Report - github.com/Triky313/AlbionOnline-StatisticsAnalysis/releases/download/v7.3.0/StatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip

Report Overview

Submitted URL
github.com/Triky313/AlbionOnline-StatisticsAnalysis/releases/download/v7.3.0/StatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip
IP
140.82.121.4
ASN
#36459 GITHUB
Submitted
2024-04-24 18:33:59
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
github.com	1423	2007-10-09	2016-07-13	2024-03-24	577 B	4.0 kB	140.82.121.4
objects.githubusercontent.com	134060	2014-02-06	2021-11-01	2024-04-24	1.0 kB	16 MB	185.199.108.133
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-23	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
objects.githubusercontent.com/github-production-release-asset-2e65be/197132100/afde52ba-08a7-42de-9604-a2da9ae1dfeb?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T183325Z&X-Amz-Expires=300&X-Amz-Signature=58c2e7bc83995f8ce05bdca83d621c183f9c079cb947252f99a3aff994b16deb&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=197132100&response-content-disposition=attachment%3B%20filename%3DStatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip&response-content-type=application%2Foctet-stream
IP
185.199.108.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
16 MB (15804214 bytes)
Hash
c49c462269075c91245b53500e12f9ad
36e84cce2094711be4a2abd26a1d4c90cd532dcf
604c279a881772a3153be61ab144f31c46d60446f8ad9f9db321916a6b4da92e

Archive (27)

Filename

Md5

File type

de-DE.xml

1f6083708c5eb9a304d34299011b73c1

XML 1.0 document, Unicode text, UTF-8 text, with very long lines (383), with CRLF line terminators

en-US.xml

ed080345eab438aab1e237674019a3d9

XML 1.0 document, ASCII text, with very long lines (371), with CRLF line terminators

es-ES.xml

05838d066d850e63b4dd4fd467fdbeb1

XML 1.0 document, Unicode text, UTF-8 text, with very long lines (394), with CRLF line terminators

fr-FR.xml

5b2d2bcc4b8695448475124bd4da02b5

XML 1.0 document, Unicode text, UTF-8 text, with very long lines (438), with CRLF line terminators

ja-JP.xml

5708523d50c121ee0ccb5f76e1ee6761

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

ko-KR.xml

bde4251e8f3d8a7a518e4fcc570a76f4

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

pl-PL.xml

8f7376fb610b75164fd527937c5b91f3

XML 1.0 document, Unicode text, UTF-8 text, with very long lines (369), with CRLF line terminators

pt-BR.xml

3b95ece843ea6aaafddb3a2851c397b1

XML 1.0 document, Unicode text, UTF-8 text, with very long lines (390), with CRLF line terminators

ru-RU.xml

067b473c2260b6ea6e74e87e19cd2882

XML 1.0 document, Unicode text, UTF-8 text, with very long lines (354), with CRLF line terminators

tr-TR.xml

e97aac9a7f3ced8840cc5a3aac38f02b

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

zh-CN.xml

ddc8a4915e6f083b5ad0c17da67accf7

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

zh-TW.xml

126e864780d91224f7d14a57e596405f

XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators

libHarfBuzzSharp.dll

eaa6c0d42c8967d86a39808806c49869

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

libSkiaSharp.dll

0c8068859d2a240b9faf5c51544fe666

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 10 sections

WebView2Loader.dll

aee20ef43cf692c9080c5973b1b79855

PE32+ executable (DLL) (console) x86-64, for MS Windows, 11 sections

sni.dll

7f1799b65b98450a19e4d049e9d3e70d

PE32+ executable (DLL) (console) x86-64, for MS Windows, 6 sections

alert1.wav

30bd1ce395cf6bcb0fe5bc7fbf7478d4

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz

alert2.wav

af1225a6d822b72f66e2a4249a505762

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz

alert3.wav

e5cda270d6093b35dd017df6a13453fe

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz

alert4.wav

af5e1610b75a7bc3719442d3ed77569b

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz

dungeon_closed.wav

5becaa75133e5885556cffc71fff2907

RIFF (little-endian) data, WAVE audio

StatisticAnalysisTool.Extractor.pdb

439ffa588eb7b1d0a2597a564768eb57

Microsoft Roslyn C# debugging symbols version 1.0

StatisticsAnalysisTool.dll.config

fc8bcfc0938e5f0633cccb1ee1d946b4

XML 1.0 document, ASCII text, with CRLF line terminators

StatisticsAnalysisTool.exe

112a2d5e27284e1b5a2d1194137bf87f

PE32+ executable (GUI) x86-64, for MS Windows, 7 sections

StatisticsAnalysisTool.Network.pdb

f4c7a5b92506e868d3ca302e12e90569

Microsoft Roslyn C# debugging symbols version 1.0

StatisticsAnalysisTool.pdb

042c58494aa3220663b5b2124841331f

Microsoft Roslyn C# debugging symbols version 1.0

WebView2Loader.dll

aee20ef43cf692c9080c5973b1b79855

PE32+ executable (DLL) (console) x86-64, for MS Windows, 11 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe

JavaScript (0)

HTTP Transactions (3)

