Report Overview
Visitedpublic
2024-07-20 08:34:22
Tags
Submit Tags
URL
1721464405-u7zo.dh707y.xyz/1024big.zip
Finishing URL
about:privatebrowsing
IP / ASN
104.18.9.79
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
r10.o.lencr.org | unknown | 2020-06-29 | 2024-06-06 21:45:11 | 2024-07-19 18:12:05 | 2.9 kB | 8.0 kB |  23.36.77.32 | |
1721464405-u7zo.dh707y.xyz 1 alert(s) on this Domain | unknown | unknown | No data | No data | 492 B | 3.1 MB | 104.18.8.79 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
1721464405-u7zo.dh707y.xyz/1024big.zip
IP / ASN
104.18.8.79
File Overview
File TypeZip archive data, at least v1.0 to extract, compression method=store
Size3.1 MB (3147351 bytes)
MD5b6f727d494e0b7974db38a5e540a13e7
SHA1a9b0353055470f81b8da58e3a90fa02728d0b712
Archive (6)
| Filename | MD5 | File type |
|---|---|---|
| _1024�����ֻ�������.apk | 1132ec308ceabd6281269cc9eb5e37a2 | Android package (APK), with zipflinger virtual entry Zip archive data, at least v0.0 to extract, compression method=store |
| _1024���^������2024��.chm | 92c9dc80829597997a8989a37c51f8a6 | MS Windows HtmlHelp Data |
| _˫��ֱ��1024����.htm | 3c0a2ef2fe1508a655a41ea6cf14c798 | JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (65158), with CRLF line terminators |
| _ɨ������1024������������.html | f08a9491ccdb1c4417af843936503c2e | HTML document, ASCII text, with very long lines (35797), with CRLF line terminators |
| _ɨ��ֱ��1024����.html | ef0a7aee719842f4c90981cfbc62b2c7 | ASCII text, with very long lines (58736), with CRLF line terminators |
| _����BT�ϼ�.html | 7b0b025e8638e738d4c9226ba99acc5d | JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (65158), with CRLF line terminators |
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| VirusTotal | malicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (10)
| URL | IP | Response | Size |
|---|