Report Overview
Visitedpublic
2024-11-29 19:36:43
Tags
Submit Tags
URL
cdn.discordapp.com/attachments/1292607015838810213/1301222938728726560/shellbag_analyzer_cleaner.exe?ex=674b3ecc&is=6749ed4c&hm=c900892649281348f33aa9f610bc08358bb92a489d820f59a113a8fdf7945667&
Finishing URL
about:privatebrowsing
IP / ASN
162.159.133.233
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
cdn.discordapp.com 2 alert(s) on this Host | 2474 | 2015-02-26 | 2015-08-24 | 2024-11-27 | 647 B | 1.7 MB | 162.159.135.233 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-11-29 | medium | cdn.discordapp.com/attachments/1292607015838810213/1301222938728726560/shellbag_analyzer_cleaner.exe?ex=674b3ecc&is=6749ed4c&hm=c900892649281348f33aa9f610bc08358bb92a489d820f59a113a8fdf7945667& | Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Mnemonic Secure DNS
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
cdn.discordapp.com/attachments/1292607015838810213/1301222938728726560/shellbag_analyzer_cleaner.exe?ex=674b3ecc&is=6749ed4c&hm=c900892649281348f33aa9f610bc08358bb92a489d820f59a113a8fdf7945667&
IP / ASN
162.159.135.233
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 8 sections
Size1.7 MB (1690992 bytes)
MD5463058236a0d84f8f8982d946eed0e07
SHA1800ab71ed3b3bf4fb67fc9e1628e59d0aab8b124
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen |
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|