 01 Nov 2023 05:12:10 GMT
Server: ECAcc (ska/F6E1)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9nGJ_PIK25TAkx_CYuuSUXadDTJFGzXBgKKgaHlvDlyylHRfrWDuRA==
Age: 3344

s3.amazonaws.com/awesomeminer-download/srbminer-cn-v1-9-1.zip

52.216.29.110

200 OK

7.6 MB

URL User Request GET HTTP/1.1
s3.amazonaws.com/awesomeminer-download/srbminer-cn-v1-9-1.zip
IP
52.216.29.110:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjects3.amazonaws.com
FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6
ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store\012- data
Size
7.6 MB (7593074 bytes)
Hash
3f7902ed2f8671ec814187e21bd0c20e
e493327337554330772218fc1c36b2aa4194996e
f4e5b7e005897d9a5646f5d8ff6743917deaa360050a44c3dbdfc99b403a6de1

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 19/58

HTTP Headers

GET /awesomeminer-download/srbminer-cn-v1-9-1.zip HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: u6GPnrD7zQVHCTFrh3VKwTn0Cxnf621V4ovMNOT1WS8GncIwn6vJE0xwSlDnAd3FQKMxcFiNw2o=
x-amz-request-id: FPSJXRJKR7HCF9G4
Date: Wed, 01 Nov 2023 06:07:55 GMT
Last-Modified: Sat, 13 Jul 2019 17:02:00 GMT
ETag: "3f7902ed2f8671ec814187e21bd0c20e"
Accept-Ranges: bytes
Content-Type: application/x-zip-compressed
Server: AmazonS3
Content-Length: 7593074

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (0)

HTTP Transactions (2)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers