Report - www.paehl.de/checkdisk

Report Overview

Submitted URL
www.paehl.de/checkdisk_32bit.zip
IP
62.108.32.133
ASN
#30962 comtrance service GmbH
Submitted
2024-04-24 10:21:25
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.paehl.de	unknown	unknown	2012-05-21	2024-04-13	486 B	556 kB	62.108.32.133

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.paehl.de/checkdisk_32bit.zip
IP
62.108.32.133
ASN
#30962 comtrance service GmbH

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
556 kB (556108 bytes)
Hash
4a77dca607fd1c6acd1e99cb6dc868e2
df62dfea1278fe50a8ed49697b7556cf4fdb3eac
4996eeedaaf3971ba81fda8a950c4a4a1940f3b4ab747fc2840e1f888f972fdd

Archive (24)

Filename

Md5

File type

translate.xml

2431b6effb0169b35a53e6351085fc45

ISO-8859 text, with CRLF line terminators

translate.xml

1ee4989d309878ab819f4c243457f232

ASCII text, with CRLF line terminators

readme.txt

d59b9b84ba23e7e587d52044e55b7bd2

ASCII text, with CRLF line terminators

checkDisk.exe

55b5cf1976a3a01b526133ad0a8e4cd7

PE32 executable (GUI) Intel 80386, for MS Windows, 3 sections

translate_info.txt

5aa637f4e9fbe4a1edb0430acb3c87b0

ASCII text, with CRLF line terminators

translate.xml

28f20ce02f503dbb7f11694ac5e88c3f

ISO-8859 text, with CRLF line terminators

translate.xml

b9a104e3690014ad287bcd78d8deb658

ISO-8859 text, with CRLF line terminators

translate.xml

0647842d82ae84e4d009b5c5b5624e59

ISO-8859 text, with CRLF line terminators

translate.xml

8a77b497bb5b141e4bdccd48d31a2437

ISO-8859 text, with CRLF line terminators

translate.xml

da39818f7b3d67cef2b8ea43752004cd

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

translate.xml

5cbcc2d4687a434b342fda5284618303

Unicode text, UTF-16, little-endian text, with CRLF line terminators

translate.xml

fb6cb5be3ebdbe6bd6e2f06aa038cd2e

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

new_lang.cfg

eb8de835e41569e838729be827eb53e6

ASCII text, with no line terminators

translate.xml

dc686dca9290a3248a26ac8b3fbf5d69

Non-ISO extended-ASCII text, with CRLF line terminators

translate.xml

01927d86472cae07cbf9f80b3e2536e5

ISO-8859 text, with CRLF line terminators

translate.xml

4c13bcb79ec18ec4711c75fdd26d0b75

Unicode text, UTF-8 text, with CRLF line terminators

new_lang.cfg

dcbcc129fa34b5049f20129889e4ba9c

ASCII text, with CRLF line terminators

translate.xml

c2df10f6beb96bdd1c66d83944ec3e3e

ISO-8859 text, with CRLF line terminators

new_lang.cfg

b830f40038db1275ef8d21aa35a3f0a0

ASCII text, with CRLF line terminators

translate.xml

64c4cae674ef01018ffd2b3d65579b3f

ISO-8859 text, with CRLF line terminators

new_lang.cfg

334417d794d2821e75253a8294937946

ASCII text, with CRLF line terminators

translate.xml

b7d57f2a7f634c43009b9e2ce4eeb933

Unicode text, UTF-8 text, with CRLF line terminators

translate.xml

e761fcc9afd65ed61f5e0c36b767bbf1

Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

translate.xml

5420a5ddcbe07c74999152c3213ab5f6

ISO-8859 text, with CRLF line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 3/64

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

www.paehl.de/checkdisk_32bit.zip

62.108.32.133

200 OK

556 kB

URL User Request GET HTTP/2
www.paehl.de/checkdisk_32bit.zip
IP
62.108.32.133:443
ASN
#30962 comtrance service GmbH

Certificate
IssuerLet's Encrypt
Subjectpaehl.de
Fingerprint6B:FF:C6:6A:FC:40:AE:B3:BC:FB:5F:83:3B:F1:8B:4E:59:B6:37:FA
ValidityTue, 19 Mar 2024 12:22:42 GMT - Mon, 17 Jun 2024 12:22:41 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
556 kB (556108 bytes)
Hash
4a77dca607fd1c6acd1e99cb6dc868e2
df62dfea1278fe50a8ed49697b7556cf4fdb3eac
4996eeedaaf3971ba81fda8a950c4a4a1940f3b4ab747fc2840e1f888f972fdd

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 3/64

HTTP Headers

GET /checkdisk_32bit.zip HTTP/1.1
Host: www.paehl.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 10:20:57 GMT
content-type: application/zip
content-length: 556108
last-modified: Fri, 16 Dec 2022 16:56:20 GMT
etag: "639ca334-87c4c"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (24)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers