Report - totalsolucao.com/wp-content/tebu.zip?899d81b9670e2973e854

Report Overview

Visitedpublic

2025-05-12 20:03:25

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
totalsolucao.com	unknown	2014-05-30	2025-05-12	2025-05-12	525 B	3.3 MB	195.179.236.158

Related reports

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

Scan Date	Severity	Indicator	Alert
2025-05-12	medium	totalsolucao.com	NetSupportManager RAT

File detected

URL

totalsolucao.com/wp-content/tebu.zip?899d81b9670e2973e854

IP / ASN

195.179.236.158

#47583 Hostinger International Limited

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=deflate

Size3.3 MB (3276293 bytes)

MD598ace448199a861e0ed81f061eb35d0c

SHA1a98fbd3b59433db670571d3e0d058756498481d0

SHA25612841c0cfb52f61255610d8008f16f4ab9ff5701de386735298193fe938af11e

Archive (24)

Modified	Filename	Size	MD5	File type
2025-05-02 19:56	HTCTL32.DLL	328 kB	2d3b207c8a48148296156e5725426c7f	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2025-05-02 19:56	NSM.LIC	257 B	390c964070626a64888d385c514f568e	ASCII text, with CRLF line terminators
2025-05-02 19:56	NSM.ini	6.5 kB	88b1dab8f4fd1ae879685995c90bd902	Generic INItialization configuration [Features]
2025-05-02 19:56	PCICHEK.DLL	19 kB	a0b9388c5f18e27266a31f8c5765b263	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2025-05-02 19:56	PCICL32.DLL	3.7 MB	00587238d16012152c2e951a087f2cc9	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 7 sections
2025-05-02 19:56	TCCTL32.DLL	397 kB	eab603d12705752e3d268d86dff74ed4	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2025-05-02 19:56	client32.exe	120 kB	ee75b57b9300aab96530503bfae8a2f2	PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections
2025-05-12 16:13	client32.ini	723 B	f15b35f362cca01302d44a90e8bc559c	ASCII text, with CRLF line terminators
2025-05-02 19:56	msvcr100.dll	774 kB	0e37fbfa79d349d672456923ec5fbbe3	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 4 sections
2025-05-02 19:56	nskbfltr.inf	328 B	26e28c01461f7e65c402bdf09923d435	Windows setup INFormation
2025-05-02 19:56	pcicapi.dll	33 kB	dcde2248d19c778a41aa165866dd52d0	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2025-05-02 19:56	remcmdstub.exe	77 kB	1768c9971cea4cc10c7dd45a5f8f022a	PE32 executable (console) Intel 80386, for MS Windows, 5 sections
2025-04-23 20:10	InitialDUState V24_4.dat	366 kB	bc8a46d2aa23bad9cba0ffa52ea8fa4f	JSON text data
2017-05-05 08:41	Mss32.dll	354 kB	18a082ad2c18df2556feac3e1055423f	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
2024-10-11 23:01	800_arrowright.tga	1.6 kB	f7035af9a5f4f627998433e6a063e76d	Targa image data - RGBA 16 x 16 x 32 - 8-bit alpha - author " " - comment " " - job " " - Paint Shop Pro 12.80
2017-05-05 08:41	msvcp120.dll	445 kB	101fe64acfe08e1137cafc5a91166b3c	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2025-04-23 20:10	InitialDUState V24_4.dat	366 kB	bc8a46d2aa23bad9cba0ffa52ea8fa4f	JSON text data
2017-05-05 08:41	Mss32.dll	354 kB	18a082ad2c18df2556feac3e1055423f	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
2024-10-11 23:01	800_arrowright.tga	1.6 kB	f7035af9a5f4f627998433e6a063e76d	Targa image data - RGBA 16 x 16 x 32 - 8-bit alpha - author " " - comment " " - job " " - Paint Shop Pro 12.80
2017-05-05 08:41	msvcp120.dll	445 kB	101fe64acfe08e1137cafc5a91166b3c	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections
2025-04-23 20:10	InitialDUState V24_4.dat	366 kB	bc8a46d2aa23bad9cba0ffa52ea8fa4f	JSON text data
2017-05-05 08:41	Mss32.dll	354 kB	18a082ad2c18df2556feac3e1055423f	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 6 sections
2024-10-11 23:01	800_arrowright.tga	1.6 kB	f7035af9a5f4f627998433e6a063e76d	Targa image data - RGBA 16 x 16 x 32 - 8-bit alpha - author " " - comment " " - job " " - Paint Shop Pro 12.80
2017-05-05 08:41	msvcp120.dll	445 kB	101fe64acfe08e1137cafc5a91166b3c	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

JavaScript (0)

HTTP Transactions (1)

	URL	IP	Response	Size