Report - github.com/jindrapetrik/jpexs-decompiler/releases/download/version22.0.1/ffdec

Report Overview

Visitedpublic

2024-12-05 22:29:50

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
github.com	1423	2007-10-09	2016-07-13	2024-12-04	543 B	4.3 kB	140.82.112.3
objects.githubusercontent.com	134060	2014-02-06	2021-11-01	2024-12-04	958 B	16 MB	185.199.109.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

objects.githubusercontent.com/github-production-release-asset-2e65be/19647328/18187e0e-7cfe-4c70-af5a-e821efe9906d?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241205%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241205T222921Z&X-Amz-Expires=300&X-Amz-Signature=f224b51614f2a64bb8afc7e78e1c4e0c42d449ee09898842bcf432b8d126f953&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Dffdec_22.0.1.zip&response-content-type=application%2Foctet-stream

IP / ASN

185.199.109.133

#54113 FASTLY

File Overview

File TypeZip archive data, at least v1.0 to extract, compression method=store

Size16 MB (15510042 bytes)

MD51de104fc2cd12589f4a4e97a24d93b97

SHA1c879703118200e27501e37f0029f210aa801f773

SHA25639bf2e630a50e5c025915398e1e86956551a83c3626d3ce8f0f3bda2521713fa

Archive (75)

