Report - github.com/PrismLauncher/PrismLauncher/releases/download/8.3/PrismLauncher-Windows-MSVC-Portable-8.3.zip

Report Overview

Submitted URL
github.com/PrismLauncher/PrismLauncher/releases/download/8.3/PrismLauncher-Windows-MSVC-Portable-8.3.zip
IP
140.82.121.3
ASN
#36459 GITHUB
Submitted
2024-05-04 20:35:18
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
15

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
github.com	1423	2007-10-09	2016-07-13	2024-03-24	558 B	4.0 kB	140.82.121.3
objects.githubusercontent.com	134060	2014-02-06	2021-11-01	2024-05-04	1.0 kB	18 MB	185.199.108.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
objects.githubusercontent.com/github-production-release-asset-2e65be/553135896/2dc02610-5495-4e6c-9753-9d813435a2ff?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240504%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240504T203443Z&X-Amz-Expires=300&X-Amz-Signature=bd3d459f003919e4365e5d0cbb90e6d790a00d27981bea4a728506d196c425c9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=553135896&response-content-disposition=attachment%3B%20filename%3DPrismLauncher-Windows-MSVC-Portable-8.3.zip&response-content-type=application%2Foctet-stream
IP
185.199.108.133
ASN
#54113 FASTLY

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
18 MB (18321705 bytes)
Hash
5cfdfea9088592ee820e88ada6aa7320
59ef9a5d0440d89f330aee403d3434fe39216a32
5803b5cfcfedf8c64f0ad830a4dc54fa26b378c594c8cc5ca9d6716581f42afd

Archive (29)

Filename

Md5

File type

Qt6Core.dll

46a0dbd38cb28d8e79c80c9a033f6ae9

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

Qt6Core5Compat.dll

e50b9b3fa16362c86a40e6255c6b45e7

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

Qt6Gui.dll

7875aad0d0d426e9d1b132a35266de32

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

Qt6Network.dll

960f50470059381c65833145036fef29

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

Qt6Svg.dll

67a888c61e6f1dceefbde7287e80e59d

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

Qt6Widgets.dll

34abb42b63e71b09b72b48cf5b1dba53

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

Qt6Xml.dll

7fcfa82dd4a01915622c14931cc585dd

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections

qsvgicon.dll

b57d0218475b81560454e6c0a1a6d9c8

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qjpeg.dll

3aba46b716d9cb3b99efad42ed7970ee

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qwbmp.dll

50854ae793a75bdbe0fcab1867b6f932

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qgif.dll

000b3771b3dcf0d7eb72750edd80a192

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qicns.dll

b8466ebadaac59acc5fffb674fcc81c0

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qwebp.dll

cee0dddffeb26ea50268414c28e656c3

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qsvg.dll

21d1279f76e64e42db06c9e27776d3cf

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qico.dll

c64789dba4e2aa3bddf17bfa89e7ab59

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

JavaCheck.jar

f62d3996b12c029c3a3bad80b70aa483

Java archive data (JAR)

NewLaunch.jar

b7c74c310eefc0b4a85cc8c8f4e38216

Java archive data (JAR)

NewLaunchLegacy.jar

87cd4488ae5f1152e623857a4bf10604

Java archive data (JAR)

manifest.txt

b505188d49408981840f33afa1d0eaa4

ASCII text, with CRLF line terminators

qdirect2d.dll

a883645fd99ed6b7d6398e1bbc5028d0

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qwindows.dll

6031ccd3785bafba8556008cbc058dfd

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

portable.txt

93f489f4a1f13d6411c03b82f5935481

ASCII text, with CRLF line terminators

prismlauncher.exe

289255ff339b0ff529f43acb848b91ea

PE32+ executable (GUI) x86-64, for MS Windows, 6 sections

prismlauncher_filelink.exe

a51dbbb945f1c186ed63a246e1bfb99f

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

prismlauncher_updater.exe

5ba603e7a247e38018d48906ec8585e6

PE32+ executable (GUI) x86-64, for MS Windows, 5 sections

qt.conf

7215ee9c7d9dc229d2921a40e899ec5f

very short file (no magic)

qtlogging.ini

4995c4ae4070a861669fd6e997d815be

ASCII text, with CRLF line terminators

qwindowsvistastyle.dll

cc096aea386047b0131eea248122c0d2

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

qschannelbackend.dll

8eca729b0b937a63aaa105c98c2647f1

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe
YARAhub by abuse.ch	malware	files - file ~tmp01925d3f.exe

JavaScript (0)

HTTP Transactions (2)

	URL	IP	Response	Size
	github.com/PrismLauncher/PrismLauncher/releases/download/8.3/PrismLauncher-Windows-MSVC-Portable-8.3.zip	140.82.121.3	302 Found	0 B
URL User Request GET HTTP/2 github.com/PrismLauncher/PrismLauncher/releases/download/8.3/PrismLauncher-Windows-MSVC-Portable-8.3.zip IP 140.82.121.3:443 ASN #36459 GITHUB Certificate IssuerSectigo Limited Subjectgithub.com FingerprintE7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0 ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /PrismLauncher/PrismLauncher/releases/download/8.3/PrismLauncher-Windows-MSVC-Portable-8.3.zip HTTP/1.1 Host: github.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found server: GitHub.com date: Sat, 04 May 2024 20:34:43 GMT content-type: text/html; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/553135896/2dc02610-5495-4e6c-9753-9d813435a2ff?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240504%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240504T203443Z&X-Amz-Expires=300&X-Amz-Signature=bd3d459f003919e4365e5d0cbb90e6d790a00d27981bea4a728506d196c425c9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=553135896&response-content-disposition=attachment%3B%20filename%3DPrismLauncher-Windows-MSVC-Portable-8.3.zip&response-content-type=application%2Foctet-stream cache-control: no-cache strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: no-referrer-when-downgrade content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/ content-length: 0 x-github-request-id: 54EA:10B60C:19FF0AB:1A663D2:66369BE3 X-Firefox-Spdy: h2

	objects.githubusercontent.com/github-production-release-asset-2e65be/553135896/2dc02610-5495-4e6c-9753-9d813435a2ff?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240504%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240504T203443Z&X-Amz-Expires=300&X-Amz-Signature=bd3d459f003919e4365e5d0cbb90e6d790a00d27981bea4a728506d196c425c9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=553135896&response-content-disposition=attachment%3B%20filename%3DPrismLauncher-Windows-MSVC-Portable-8.3.zip&response-content-type=application%2Foctet-stream	185.199.108.133	200 OK	18 MB
URL User Request GET HTTP/2 objects.githubusercontent.com/github-production-release-asset-2e65be/553135896/2dc02610-5495-4e6c-9753-9d813435a2ff?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240504%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240504T203443Z&X-Amz-Expires=300&X-Amz-Signature=bd3d459f003919e4365e5d0cbb90e6d790a00d27981bea4a728506d196c425c9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=553135896&response-content-disposition=attachment%3B%20filename%3DPrismLauncher-Windows-MSVC-Portable-8.3.zip&response-content-type=application%2Foctet-stream IP 185.199.108.133:443 ASN #54113 FASTLY Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 18 MB (18321705 bytes) Hash 5cfdfea9088592ee820e88ada6aa7320 59ef9a5d0440d89f330aee403d3434fe39216a32 5803b5cfcfedf8c64f0ad830a4dc54fa26b378c594c8cc5ca9d6716581f42afd HTTP Headers GET /github-production-release-asset-2e65be/553135896/2dc02610-5495-4e6c-9753-9d813435a2ff?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAVCODYLSA53PQK4ZA%2F20240504%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240504T203443Z&X-Amz-Expires=300&X-Amz-Signature=bd3d459f003919e4365e5d0cbb90e6d790a00d27981bea4a728506d196c425c9&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=553135896&response-content-disposition=attachment%3B%20filename%3DPrismLauncher-Windows-MSVC-Portable-8.3.zip&response-content-type=application%2Foctet-stream HTTP/1.1 Host: objects.githubusercontent.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/octet-stream last-modified: Tue, 23 Apr 2024 17:48:03 GMT etag: "0x8DC63BD862286DE" server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 97867e75-601e-003c-0aac-95c892000000 x-ms-version: 2020-10-02 x-ms-creation-time: Tue, 23 Apr 2024 17:48:03 GMT x-ms-lease-status: unlocked x-ms-lease-state: available x-ms-blob-type: BlockBlob content-disposition: attachment; filename=PrismLauncher-Windows-MSVC-Portable-8.3.zip x-ms-server-encrypted: true via: 1.1 varnish, 1.1 varnish accept-ranges: bytes age: 0 date: Sat, 04 May 2024 20:34:44 GMT x-served-by: cache-iad-kiad7000138-IAD, cache-hel1410022-HEL x-cache: HIT, MISS x-cache-hits: 3404, 0 x-timer: S1714854884.660642,VS0,VE490 content-length: 18321705 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (29)

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers