Report Overview

  1. Visited public
    2024-10-31 20:31:55
    Tags
  2. URL

    files.getgrass.io/file/grass-extension-upgrades/extension-latest/grass-community-node-windows-4.26.2.zip

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    108.157.229.89

    #16509 AMAZON-02

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
files.getgrass.iounknown2023-03-172024-10-172024-10-27

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Mnemonic Secure DNS

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    files.getgrass.io/file/grass-extension-upgrades/extension-latest/grass-community-node-windows-4.26.2.zip

  2. IP

    54.240.174.44

  3. ASN

    #16509 AMAZON-02

  1. File type

    Zip archive data, at least v2.0 to extract, compression method=deflate

    Size

    3.6 MB (3578502 bytes)

  2. Hash

    3ed6f504716bfcee19f27a486fd463ac

    8ea93a2d6be852c480236b673e246e9a5b00cbb3

  1. Archive (2)

    2. FilenameMd5File type
    grass_config.exe
    cf2090913e8d4a1d955ad19253f2a883
    		PE32+ executable (GUI) x86-64, for MS Windows, 6 sections
    grass-4.26.2.crx
    13d6a9d164017515dc730cb57f740cae
    		Google Chrome extension, version 3

    Detections

    AnalyzerVerdictAlert
    YARAhub by abuse.chmalware
    detect_Redline_Stealer

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize
files.getgrass.io/file/grass-extension-upgrades/extension-latest/grass-community-node-windows-4.26.2.zip
54.240.174.44200 OK3.6 MB