Report - drive.massgrave.dev/SW_DVD5_HEVC_Codec_64BIT_MultiLang_-11_MLF

Report Overview

Visitedpublic

2024-05-02 11:03:47

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
drive.massgrave.dev	unknown	2022-03-08	2023-08-27 09:08:24	2024-04-16 20:11:29	530 B	4.8 MB	104.21.22.3

Scan Date	Severity	Indicator	Alert
2024-05-02	medium	drive.massgrave.dev/SW_DVD5_HEVC_Codec_64BIT_MultiLang_-11_MLF_X23-60420.ISO	Detect files is `SliverFox` malware

No alerts detected

No alerts detected

No alerts detected

No alerts detected

No alerts detected

URL

drive.massgrave.dev/SW_DVD5_HEVC_Codec_64BIT_MultiLang_-11_MLF_X23-60420.ISO

IP / ASN

104.21.22.3

#13335 CLOUDFLARENET

File Overview

File TypeISO 9660 CD-ROM filesystem data 'MICROSOFT.HEVCVIDEOEXTENSIONS'

Size4.8 MB (4823040 bytes)

MD56a9521d65346fc605d34b7def49eba6e

SHA1cd7c59dfe8a818c5e63be3a3a9962cb0785c805f

SHA256c1969ef93dc42af42f4cc69ee92c611cc0a1c4fe6f0ce801a5d572374eed84b0

Archive (1)

Modified	Filename	Size	MD5	File type
2023-07-13 04:27	Microsoft.HEVCVideoExtensions.Installer.x64.msi	4.8 MB	3365a6a0d71d287bf2a715c6f1105e06	Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Code page: 1252, Title: Installation Database, Subject: Installs HEVC Video Extensions, Author: Microsoft Corporation, Keywords: Installer, Comments: (c) Microsoft Corporation, Template: Intel;1033, Revision Number: {8E8AB0C0-DE5F-4A71-98AA-06BB84761F19}, Create Time/Date: Thu Jul 13 04:25:42 2023, Last Saved Time/Date: Thu Jul 13 04:25:42 2023, Number of Pages: 200, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect files is `SliverFox` malware
YARAhub by abuse.ch	malware	Detect files is `SliverFox` malware

	URL	IP	Response	Size