Report Overview
Visitedpublic
2024-05-02 11:03:47
Tags
Submit Tags
URL
drive.massgrave.dev/SW_DVD5_HEVC_Codec_64BIT_MultiLang_-11_MLF_X23-60420.ISO
Finishing URL
about:privatebrowsing
IP / ASN

104.21.22.3
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
drive.massgrave.dev 1 alert(s) on this Host | unknown | 2022-03-08 | 2023-08-27 09:08:24 | 2024-04-16 20:11:29 | 530 B | 4.8 MB | ![]() 104.21.22.3 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-05-02 | medium | drive.massgrave.dev/SW_DVD5_HEVC_Codec_64BIT_MultiLang_-11_MLF_X23-60420.ISO | Detect files is `SliverFox` malware |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
drive.massgrave.dev/SW_DVD5_HEVC_Codec_64BIT_MultiLang_-11_MLF_X23-60420.ISO
IP / ASN

104.21.22.3
File Overview
File TypeISO 9660 CD-ROM filesystem data 'MICROSOFT.HEVCVIDEOEXTENSIONS'
Size4.8 MB (4823040 bytes)
MD56a9521d65346fc605d34b7def49eba6e
SHA1cd7c59dfe8a818c5e63be3a3a9962cb0785c805f
Archive (1)
| Filename | MD5 | File type |
|---|---|---|
| Microsoft.HEVCVideoExtensions.Installer.x64.msi | 3365a6a0d71d287bf2a715c6f1105e06 | Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Installs HEVC Video Extensions, Author: Microsoft Corporation, Keywords: Installer, Comments: (c) Microsoft Corporation, Template: Intel;1033, Revision Number: {8E8AB0C0-DE5F-4A71-98AA-06BB84761F19}, Create Time/Date: Thu Jul 13 04:25:42 2023, Last Saved Time/Date: Thu Jul 13 04:25:42 2023, Number of Pages: 200, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2 |
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detect files is `SliverFox` malware |
| YARAhub by abuse.ch | malware | Detect files is `SliverFox` malware |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|