Report - dw23.malavida.com/dwn/7e8567518c6d329f19f12afe2e8fcfa850797c7f5715709bc8235e7d323e8b3c/SteamSetup.exe

Report Overview

Visitedpublic

2025-05-02 11:14:05

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
dw23.malavida.com	unknown	2001-05-31	2021-09-20	2025-04-27	569 B	2.3 MB	5.145.168.48

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

dw23.malavida.com/dwn/7e8567518c6d329f19f12afe2e8fcfa850797c7f5715709bc8235e7d323e8b3c/SteamSetup.exe

IP / ASN

5.145.168.48

#39020 Comvive Servidores S.L.

File Overview

File TypePE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive, 5 sections

Size2.3 MB (2296488 bytes)

MD570f3bc193dfa56b78f3e6e4f800f701f

SHA11e5598f2de49fed2e81f3dd8630c7346a2b89487

SHA2563b616cb0beaacffb53884b5ba0453312d2577db598d2a877a3b251125fb281a1

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/72

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET dw23.malavida.com/dwn/7e8567518c6d329f19f12afe2e8fcfa850797c7f5715709bc8235e7d323e8b3c/SteamSetup.exe

5.145.168.48

200 OK

2.3 MB

URL

dw23.malavida.com/dwn/7e8567518c6d329f19f12afe2e8fcfa850797c7f5715709bc8235e7d323e8b3c/SteamSetup.exe

IP / ASN

5.145.168.48

#39020 Comvive Servidores S.L.

Requested byN/A

Resource Info

File typePE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive, 5 sections

First Seen2023-04-07

Last Seen2025-05-02

Times Seen38

Size2.3 MB (2296488 bytes)

MD570f3bc193dfa56b78f3e6e4f800f701f

SHA11e5598f2de49fed2e81f3dd8630c7346a2b89487

SHA2563b616cb0beaacffb53884b5ba0453312d2577db598d2a877a3b251125fb281a1

Certificate Info

IssuerSectigo Limited

Subject*.malavida.com

Fingerprint0E:A4:67:B2:77:2B:67:7D:8D:19:55:4B:7C:AA:14:39:74:75:6D:E9

ValiditySun, 23 Jun 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/72

HTTP Headers

GET /dwn/7e8567518c6d329f19f12afe2e8fcfa850797c7f5715709bc8235e7d323e8b3c/SteamSetup.exe HTTP/1.1
Host: dw23.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 May 2025 11:13:33 GMT
server: Apache
accept-ranges: bytes
cache-control: public
x-robots-tag: noindex
last-modified: Sat, 18 May 2024 04:22:02 GMT
content-length: 2296488
content-type: application/x-dosexec
X-Firefox-Spdy: h2