Report - www.9pkst.com/exoss/serverlist/shentudlq/shentudlq.exe

Report Overview

Visitedpublic

2023-08-16 16:35:12

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
www.9pkst.com	unknown	2013-05-06	2016-02-20 22:49:02	2023-08-16 17:33:07	510 B	8.5 MB	218.12.76.171

No alerts detected

Scan Date	Severity	Indicator	Alert
2023-08-16	medium	www.9pkst.com/exoss/serverlist/shentudlq/shentudlq.exe	meth_get_eip

No alerts detected

No alerts detected

No alerts detected

No alerts detected

No alerts detected

URL

www.9pkst.com/exoss/serverlist/shentudlq/shentudlq.exe

IP / ASN

218.12.76.171

#4837 CHINA UNICOM China169 Backbone

File Overview

File TypePE32 executable (GUI) Intel 80386, for MS Windows\012- data

Size8.5 MB (8527504 bytes)

MD5fb56b509a7aafba1c939c98746286863

SHA1f42f9d2308d3cad9608f8e6a4c35f81ad7a2ed05

SHA2569b4d94a0274d440e76ac9fb0482d47213267ccc81b6feabc3287c125e61b221a

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

	URL	IP	Response	Size