Report Overview
Submitted URL
www.cryptohub.nl/zines/vxheavens/dl/exp/st2ab.zip
IP
37.218.247.209
ASN
#47172 Greenhost BV
Submitted
2024-05-02 16:32:54
Access
public
Website Title
Warning: Potential Security Risk Ahead
Final URL
about:certerror?e=nssBadCert&u=https%3A//www.cryptohub.nl/zines/vxheavens/dl/exp/st2ab.zip&c=UTF-8&d=%20
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
www.cryptohub.nl | unknown | 2011-01-31 | 2018-06-24 | 2020-03-22 | 922 B | 13 kB | 37.218.247.209 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
www.cryptohub.nl/zines/vxheavens/dl/exp/st2ab.zip
IP
37.218.247.209
ASN
#47172 Greenhost BV
File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
12 kB (12139 bytes)
Hash
8e2a79e4edee6f5df94bddd03bebe280
5f59a23c10eb85f91f67ae0bac1bd3fab90da46b
Archive (10)
Filename | Md5 | File type |
---|---|---|
IN_FILE.PRG | f61ad58a9626a85117830b3f4cc4f6fc | Atari ST M68K contiguous executable (txt=5206, dat=0, bss=0, sym=0) |
victim1.st | fa7f94dd036c60fcb0bf6653ff32513a | DOS floppy 720k, IBM |
~.PRG | c888ddd5c5bd89188fecd830d7b12d62 | Atari ST M68K contiguous executable (txt=1952, dat=0, bss=0, sym=0) |
readme.txt | eb837a309b4b858bcdbfb740060a2efe | ASCII text, with CRLF line terminators |
A2B.S | 8dccf24e0184b1f16c2061f3c35b68a7 | ASCII text, with CRLF line terminators |
a2b_drop.S | 619ff40e6f8bfe618209012d974ffad3 | ASCII text, with CRLF line terminators |
boot.inc | 5c9224d5b82064380d83f00152faf10d | ASCII text, with CRLF line terminators |
fileio.inc | 86fda7e4430264914cd6563e38fb7862 | ASCII text, with CRLF line terminators |
in_file.S | 3d306e2a090cd2985c094eb76f13ea39 | ASCII text, with no line terminators |
mem.inc | 0f013b420ffa2c0c7b45905138b05124 | ASCII text, with CRLF line terminators |
Detections
Analyzer | Verdict | Alert |
---|---|---|
VirusTotal | suspicious |
JavaScript (1)
URL | Size | First Seen | Last Seen | |
---|---|---|---|---|
about:certerror?e=nssBadCert&u=https%3A//www.cryptohub.nl/zines/vxheavens/dl/exp/st2ab.zip&c=UTF-8&d=%20 | 0 B | 2023-03-07 | 2024-05-17 | |
Pretty
Loading... | ||||
HTTP Transactions (2)
URL | IP | Response | Size | |||||||
---|---|---|---|---|---|---|---|---|---|---|
www.cryptohub.nl/zines/vxheavens/dl/exp/st2ab.zip | 37.218.247.209 | 265 B | ||||||||
HTTP Headers
| ||||||||||
www.cryptohub.nl/zines/vxheavens/dl/exp/st2ab.zip | 37.218.247.209 | 12 kB | ||||||||
Detections
HTTP Headers
| ||||||||||