Modified	Filename	Size	MD5	File type
2024-11-20 16:08	CHANGELOG.md	237 kB	732aebfcfe08ff8c09bd79bd9c5054a4	ASCII text, with CRLF line terminators
2024-11-20 16:08	Icon.icns	390 kB	fea0a72ab55b160c93917654a29736b3	Mac OS X icon, 389597 bytes, "ic12" type
2024-11-20 16:08	com.jpexs.decompiler.flash.metainfo.xml	94 kB	86ec388faf09dda1ed12f0fa9d4b7f27	XML 1.0 document, Unicode text, UTF-8 text
2024-11-20 16:08	ffdec	167 B	da69bd82036552fe2e9efe465cc72066	Bourne-Again shell script, ASCII text executable
2024-11-20 16:08	ffdec-cli.exe	36 kB	8217ec4efd091713c52fa1bb0b58ac22	PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections
2024-11-20 16:08	ffdec-cli.jar	1.6 kB	eecf7b9f3cad71a542e1159aec674b85	Java archive data (JAR)
2024-11-20 16:08	ffdec.bat	866 B	d1c38a79bef0b2e148cbf0326a104533	DOS batch file, ASCII text, with CRLF line terminators
2024-11-20 16:08	ffdec.exe	433 kB	65d77cddbfc1fd4a65d2ab4c3bd3a1fc	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, 10 sections
2024-11-20 16:08	ffdec.jar	3.8 MB	b392ce875f8ef37ceab3e77809397bc6	Java archive data (JAR)
2024-11-20 16:08	airglobal.swc	564 kB	f8ba21161960eaab18b41d911d77e8ad	Zip archive data, at least v2.0 to extract, compression method=deflate
2024-11-20 16:08	playerglobal32_0.swc	472 kB	513a4f254444e43b94bb0758398ea23c	Zip archive data, at least v2.0 to extract, compression method=deflate
2024-11-20 16:08	icon.ico	40 kB	e6a62514ae4ef4ff4580cb0e72844feb	MS Windows icon resource - 6 icons, 32x32, 16 colors, 4 bits/pixel, 16x16, 16 colors, 4 bits/pixel
2024-11-20 16:08	icon.png	63 kB	485dcfa3fc04916bc54ad57eabb06cee	PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
2024-11-20 16:08	JavactiveX.jar	1.1 MB	94737b7083301b12623034e9c0ba3133	Java archive data (JAR)
2024-11-20 16:08	LZMA.jar	91 kB	2b88cd078cb73908da811e00e097ce81	Java archive data (JAR)
2024-11-20 16:08	avi.jar	216 kB	1cc96ab1334e68d8547a5316b951037d	Java archive data (JAR)
2024-11-20 16:08	avi.montemedia.license.txt	372 B	5e832525ad85b6e94253f95b65c2054d	ISO-8859 text
2024-11-20 16:08	cmykjpeg.jar	90 kB	d81f8ff9a1f01f36a33801810a9836da	Java archive data (JAR)
2024-11-20 16:08	ddsreader.jar	8.1 kB	8317cebf5d6b539b7c63d61522964f20	Java archive data (JAR)
2024-11-20 16:08	decimal.jar	43 kB	9b7fbce0e41bc9b508b26e2204ac7623	Java archive data (JAR)
2024-11-20 16:08	decimal.license.txt	11 kB	3b83ef96387f14655fc854ddc3c6bd57	ASCII text
2024-11-20 16:08	ffdec_lib.jar	4.9 MB	ed1891b1b907b6ac238ac661d5a54090	Java archive data (JAR)
2024-11-20 16:08	ffdec_lib.license.txt	7.7 kB	e6a600fd5e1d9cbde2d983680233ad02	ASCII text
2024-11-20 16:08	flacomdoc.jar	188 kB	27aa62a57c0046c439272bb76a07077d	Java archive data (JAR)
2024-11-20 16:08	flacomdoc.license.txt	26 kB	4bf661c1e3793e55c8d1051bc5e0ae21	ASCII text
2024-11-20 16:08	flamingo-6.2.jar	1.3 MB	fa1eef5cd9a84bf71687c283e28186e0	Java archive data (JAR)
2024-11-20 16:08	flamingo.license.txt	1.6 kB	23c4a2e92a07a80db42ef64b309d0382	ASCII text
2024-11-20 16:08	flashdebugger.jar	254 kB	299c6f3192f3d899b7c9f0bddeb6df81	Java archive data (JAR)
2024-11-20 16:08	gif.jar	26 kB	0dec1ca1a20f5234c7164426eaef0970	Java archive data (JAR)
2024-11-20 16:08	gif.license.txt	310 B	d6a786ea1d8d1f8c8dd69f5e4c00b239	ASCII text
2024-11-20 16:08	gifreader.jar	26 kB	89b21b3f3c1119ac6c07181ef3ad081b	Java archive data (JAR)
2024-11-20 16:08	gifreader.license.txt	11 kB	d2794c0df5b907fdace235a619d80314	ASCII text
2024-11-20 16:08	gnujpdf.jar	210 kB	8ccf923ed25203a1e99021089994fa6a	Java archive data (JAR)
2024-11-20 16:08	jansi-2.4.0.jar	221 kB	bb0f7e4e04a71518dfe5b4ec102aa61f	Zip archive data, at least v2.0 to extract, compression method=deflate
2024-11-20 16:08	jargs.jar	11 kB	6f3f1d7e5551b3a2c4f79a7a84304b7a	Zip archive data, at least v1.0 to extract, compression method=store
2024-11-20 16:08	jlayer-1.0.2.jar	148 kB	7fdbd49cad9d4185904e484126b14de5	Zip archive data, at least v1.0 to extract, compression method=store
2024-11-20 16:08	jlayer.license.txt	922 B	3f317d10819d77dbacddb125894e61ab	ASCII text
2024-11-20 16:08	jna-3.5.1.jar	693 kB	cb9d25ada94d5d541c48d8bff4dbf763	Java archive data (JAR)
2024-11-20 16:08	jna-platform-3.5.1.jar	952 kB	fbb8eab20d86f6b944ce9bcfb13ff223	Java archive data (JAR)
2024-11-20 16:08	jna.license.txt	547 B	cf1fee8df52f39a42df4b5e6e22e7ae0	ASCII text
2024-11-20 16:08	jpacker.jar	54 kB	aaa81005c25c6516b5914fa6098265aa	Java archive data (JAR)
2024-11-20 16:08	jpacker.license.txt	357 B	0ba2bab8d06d74642264080826e639cb	ASCII text
2024-11-20 16:08	jsyntaxpane-0.9.5.jar	605 kB	a79232f741e02f326a3a49a752d3492a	Zip archive data, at least v1.0 to extract, compression method=store
2024-11-20 16:08	jsyntaxpane.license.txt	590 B	ec068e848389aaf2c9f6e87d5e2936c3	ASCII text
2024-11-20 16:08	minimal-json-0.9.5.jar	34 kB	b654083f16dfe1856a42bf356c399f79	Java archive data (JAR)
2024-11-20 16:08	minimal-json.license.txt	1.1 kB	6ca8a35f8169dbf4010b9898813f52b4	ASCII text
2024-11-20 16:08	miterstroke.jar	46 kB	d20341c08b398e32c6b0faadd37ac692	Java archive data (JAR)
2024-11-20 16:08	miterstroke.license.txt	19 kB	7b4baeedfe2d40cb03536573bc2c89b1	ASCII text
2024-11-20 16:08	nellymoser.jar	25 kB	13489ff4ae509c2d669c4cc84221c9a2	Java archive data (JAR)
2024-11-20 16:08	nellymoser.license.txt	826 B	86b19399e81bac850299d236b1007e42	ASCII text
2024-11-20 16:08	sfntly.jar	343 kB	1ee793c77912aa56273c48ab915cfe09	Java archive data (JAR)
2024-11-20 16:08	sfntly.license.txt	568 B	a7566d6b9d9ff4fba90d091e29dd2e84	ASCII text
2024-11-20 16:08	substance-6.2.jar	1.9 MB	74bd5bc23ca820bf6be35b16a0ad0cc7	Zip archive data, at least v1.0 to extract, compression method=deflate
2024-11-20 16:08	substance-flamingo-6.2.jar	164 kB	de8b2a292af47d42fd97fef10d27c5fa	Zip archive data, at least v1.0 to extract, compression method=deflate
2024-11-20 16:08	substance-flamingo.license.txt	1.6 kB	d54a74bd17c053800f09d847f60af406	ASCII text
2024-11-20 16:08	substance.license.txt	1.9 kB	dbab46813d1a81d13fdf1e08a68f7c1b	ASCII text
2024-11-20 16:08	tablelayout.jar	12 kB	d539f0ee1d72be17744f6449ec74ea14	Java archive data (JAR)
2024-11-20 16:08	tga.jar	13 kB	d29b3811a83a85ff9b1c0dae27a90278	Zip archive data, at least v1.0 to extract, compression method=deflate
2024-11-20 16:08	tga.license.txt	26 kB	4fbd65380cdd255951079008b364516c	ASCII text
2024-11-20 16:08	treetable.jar	26 kB	9daf6c411f6ae1db8897c106a1465fdc	Java archive data (JAR)
2024-11-20 16:08	trident-6.2.jar	106 kB	95c5d7d8c59d3cb3c8c55775c97020f4	Zip archive data, at least v1.0 to extract, compression method=deflate
2024-11-20 16:08	trident.license.txt	1.5 kB	5e4df6b0a34a30832eb930d24b34df50	ASCII text
2024-11-20 16:08	ttf.doubletype.license.txt	1.3 kB	5cd014b24b57e345d14df280450654d2	ASCII text
2024-11-20 16:08	ttf.fontastic.license.txt	873 B	66848e3c7139e1f055b95be1966e76d8	ASCII text
2024-11-20 16:08	ttf.jar	140 kB	e1b229ed83edc74a35476f686862eec4	Java archive data (JAR)
2024-11-20 16:08	vlcj-4.7.3.jar	392 kB	4bb3a5369177673b0663c39a62ce7a86	Zip archive data, at least v2.0 to extract, compression method=deflate
2024-11-20 16:08	vlcj-natives-4.7.0.jar	91 kB	9327c6bfe0f60d845d2408088b431e9d	Zip archive data, at least v2.0 to extract, compression method=deflate
2024-11-20 16:08	license.txt	36 kB	3c34afdc3adf82d2448f12715a255122	ASCII text, with CRLF line terminators
2024-11-20 16:08	soleditor.bat	58 B	b282df2dc1ecbb4e7f9fed86b28dfb8e	DOS batch file, ASCII text, with CRLF line terminators
2024-11-20 16:08	soleditor.lnk	2.1 kB	a245486eb424db6385c0eea26b6b386e	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=2, Unicoded, HasEnvironment "%COMSPEC%", MachineID jpexs-laptop, EnableTargetMetadata KnownFolderID 1AC14E77-02E7-4E5D-B744-2EB1AE5198B7, Archive, ctime=Tue Jun 11 18:06:53 2024, atime=Sat Nov 9 17:13:24 2024, mtime=Tue Jun 11 18:06:53 2024, length=323584, window=showminnoactive, IDListSize 0x0135, Root folder "20D04FE0-3AEA-1069-A2D8-08002B30309D", Volume "C:\", LocalBasePath "C:\Windows\System32\cmd.exe"
2024-11-20 16:08	soleditor.sh	173 B	9a88e30363698ad6221c757ea0772208	Bourne-Again shell script, ASCII text executable
2024-11-20 16:08	translator.bat	59 B	265a794cc2cd9256112d3bf1e150cf13	DOS batch file, ASCII text, with CRLF line terminators
2024-11-20 16:08	translator.lnk	2.1 kB	105f02425d24a935b02f927b73c3bee9	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=1, Unicoded, HasEnvironment "%COMSPEC%", MachineID jpexs-laptop, EnableTargetMetadata KnownFolderID 1AC14E77-02E7-4E5D-B744-2EB1AE5198B7, Archive, ctime=Tue Jun 11 18:06:53 2024, atime=Sat Nov 9 17:13:24 2024, mtime=Tue Jun 11 18:06:53 2024, length=323584, window=showminnoactive, IDListSize 0x0135, Root folder "20D04FE0-3AEA-1069-A2D8-08002B30309D", Volume "C:\", LocalBasePath "C:\Windows\System32\cmd.exe"
2024-11-20 16:08	translator.sh	174 B	6447ac3cfd32de6c92dcb962be2e0a4e	Bourne-Again shell script, ASCII text executable
2024-11-20 16:08	ffdec.sh	3.9 kB	541443b0b775f7d934bad47743954a4f	Bourne-Again shell script, ASCII text executable

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Detects a suspicious LNK file
Public InfoSec YARA rules	malware	Identifies executable artefacts in shortcut (LNK) files.
Public InfoSec YARA rules	malware	Identifies execution artefacts in shortcut (LNK) files.
Public InfoSec YARA rules	malware	Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.
Public Nextron YARA rules	malware	Detects a suspicious LNK file
Public InfoSec YARA rules	malware	Identifies executable artefacts in shortcut (LNK) files.
Public InfoSec YARA rules	malware	Identifies execution artefacts in shortcut (LNK) files.
Public InfoSec YARA rules	malware	Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.
VirusTotal	suspicious	VirusTotal - Scan result 2/61

JavaScript (0)

HTTP Transactions (2)

	URL	IP	Response	Size