Report - retroachievements.org/bin/RALibretro-x64.zip

Report Overview

Submitted URL
retroachievements.org/bin/RALibretro-x64.zip
IP
104.26.2.251
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 06:07:55
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
retroachievements.org	337883	2012-10-03	2015-02-25	2024-03-12	498 B	2.0 MB	104.26.2.251

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
retroachievements.org/bin/RALibretro-x64.zip
IP
104.26.2.251
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
2.0 MB (2033221 bytes)
Hash
962bf548fc1e68b35601f0229829d843
52878561948d4b9f68a6984b4a11be98c0b56daa
be5339c5cc7ecee627ccb825ed71d89002a7e16607e665dd4bf9eba590862b0b

Archive (14)

Filename

Md5

File type

cores.json

de2aa98c7d1b4c9497191fd568481fbf

JSON text data

libstdc++-6.dll

9c299d62c7561c39cfbef0426890e1b8

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 11 sections

libwinpthread-1.dll

e4802911f61b1cdf81f261432a715274

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

acherror.wav

aec7108a730a0e6d15681a56707f7343

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 22050 Hz

info.wav

3728e8eec8bd19cba3b496336ba3ad3f

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 22050 Hz

lb.wav

1ce2ac7c70ab5350e286a79a5531095d

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 22050 Hz

lbcancel.wav

f44e02650d3ce4644f854ecda4de940c

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 22050 Hz

bfe1cb275a35140464906adc5d566a7f

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz

overlayBG.png

d2e0c17f004d8baf1bb51219b5312f76

PNG image data, 1024 x 1024, 8-bit/color RGB, non-interlaced

rareunlock.wav

da07cbd2016c0168dfad3babd65937af

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 16000 Hz

theme.json

19dda36bbf257039d1e2bb77f0d9accd

JSON text data

unlock.wav

4d035ee86f836bfed422a975cf65c9cc

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz

RALibretro.exe

9522f5f8595f2ba6838d2005caba7b03

PE32+ executable (GUI) x86-64, for MS Windows, 7 sections

SDL2.dll

6f0469c91c605754eb64163b5f9014ad

PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows, 12 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/64

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

retroachievements.org/bin/RALibretro-x64.zip

104.26.2.251

200 OK

2.0 MB

URL User Request GET HTTP/2
retroachievements.org/bin/RALibretro-x64.zip
IP
104.26.2.251:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectretroachievements.org
FingerprintFC:D5:37:F4:E7:B4:B8:BF:72:A9:E9:23:5A:D8:81:3D:E5:DF:EA:46
ValiditySat, 30 Mar 2024 18:03:30 GMT - Fri, 28 Jun 2024 18:03:29 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
2.0 MB (2033221 bytes)
Hash
962bf548fc1e68b35601f0229829d843
52878561948d4b9f68a6984b4a11be98c0b56daa
be5339c5cc7ecee627ccb825ed71d89002a7e16607e665dd4bf9eba590862b0b

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/64

HTTP Headers

GET /bin/RALibretro-x64.zip HTTP/1.1
Host: retroachievements.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 06:07:28 GMT
content-type: application/zip
content-length: 2033221
last-modified: Sat, 27 Jan 2024 19:03:31 GMT
etag: "65b55383-1f0645"
expires: Thu, 24 Apr 2025 06:07:28 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6e605Y54E%2BNieu%2FyZEiQwYRDZx9Kwp1l1Iw3Cj7ZFfZbOQ6l7TeuCucgQgHev0YgGJRii5tBgZSluZ8SEGeX0Gx9U5%2BQhiPVmd0wFDRyEFh2iZR4Diq%2BWfsszeLoYKUK8Y1D2V6o8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793e9cc5a92b4eb-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (14)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers