Report Overview
Visitedpublic
2026-05-05 10:33:30
Tags
Submit Tags
URL
77.172.14.72/AV.scr
Finishing URL
about:privatebrowsing
IP / ASN
77.172.14.72
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
2
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
77.172.14.72 8 alert(s) on this Host | unknown | unknown | No data | No data | 890 B | 6.3 MB | 77.172.14.72 |  |
Windows CE (Operating systems)
Windows CE is an operating system designed for small footprint devices or embedded systems.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | Client IP | 77.172.14.72 | ET HUNTING HTTP request for resource ending in .scr | |
| high | 77.172.14.72 | Client IP | ET POLICY PE EXE or DLL Windows file download HTTP | |
| medium | 77.172.14.72 | Client IP | ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Public YARA rules | 77.172.14.72/AV.scr | malware | Identifies executable converted using PyInstaller. |
| ClamAV | 77.172.14.72/AV.scr | malicious | Win.Malware.F857af-9782749-0 |
File detected
URL
77.172.14.72/AV.scr
IP / ASN
77.172.14.72
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 6 sections
Size6.3 MB (6271268 bytes)
MD5be31cca33af2de146e80b41ffda26f3b
SHA1f126cf6711ba577cc898b47384ef57c1f7949bac
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| Public InfoSec YARA rules | malware | Identifies executable converted using PyInstaller. |
| ClamAV | malicious | Win.Malware.F857af-9782749-0 |
JavaScript (0)
No JavaScripts
HTTP Transactions (2)
| URL | IP | Response | Size |
|---|