Report Overview
Submitted URL
dl-dr-4.xyz/drv/old/Intel-FORCED-10x64-WIGIG_3.0.33116_old-drp.zip
IP
89.41.180.201
ASN
#25198 Interkvm Host Srl
Submitted
2024-04-19 15:49:02
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
3
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
dl-dr-4.xyz | unknown | 2023-06-04 | 2023-06-04 | 2024-04-18 | 520 B | 1.4 MB | 89.41.180.201 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Timestamp | Severity | Source IP | Destination IP | Alert |
---|---|---|---|---|
2024-04-19 15:48:35 | medium | 89.41.180.201 | Client IP |
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2024-04-19 | medium | dl-dr-4.xyz | Sinkholed |
ThreatFox
No alerts detected
Files detected
URL
dl-dr-4.xyz/drv/old/Intel-FORCED-10x64-WIGIG_3.0.33116_old-drp.zip
IP
89.41.180.201
ASN
#25198 Interkvm Host Srl
File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
1.4 MB (1443162 bytes)
Hash
bb77e4a71f8bd2856086e345ffc4b73b
3b948f92fb0404b395f3dad7d1c6aa95c33eaf9c
Archive (14)
Filename | Md5 | File type | |||
---|---|---|---|---|---|
BPRGInst.exe | 16ae00cf80a778c743fec2592db60639 | PE32+ executable (console) x86-64, for MS Windows, 6 sections | |||
WiGigClassInstaller.dll | 157811eb297653cd1fbe60d9ac2a2c34 | PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections | |||
iWiGiG.inf | 0c657e1e2f01c5f9f950cd9881874565 | Windows setup INFormation | |||
iWiGiG.sys | 96e4bde1f365f8eaa25a585baebe7bfb
| PE32+ executable (native) x86-64, for MS Windows, 8 sections | |||
iWiGigUM.dll | 80509a06ea976e4599c73e5344b30369 | PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 7 sections | |||
iWiGigUM.inf | 132f6489f92c56b4abf0106c5d3a77f7 | Windows setup INFormation | |||
imausbhpal.cat | 88d31e8077d754326fbced7654123e08 | DER Encoded PKCS#7 Signed Data | |||
imausbhpal.inf | 8e444179fbc7691d409aa786fb3d7e13 | Windows setup INFormation | |||
imausbhpal.sys | 06dca59f37df97ca6db14eca3edc8e9b | PE32+ executable (native) x86-64, for MS Windows, 8 sections | |||
imausbhub.cat | af372a7eb6b5644f4885ce65e22c2d84 | DER Encoded PKCS#7 Signed Data | |||
imausbhub.inf | 73206f2f5bbbcd246e1abba55fee61a5 | Windows setup INFormation | |||
imausbhub.sys | 6c580728a2fb91a77e807a6c4a149880 | PE32+ executable (native) x86-64, for MS Windows, 10 sections | |||
iwigig.cat | de8e62a3e86a61be657ec06a24dccda3 | DER Encoded PKCS#7 Signed Data | |||
iwigigum.cat | 9f48e2fe670516aa6752770e1cc4290c | DER Encoded PKCS#7 Signed Data |
Detections
Analyzer | Verdict | Alert |
---|---|---|
YARAhub by abuse.ch | malware | signed_sys_with_vulnerablity |
JavaScript (0)
HTTP Transactions (1)
URL | IP | Response | Size | |||||||
---|---|---|---|---|---|---|---|---|---|---|
dl-dr-4.xyz/drv/old/Intel-FORCED-10x64-WIGIG_3.0.33116_old-drp.zip | 89.41.180.201 | 200 OK | 1.4 MB | |||||||
Detections
HTTP Headers
| ||||||||||