Report Overview
Visitedpublic
2024-06-30 17:02:35
Tags
Submit Tags
URL
packages.wazuh.com/4.x/windows/wazuh-agent-4.7.3-1.msi
Finishing URL
about:privatebrowsing
IP / ASN
54.240.174.78
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
r10.o.lencr.org | unknown | 2020-06-29 | 2024-06-06 21:45:11 | 2024-06-29 18:13:04 | 1.6 kB | 4.4 kB |  23.36.76.226 | |
packages.wazuh.com 1 alert(s) on this Domain | 194668 | 2014-12-24 | 2017-05-02 12:03:01 | 2024-06-24 14:25:48 | 508 B | 6.5 MB | 54.240.174.78 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-06-30 | medium | packages.wazuh.com/4.x/windows/wazuh-agent-4.7.3-1.msi | Detect files is `SliverFox` malware |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
packages.wazuh.com/4.x/windows/wazuh-agent-4.7.3-1.msi
IP / ASN
54.240.174.78
File Overview
File TypeComposite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Wazuh helps you to gain security visibility into your infrastructure by monitoring hosts at an operating system and application level. It provides the following capabilities: log analysis, file integrity monitoring, intrusions detection and policy and compliance monitoring, Author: Wazuh, Inc., Keywords: Installer, Comments: wazuh-agent, Template: Intel;1033, Revision Number: {4C951CE4-130C-4CBE-8E85-9FE74099BD42}, Create Time/Date: Wed Jan 31 13:13:18 2024, Last Saved Time/Date: Wed Jan 31 13:13:18 2024, Number of Pages: 200, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
Size6.5 MB (6520832 bytes)
MD56ab4d93ffd5f67cc5856c64c34ef7e2b
SHA180643fee746ffaf5ee29333f94b3b9275612af12
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detect files is `SliverFox` malware |
JavaScript (0)
No JavaScripts
HTTP Transactions (6)
| URL | IP | Response | Size |
|---|