Report - kt4.aksartindia.com/download/utilities/Awesome_Themes_for_Win_10_11.zip

Report Overview

Submitted URL
kt4.aksartindia.com/download/utilities/Awesome_Themes_for_Win_10_11.zip
IP
104.21.8.127
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-17 19:29:41
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
kt4.aksartindia.com	unknown	unknown	2024-03-23	2024-03-23	525 B	12 MB	104.21.8.127

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
kt4.aksartindia.com/download/utilities/Awesome_Themes_for_Win_10_11.zip
IP
104.21.8.127
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
12 MB (11494497 bytes)
Hash
5dd2dd6e7ae7ba639b692ef2b6d3f1a9
c5d0572b5da16ad7bb4e02c7b72fcf73cc5e60e1
2e2656188213e45009dedd4f6ed00c31620718d802fa02d7474885a8af687bca

Archive (24)

Filename

Md5

File type

[Setup] Awesome_Themes_for_Win_10_11.exe

79b862f83a5bfa3fb5011cabf9d47a63

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ControlzEx.dll

2d5035cb5a3678f2c2f5a889bd384813

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Hardcodet.Wpf.TaskbarNotification.dll

d5d708e9e7625ab2c4ac1c1faa099350

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

MahApps.Metro.dll

119333c03d1fe884ce2e3461f24a7162

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

MetroStatic

d585954859a6d002df967ffecf83e4da

7-zip archive data, version 0.4

Microsoft.WindowsAPICodePack.dll

ace419174e1e0c792d028f25f60d6e5f

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.WindowsAPICodePack.Shell.dll

18a46202a1636b985208e2183d756617

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

System.Windows.Interactivity.dll

e991d47605bc04629af29939ac2cc9b5

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

wdmode.exe

42badc1d2f03a8b1e4875740d3d49336

PE32 executable (console) Intel 80386, for MS Windows, 5 sections

YLLibs.dll

3744d4fd7ba093923174696b56d05f9f

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

ZoneList

cd9447ef8116a3103e002dc719b21f7c

ASCII text, with CRLF line terminators

Chinese(Simplified).png

18bd6697bc44bcfaa606aec883fdf1c4

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

Chinese(Simplified).xml

2ba8908901c62e486dc7d4ce5822acf3

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

English.png

00214d9e4e6155a04e3997d121641c98

PNG image data, 48 x 48, 8-bit colormap, non-interlaced

English.xml

7e940fedbc7fca82ef4f22275d1f773f

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (310), with CRLF line terminators

Italian.txt

ea118ce4a7d98cc1e8f3764b96a91bce

ASCII text, with CRLF line terminators

Korean.txt

cead61beda68930acb8d3741d12bbc90

ASCII text, with CRLF line terminators

Polish.png

464a2897bc125872878d68aef0ef18bf

PNG image data, 48 x 30, 8-bit/color RGBA, non-interlaced

Polish.xml

90c85da1a793104e89789e7d20356463

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (325), with CRLF line terminators

Portuguese (Brazil).png

e1e15cebb26738f77b3ef7bf363e158a

PNG image data, 40 x 28, 8-bit/color RGB, non-interlaced

Portuguese (Brazil).xml

50873071801aa9149f2995e3baae2006

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (332), with CRLF line terminators

Russian.png

32407c33f2a8c46d716d78164157e063

PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced

Russian.xml

f6fa2e722e5939899a26ccf55b7d857e

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (378), with CRLF line terminators

Turkish.xml

dce3b57fd8c845cfd7c98bca25271013

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (322), with CRLF line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

kt4.aksartindia.com/download/utilities/Awesome_Themes_for_Win_10_11.zip

104.21.8.127

200 OK

12 MB

URL User Request GET HTTP/2
kt4.aksartindia.com/download/utilities/Awesome_Themes_for_Win_10_11.zip
IP
104.21.8.127:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectaksartindia.com
Fingerprint02:0B:87:7A:C2:EB:29:75:AD:50:26:82:67:3B:36:24:47:F2:1A:DD
ValidityWed, 20 Mar 2024 20:40:34 GMT - Tue, 18 Jun 2024 20:40:33 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
12 MB (11494497 bytes)
Hash
5dd2dd6e7ae7ba639b692ef2b6d3f1a9
c5d0572b5da16ad7bb4e02c7b72fcf73cc5e60e1
2e2656188213e45009dedd4f6ed00c31620718d802fa02d7474885a8af687bca

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/61

HTTP Headers

GET /download/utilities/Awesome_Themes_for_Win_10_11.zip HTTP/1.1
Host: kt4.aksartindia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 19:29:13 GMT
content-type: application/zip
content-length: 11494497
last-modified: Sun, 14 Apr 2024 20:02:25 GMT
etag: "661c3651-af6461"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CYBbRTtRBAMASkeY8Yx4Jizn6UsSFga9P7PTyKVxjjv0AwXQaXr2THkpHvj7yErUOA2yCymlaQizhDyQXF7ek3Oe%2BLCboD%2BHe%2Fp4RM4nKxSxbBbBJZWvzB3M5fgY2u7orszEr3w3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875ed2984a56b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2