Report - gamerha.top/Dishonored%202.zip

Report Overview

Visited public
2024-11-03 05:43:42
Tags
URL
gamerha.top/Dishonored%202.zip
Finishing URL
about:privatebrowsing
IP / ASN
78.159.108.119
#28753 Leaseweb Deutschland GmbH
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
gamerha.top	unknown	2023-07-27	2016-11-17	2024-11-03	484 B	1.5 MB	78.159.108.119

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
gamerha.top/Dishonored%202.zip
IP
78.159.108.119
ASN
#28753 Leaseweb Deutschland GmbH

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
1.5 MB (1546207 bytes)
Hash
3d8596b7775f354a7bc1e57573959299
e3ac9a2f7308f175f66fdaa2a7d12ac11b1deebe
0bffd74ea18acd8ae0d42d37aef38a10f01747d83e6bd13d0197a97dace4c371

Archive (92)

Modified	Filename	Size	Md5	File type
2016-11-20 00:14	1f610.svg	1.8 kB	2c6041bfc91ee1174f11740dc26573fe	SVG Scalable Vector Graphics image
2016-11-20 00:14	aclator.gif	1.6 kB	3d04a9086f9db5264767984131241a6d	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	admin-bar-rtl.css	20 kB	9b64d09bbbe5b190fcd535d858fb353f	Unicode text, UTF-8 text, with very long lines (20541), with no line terminators
2016-11-20 00:14	admin-bar.js	7.2 kB	b2e733f0c117e30ac8974dcc69ab11d8	JavaScript source, ASCII text, with very long lines (7188), with no line terminators
2016-11-20 00:14	analytics.js	28 kB	123d47b4788b0fab1eeecbbcca4332ce	JavaScript source, ASCII text, with very long lines (1640)
2016-11-20 00:14	asiatech32.gif	69 kB	ce1d2d585b5ee767e685699b5378d3a5	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	atrk.js	3.7 kB	00e6abeda5f5692c9d36ce3f08bd8d0d	JavaScript source, ASCII text, with very long lines (3724)
2016-11-20 00:14	banner122.gif	34 kB	27a7441842e50301adc0be7b207e64d8	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	buy-icon2.gif	6.0 kB	4a9d93527501b3a7b02827a08f0d33c2	GIF image data, version 89a, 264 x 48
2016-11-20 00:14	casio506g-s.jpg	145 kB	0e5487d8f20f6eedc28d2e7c5e77e29e	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 455x451, components 3
2016-11-20 00:14	cbgapi.loaded_0	117 kB	1e48e98e1d3bcc335026c5c4f07ee00e	JavaScript source, ASCII text, with very long lines (803)
2016-11-20 00:14	cbgapi.loaded_1	66 kB	990b3482895bdb7406f7a61a50a903fa	JavaScript source, ASCII text, with very long lines (927)
2016-11-20 00:14	chrome.gif	1.5 kB	366d38c22f4985eeb8a3bc5b374165e7	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	css.css	744 B	1a770a5d1c763607be1317a88b4b411e	ASCII text
2016-11-20 00:14	dashicons.css	46 kB	cf3c0e8f26fe2025a0f22138ffe30d53	ASCII text, with very long lines (46364), with no line terminators
2016-11-20 00:14	Dishonored-2-pc-cover-small.jpg	42 kB	f11fb812f09146de570c9f4cc35ecb44	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x456, components 3
2016-11-20 00:14	Dishonored-2-screenshots-01-small.jpg	8.9 kB	bf41a03e73cd255005e5ff3e89268333	JPEG image data, JFIF standard 1.01, resolution (DPI), density 46x46, segment length 16, baseline, precision 8, 200x112, components 3
2016-11-20 00:14	Dishonored-2-screenshots-02-small.jpg	8.5 kB	4a845d8b0ead8588508b5355ee6a378f	JPEG image data, JFIF standard 1.01, resolution (DPI), density 46x46, segment length 16, baseline, precision 8, 200x112, components 3
2016-11-20 00:14	Dishonored-2-screenshots-03-small.jpg	11 kB	923adef5dbd9060c5268aede8ad93bcb	JPEG image data, JFIF standard 1.01, resolution (DPI), density 46x46, segment length 16, baseline, precision 8, 200x112, components 3
2016-11-20 00:14	Dishonored-2-screenshots-04-small.jpg	14 kB	88177331835358b3debff754dd32b3d6	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=4275, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=7600], baseline, precision 8, 200x112, components 3
2016-11-20 00:14	Dishonored-2-screenshots-05-small.jpg	12 kB	43ef359be9d8d499a13b7f5d8b5d1aa2	JPEG image data, JFIF standard 1.01, resolution (DPI), density 11x11, segment length 16, baseline, precision 8, 200x112, components 3
2016-11-20 00:14	Dishonored-2-screenshots-06-small.jpg	22 kB	2205f95302c03949a3aedfb09620e933	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2702, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=4800], baseline, precision 8, 200x113, components 3
2016-11-20 00:14	download.gif	350 B	8d8febeb86fb254e3bb2fb83bb9c974b	GIF image data, version 89a, 22 x 18
2016-11-20 00:14	fastbutton.htm	32 kB	72b54ff4e21b1172a849f22ecc4348ef	HTML document, ASCII text, with very long lines (8905), with CRLF line terminators
2016-11-20 00:14	fastbutton_002.htm	32 kB	bff0687f78efb7c5ccebcbad7a7efab3	HTML document, ASCII text, with very long lines (8887), with CRLF line terminators
2016-11-20 00:14	rsAGLTcCPXDku7OpQib0oL7vVs8-DiSf84cw.css	9.5 kB	7b051807604ee9cd1e097c8906c9d0a2	ASCII text, with very long lines (9504), with no line terminators
2016-11-20 00:14	firefox.gif	1.8 kB	e823dce7b0574e5256caa5800189a7fe	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	flash.gif	970 B	bbab172144591a5b58e640478687b6ce	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	form.js	700 B	270f0cd7341bce6c2afacf2682e7690e	ASCII text
2016-11-20 00:14	help.png	801 B	c4abf57ffbcf44825378ada3fd7a3f4b	PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
2016-11-20 00:14	Ice.jpg	30 kB	a63f4d27516c9ec704b1ddbf0c682ab9	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 290x226, components 3
2016-11-20 00:14	idm.gif	1.8 kB	ec7387f208974bf64df0b8f684b7ec1f	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	jquery-migrate.js	10 kB	7121994eec5320fbe6586463bf9651c2	JavaScript source, ASCII text, with very long lines (9959)
2016-11-20 00:14	jquery.js	12 kB	a2b5a95a6749ba3023379cb7298b4e08	JavaScript source, ASCII text, with very long lines (11851)
2016-11-20 00:14	jquery_002.js	94 kB	ddb84c1587287b2df08966081ef063bf	JavaScript source, Unicode text, UTF-8 text, with very long lines (32769)
2016-11-20 00:14	jquery_003.js	97 kB	8610f03fe77640dee8c4cc924e060f12	JavaScript source, ASCII text, with very long lines (32077)
2016-11-20 00:14	km.gif	1.7 kB	fe3c17294d427954f1813296e668243a	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	lg-s.jpg	62 kB	57d89c58ccfe898d1268a758e329d7b8	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 458x458, components 3
2016-11-20 00:14	nero.gif	2.0 kB	d35c53bbad3a8e4279b73c4909f59794	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	parastravelco.gif	55 kB	a54e5e60c09bc7b75700a039f1e8bccd	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	plugins.js	2.7 kB	5b3116d6c9f879c51dbd7f76e769bcca	JavaScript source, ASCII text
2016-11-20 00:14	plusone.js	40 kB	7110b219928592df5c392a2927bcd0c8	JavaScript source, ASCII text, with very long lines (8025)
2016-11-20 00:14	postmessageRelay.htm	567 B	dc53b737de1ca8cabf4f340085d21dac	HTML document, ASCII text, with very long lines (550), with CRLF line terminators
2016-11-20 00:14	1240234406-postmessagerelay.js	10 kB	caf848ca6284e66184d82809afbb74da	JavaScript source, ASCII text, with very long lines (1821)
2016-11-20 00:14	cbgapi.loaded_0	27 kB	001675c2f7441defb3f5c221667d3838	JavaScript source, ASCII text, with very long lines (803)
2016-11-20 00:14	rpcshindig_random.js	14 kB	cf5c8a7ac944c02c2d45369d7ab51955	JavaScript source, ASCII text, with very long lines (7655)
2016-11-20 00:14	postratings-css-rtl.css	653 B	a15e072c6185f0be1c09eadd29da05e5	ASCII text
2016-11-20 00:14	postratings-css.css	1.1 kB	47cf473fd38816fc7697aa053554d25f	ASCII text
2016-11-20 00:14	postratings-js.js	3.3 kB	cf69561a0d0205c07557fa98bc91b6ab	ASCII text, with very long lines (516), with CRLF line terminators
2016-11-20 00:14	postviews-cache.js	133 B	1daca5a382c540c8639d836bad2ad992	ASCII text, with no line terminators
2016-11-20 00:14	puma-s.jpg	132 kB	0cd4dc5749aa34b1bb83d755601f72cc	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 458x457, components 3
2016-11-20 00:14	rating_half-rtl.gif	524 B	3a74381a93ea98ca46c94ecd964ee183	GIF image data, version 89a, 12 x 12
2016-11-20 00:14	rating_on.gif	523 B	cf853fb872bf743ae8556423ec0259ee	GIF image data, version 89a, 12 x 12
2016-11-20 00:14	related.css	647 B	9dfc938662f1cdb020dc05794d65e58f	ASCII text
2016-11-20 00:14	sabavision2.jpg	34 kB	6ddda3db884e03fe8c8d3c6499011245	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=41, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=241], baseline, precision 8, 240x40, components 3
2016-11-20 00:14	showcamp.htm	2.3 kB	bae9fb0c22840e28ad16f807836e635d	HTML document, ASCII text, with CRLF line terminators
2016-11-20 00:14	showcamp_002.htm	2.6 kB	f8b4067a291a64e4d9440c6ef2d54715	HTML document, ASCII text, with very long lines (303), with CRLF line terminators
2016-11-20 00:14	showcamp_003.htm	2.6 kB	cee984f1a3d7ef974116509f31b61571	HTML document, ASCII text, with very long lines (303), with CRLF line terminators
2016-11-20 00:14	showcamp_004.htm	2.6 kB	288d2111be232f677a0f787e82c3c891	HTML document, ASCII text, with very long lines (303), with CRLF line terminators
2016-11-20 00:14	showcamp_005.htm	2.6 kB	35cb2f0fa7f402cafa2962f1ba1754d9	HTML document, ASCII text, with very long lines (303), with CRLF line terminators
2016-11-20 00:14	showcamp_006.htm	2.6 kB	cfeb9c3094daa2ff6fce90d5f4a5e453	HTML document, ASCII text, with very long lines (303), with CRLF line terminators
2016-11-20 00:14	showcamp_007.htm	2.6 kB	4cfeee3baf3c50e996307241545541af	HTML document, ASCII text, with very long lines (303), with CRLF line terminators
2016-11-20 00:14	showcamp_008.htm	2.6 kB	b0f1374e2988d0d882b91cc5e362061b	HTML document, ASCII text, with very long lines (305), with CRLF line terminators
2016-11-20 00:14	showcamp_009.htm	2.6 kB	eaa6154544460480200d1aba2884b96c	HTML document, ASCII text, with very long lines (305), with CRLF line terminators
2016-11-20 00:14	showcamp_010.htm	2.6 kB	c90658db6dbbff71a3c08320eee91371	HTML document, ASCII text, with very long lines (305), with CRLF line terminators
2016-11-20 00:14	Downloadha.htm	395 B	fa2561f12282d153c3f3d69fda6177cc	HTML document, ASCII text, with CRLF line terminators
2016-11-20 00:14	a.htm	654 B	3974e468ad75d5a1ffc301dc7c18d0b8	HTML document, ASCII text, with very long lines (480), with CRLF line terminators
2016-11-20 00:14	468%20x%2060%20-%20Signal.gif	30 kB	71f07c45d66619bdf2c0a4e6a269f823	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	Downloadha.js	1.6 kB	ba9e9772fb3dc08c190e08170a5c4334	HTML document, ASCII text, with very long lines (440), with CRLF line terminators