	URL	IP	Response	Size
	github.com/Triky313/AlbionOnline-StatisticsAnalysis/releases/download/v7.3.0/StatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip	140.82.121.4	302 Found	0 B
URL User Request GET HTTP/2 github.com/Triky313/AlbionOnline-StatisticsAnalysis/releases/download/v7.3.0/StatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip IP 140.82.121.4:443 ASN #36459 GITHUB Certificate IssuerSectigo Limited Subjectgithub.com FingerprintE7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0 ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /Triky313/AlbionOnline-StatisticsAnalysis/releases/download/v7.3.0/StatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip HTTP/1.1 Host: github.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found server: GitHub.com date: Wed, 24 Apr 2024 18:33:25 GMT content-type: text/html; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/197132100/afde52ba-08a7-42de-9604-a2da9ae1dfeb?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T183325Z&X-Amz-Expires=300&X-Amz-Signature=58c2e7bc83995f8ce05bdca83d621c183f9c079cb947252f99a3aff994b16deb&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=197132100&response-content-disposition=attachment%3B%20filename%3DStatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip&response-content-type=application%2Foctet-stream cache-control: no-cache strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: no-referrer-when-downgrade content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/ content-length: 0 x-github-request-id: F8C2:23A4B8:118DDF1:11BA551:66295075 X-Firefox-Spdy: h2

	objects.githubusercontent.com/github-production-release-asset-2e65be/197132100/afde52ba-08a7-42de-9604-a2da9ae1dfeb?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T183325Z&X-Amz-Expires=300&X-Amz-Signature=58c2e7bc83995f8ce05bdca83d621c183f9c079cb947252f99a3aff994b16deb&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=197132100&response-content-disposition=attachment%3B%20filename%3DStatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip&response-content-type=application%2Foctet-stream	185.199.108.133	200 OK	16 MB
URL User Request GET HTTP/2 objects.githubusercontent.com/github-production-release-asset-2e65be/197132100/afde52ba-08a7-42de-9604-a2da9ae1dfeb?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T183325Z&X-Amz-Expires=300&X-Amz-Signature=58c2e7bc83995f8ce05bdca83d621c183f9c079cb947252f99a3aff994b16deb&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=197132100&response-content-disposition=attachment%3B%20filename%3DStatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip&response-content-type=application%2Foctet-stream IP 185.199.108.133:443 ASN #54113 FASTLY Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 16 MB (15804214 bytes) Hash c49c462269075c91245b53500e12f9ad 36e84cce2094711be4a2abd26a1d4c90cd532dcf 604c279a881772a3153be61ab144f31c46d60446f8ad9f9db321916a6b4da92e HTTP Headers GET /github-production-release-asset-2e65be/197132100/afde52ba-08a7-42de-9604-a2da9ae1dfeb?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240424%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240424T183325Z&X-Amz-Expires=300&X-Amz-Signature=58c2e7bc83995f8ce05bdca83d621c183f9c079cb947252f99a3aff994b16deb&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=197132100&response-content-disposition=attachment%3B%20filename%3DStatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip&response-content-type=application%2Foctet-stream HTTP/1.1 Host: objects.githubusercontent.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/octet-stream content-md5: xJxGImkHXJEkW1NQDhL5rQ== last-modified: Tue, 16 Apr 2024 14:17:26 GMT etag: "0x8DC5E1FF18229CE" server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 9a4a2e14-601e-003c-3309-90c892000000 x-ms-version: 2020-10-02 x-ms-creation-time: Tue, 16 Apr 2024 14:17:26 GMT x-ms-lease-status: unlocked x-ms-lease-state: available x-ms-blob-type: BlockBlob content-disposition: attachment; filename=StatisticsAnalysis-AlbionOnline-v7.3.0-x64.zip x-ms-server-encrypted: true via: 1.1 varnish, 1.1 varnish accept-ranges: bytes age: 18 date: Wed, 24 Apr 2024 18:33:26 GMT x-served-by: cache-iad-kcgs7200073-IAD, cache-hel1410022-HEL x-cache: HIT, HIT x-cache-hits: 1939, 0 x-timer: S1713983606.150937,VS0,VE493 content-length: 15804214 X-Firefox-Spdy: h2

	aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml	35.244.181.201		444 B
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP 35.244.181.201:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type XML 1.0 document, ASCII text, with very long lines (332) Size 444 B (444 bytes) Hash 3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463 HTTP Headers `GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1 Host: aus5.mozilla.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Cache-Control: no-cache Pragma: no-cache Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx rule-id: unknown rule-data-version: unknown content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=Vrpasn1Zj5PCWDkHsiqKpyTYtH_u2c-pkPibXIzG0ugJU4UH45QWWACzVHaBtf645YbDrE5sjuWdFA32wbwgXYx2TUX9k4lEjELqGYPQjCf7oijxJ8j4YYr68nRjzTCY strict-transport-security: max-age=31536000; x-content-type-options: nosniff content-security-policy: default-src 'none'; frame-ancestors 'none' x-proxy-cache-status: EXPIRED content-encoding: gzip via: 1.1 google content-length: 444 date: Wed, 24 Apr 2024 18:32:44 GMT age: 60 content-type: text/xml; charset=utf-8 vary: Accept-Encoding cache-control: public,max-age=90 alt-svc: clear X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (27)

Detections

JavaScript (0)

HTTP Transactions (3)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers