Report Overview

  1. Visited public
    2023-12-10 09:26:09
    Tags
  2. URL

    pkg-store.dl.mail.ru/packages/shop/0_2015873distrib6/CubeDecider.exe

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    188.93.63.73

    #47764 Mail.Ru LLC

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
pkg-store.dl.mail.ruunknown1997-09-272020-05-26 22:50:122023-12-09 05:10:08
aus5.mozilla.org25481998-01-242015-10-27 08:06:242023-12-09 05:09:35
ciscobinary.openh264.org408222013-10-192014-10-07 07:43:562023-12-09 05:09:36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules
SeverityIndicatorAlert
mediumpkg-store.dl.mail.ru/packages/shop/0_2015873distrib6/CubeDecider.exefiles - file ~tmp01925d3f.exe

OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    pkg-store.dl.mail.ru/packages/shop/0_2015873distrib6/CubeDecider.exe

  2. IP

    188.93.63.73

  3. ASN

    #47764 Mail.Ru LLC

  1. File type

    PE32+ executable (GUI) x86-64, for MS Windows - data

    Size

    430 kB (430080 bytes)

  2. Hash

    12215aa8a2c743a270dd8f0ca79bac72

    0780c478a3bd8c3b1f874d99b08db23e78918550

    Detections

    AnalyzerVerdictAlert
    YARAhub by abuse.chmalware
    files - file ~tmp01925d3f.exe
    VirusTotalsuspicious
    VirusTotal - Scan result 1/72

  1. URL

    ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip

  2. IP

    2.22.61.56

  3. ASN

    #20940 Akamai International B.V.

  1. File type

    Zip archive data, at least v2.0 to extract, compression method=deflate - data

    Size

    512 kB (511815 bytes)

  2. Hash

    152eda253e242e18443ef3282495bc7c

    ff0fa85565f21ec4931baad4573b4c0bd08c4019

  1. Archive (2)

    2. FilenameMd5File type
    gmpopenh264.info
    3d33cdc0b3d281e67dd52e14435dd04f
    		ASCII text
    libgmpopenh264.so
    b2c1253e8a09cfe03b3d7f37de12dff7
    		ELF 64-bit LSB shared object, x86-64, version 1 (SYSV)

JavaScript (0)

HTTP Transactions (3)

URLIPResponseSize
pkg-store.dl.mail.ru/packages/shop/0_2015873distrib6/CubeDecider.exe
188.93.63.73200 OK430 kB
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
35.244.181.201 444 B
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
2.22.61.56 512 kB