2016-11-20 00:14	14204.gif	173 kB	5ddcdbc3ade79609a34dffa72457edd2	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	12720.gif	24 kB	6d4072d882027842683692d386115bcd	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	14131.gif	18 kB	ac52bced2f6fc8df2feac33c2ec86e36	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	14168.gif	75 kB	e23cb2546915a61198dc56b87010359b	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	13944.gif	75 kB	b7254968591236683d33f372cc802ea4	GIF image data, version 89a, 468 x 60
2016-11-20 00:14	14227.jpg	25 kB	2c4611f5968d12c8bd346d5a4b8a3932	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:11:06 16:12:25], progressive, precision 8, 468x60, components 3
2016-11-20 00:14	14248.gif	24 kB	c9a4d8c335e1a0e92c25928278092aeb	GIF image data, version 89a, 468 x 120
2016-11-20 00:14	14302.gif	61 kB	7e68b039189a9eb36c3c8164dc702717	GIF image data, version 89a, 240 x 240
2016-11-20 00:14	13916.gif	43 kB	df847f960eeb95baa45752c2a4b6b3ee	GIF image data, version 89a, 120 x 240
2016-11-20 00:14	style.css	9.8 kB	e485dc31ef4d75fbbdb0cc9070e44943	ASCII text
2016-11-20 00:14	style_002.css	41 kB	dca298e9ecf75b4536eb1f965876cc95	ASCII text, with CRLF line terminators
2016-11-20 00:14	telegram.png	3.1 kB	891adcf873ab0fa94c4fd1b985ac3801	PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
2016-11-20 00:14	widget.css	771 B	ccbec26801817b6a6eef8f269fe34020	ASCII text
2016-11-20 00:14	windows8.gif	499 B	06005604eeda52e5cb3e02aba191c50d	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	winrar.gif	1.6 kB	e5dd254b9e21c710d421c7ed7ddb662f	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	wp-embed.js	1.4 kB	687bf3104f17a2e9afced6d17acb384f	JavaScript source, ASCII text, with very long lines (1403), with no line terminators
2016-11-20 00:14	wp-emoji-release.js	10 kB	64d7608a1b81f07f97f87506b87a8a5a	JavaScript source, ASCII text, with very long lines (7506)
2016-11-20 00:14	wp-page-numbers.css	941 B	6fd38f0c2283db15b831b61a693f27c0	ASCII text, with CRLF line terminators
2016-11-20 00:14	wp-thread-comment.htm	2.7 kB	1c8990bb9f77431883e70be8636933b8	JavaScript source, ASCII text, with CRLF line terminators
2016-11-20 00:14	wp-thread-comment_002.htm	6.1 kB	bf9f5ac1834441beb3f33d534873732f	Unicode text, UTF-8 text, with CRLF line terminators
2016-11-20 00:14	yahoom.gif	1.7 kB	899e650dd6e26aeff5966069cac8c26f	GIF image data, version 89a, 36 x 36
2016-11-20 00:14	zarinpalpay.png	3.9 kB	c10b3196096e97a22addf30c01f48bdd	PNG image data, 100 x 25, 8-bit/color RGBA, non-interlaced
2016-11-20 00:14	�� Dishonored 2 �� PC.htm	205 kB	1aac3aa79bb99e1a3709a3ff417cb859	HTML document, Unicode text, UTF-8 text, with very long lines (2815), with CRLF line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

gamerha.top/Dishonored%202.zip

78.159.108.119

200 OK

1.5 MB

URL User Request GET HTTP/2
gamerha.top/Dishonored%202.zip
IP
78.159.108.119:443
ASN
#28753 Leaseweb Deutschland GmbH

Certificate
IssuerLet's Encrypt
Subjectgamerha.top
FingerprintDF:5A:7E:5B:A2:B6:98:73:DF:7E:0A:85:D9:51:E7:8A:61:A0:D4:A1
ValiditySun, 06 Oct 2024 05:46:18 GMT - Sat, 04 Jan 2025 05:46:17 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
1.5 MB (1546207 bytes)
Hash
3d8596b7775f354a7bc1e57573959299
e3ac9a2f7308f175f66fdaa2a7d12ac11b1deebe
0bffd74ea18acd8ae0d42d37aef38a10f01747d83e6bd13d0197a97dace4c371

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

HTTP Headers

GET /Dishonored%202.zip HTTP/1.1
Host: gamerha.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/zip
last-modified: Fri, 28 Jul 2023 12:55:22 GMT
accept-ranges: bytes
content-length: 1546207
date: Sun, 03 Nov 2024 05:43:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (92)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers