Report - www.maazl.de/project/pm123/pm123-1.41a1-debug.zip

Report Overview

Submitted URL
www.maazl.de/project/pm123/pm123-1.41a1-debug.zip
IP
202.61.232.247
ASN
#197540 netcup GmbH
Submitted
2024-05-05 06:48:37
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.maazl.de	unknown	unknown	2023-10-26	2023-10-26	503 B	5.3 MB	202.61.232.247

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.maazl.de/project/pm123/pm123-1.41a1-debug.zip
IP
202.61.232.247
ASN
#197540 netcup GmbH

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
5.3 MB (5348558 bytes)
Hash
aab2afd433a37666737177d98a7ece9a
db1fd624b7ada65d368aa3be270a635f2c6198b4
5c8ce8dc9857eec9581aaabe460bce220a934c59c740d94955173e1becdadee7

Archive (66)

Filename

Md5

File type

cddaplay.dll

8d6e826ee666d45810f2f809a45b9f7f

MS-DOS executable, LX for OS/2 (DLL) i80386

COPYING.html

9ed8854b63f80f2f52f196bbb723d10a

ASCII text, with CRLF line terminators

COPYRIGHT.html

89d17d9f2e37ef9f55c64e69cf49eb0a

ASCII text, with CRLF line terminators

default.skn

7b3ba3382ea2fd3f1c51b57798c7d033

Non-ISO extended-ASCII text, with CRLF line terminators

fft123.dll

989b55f6047447afa66be83c42a2d334

MS-DOS executable, LX for OS/2 (DLL) i80386

flac123.dll

07b27ba4cc1b45ec38fa8f1726ff4bdb

MS-DOS executable, LX for OS/2 (DLL) i80386

foldr123.dll

cc91bc97d136c9e274902bd5fdcb2cd2

MS-DOS executable, LX for OS/2 (DLL) i80386

history.html

8fcc8e01205dfacee9f0aadd85333f86

HTML document, ASCII text, with CRLF line terminators

aif.ico

ff3b2c45b44375e33cb9cf8d4597ba8e

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

au.ico

1a0d0c146d0fedd25540b439ed002220

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

avr.ico

a0ae394107a9732285c0af38e57e0a05

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

caf.ico

b0caae71df1392ba68c587198804c1ab

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

iff.ico

774d3f73d9284e83989d2f9f0de9ef7b

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

lst.ico

583de7ac38bb70068a9b7b3564608a4a

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

m3u.ico

94cb8b27b4a89620807200b1805ad3a0

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

m3u8.ico

94cb8b27b4a89620807200b1805ad3a0

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

mat.ico

d5c589c833f8743028d7764789b70673

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

mp1.ico

944676c7f697f2dace6a2b235b32828a

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

mp2.ico

9829c6ce1b62987088a0d0ab90fa175d

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

mp3.ico

6d104c7e77c1e8587878166795b95a84

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

mpl.ico

390d7c2f51124d2357818de874f7730b

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

ogg.ico

558255d677d9a560a89f7d5a1e1c2b44

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

paf.ico

ec6c426347ba84c2884a2cc9654906be

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

pls.ico

f2f4eee48c6eee2ecd99e2b2c1145ac1

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

pvf.ico

05d690867083deecfb7a1af8ba5bfe49

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

sd2.ico

9ad703566734b2824609caf4eb8ee3be

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

sds.ico

05b4e23d83c7a40dd493f1748637b5cc

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

sf.ico

94508d8d03d483bd9361ce0f63b92cfa

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

voc.ico

b312ac0d674bbcac080855110eac564c

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

w64.ico

6cee2b3b5edca572b6804a4738f34e2e

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

wav.ico

745294dc2d072915eb9809688e18f1e1

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

xi.ico

e8b4e33149ca962e19f9c5ed3365a24f

OS/2 graphic array, cbSize 40, data offset 72; 1st OS/2 1.x color icon 32 x 32, hotspot 16x16, cbSize 26, bits offset 288

makewps.cmd

9adbbcdc0c9531a4d4683f48d5bf9652

OS/2 REXX batch file, ASCII text, with CRLF line terminators

mpg123.dll

e3d8095ad91681e2f7bb5fa077ed63ed

MS-DOS executable, LX for OS/2 (DLL) i80386

oggplay.dll

b6d7064dc4437a19eaf770ee1133c419

MS-DOS executable, LX for OS/2 (DLL) i80386

os2audio.dll

078b2d437b4c6c8bc7cff4e8a086e15d

MS-DOS executable, LX for OS/2 (DLL) i80386

os2rec.dll

1cc2f7147a6db31a2e88dc7618a8e0b6

MS-DOS executable, LX for OS/2 (DLL) i80386

config.h

2ceb95041982a2c7896c4bc5fed4b2f2

C source, ASCII text, with CRLF line terminators

config_gcc.h

084fbbe8535d57092c3aa3e08c61724d

C source, ASCII text, with CRLF line terminators

config_icc_30.h

03e83e5f83eeab3c27e16a3936a35c20

C source, ASCII text, with CRLF line terminators

config_icc_36.h

b700c5de83b9c5b9cfa3fc3d9026dd88

C source, ASCII text, with CRLF line terminators

config_wcc.h

0060149357ed968c8a24cfb225f631cc

C source, ASCII text, with CRLF line terminators

decoder_plug.h

74ca8e21ca020f1ec6eca7b2ece595e7

C source, ASCII text, with CRLF line terminators

fft123.h

59e2b8f2b168f90a77fdd62519ca8783

C source, ASCII text, with CRLF line terminators

fft123.lib

fa93b2f22112ea1c3468894ccfaf20f9

Microsoft Visual C/OMF library, page size 16, at 0xc00 dictionary with 5 blocks (FFLAG=0x68) 1st entry fftwf_plan_dft_r2c_1d in page 31 case sensitive, 2nd record "fftwf_plan_many_r2r", 3rd record COMMENT class=0xa0 OMF extensions IMPDEF ordinal fftwf_plan_many_r2r exported by FFT123

fft123.pdf

076e9aeb2b840297105a3f52a7a582a3

PDF document, version 1.3, 6 pages

filter_plug.h

7618abb94dd4ba02d80d606f941e05fc

C source, ASCII text, with CRLF line terminators

format.h

5c1082158f35fa99ab03b8bc58223030

C source, ASCII text, with CRLF line terminators

output_plug.h

c0c19ce3c033453a5e735b8aa34d883e

C source, ASCII text, with CRLF line terminators

plugin.h

b52138392ee26f1f238cd62db6c63302

C source, ASCII text, with CRLF line terminators

pm123_pdk.inf

de0ecc9c3da93c2131c8a6e13fa1c3d4

OS/2 HLP (PM123 Plug-in Developer's Guide)

visual_plug.h

6a11fda1ee220e4400622cf48393b907

C source, ASCII text, with CRLF line terminators

xio123.h

61d77b926f7860e501bd033d0c5243d6

C source, ASCII text, with CRLF line terminators

xio123.lib

a334ae0e3e92c91aa9854023142be9c4

Microsoft Visual C/OMF library, page size 16, at 0xc00 dictionary with 5 blocks (FFLAG=0x54) 1st entry xio_http_proxy in page 60 case sensitive, 2nd record "xio_connect_timeout", 3rd record COMMENT class=0xa0 OMF extensions IMPDEF ordinal xio_connect_timeout exported by XIO123

plist123.dll

aa7079324bf3c6d1339031d1546e47b4

MS-DOS executable, LX for OS/2 (DLL) i80386

pm123.exe

35c34a0fc0a656a562c8c5ace664e22a

MS-DOS executable, LX for OS/2 (GUI) i80386

pm123.inf

8f055a554c216536bfb0cb2b95f0ee20

OS/2 HLP (PM123 User's Manual)

pulse123.dll

1dad6b1602af2725757922c49662fa6f

MS-DOS executable, LX for OS/2 (DLL) i80386

realeq.dll

73b242a4d3b7baa28487b27b0fa59c83

MS-DOS executable, LX for OS/2 (DLL) i80386

skinutil.exe

71c2cfecc81d23acc30d85a9007bab3d

MS-DOS executable, LX for OS/2 (console) i80386

analyzer.dll

91916ea3706d7d384702ae992332754c

MS-DOS executable, LX for OS/2 (DLL) i80386

wavout.dll

4af28d512a290c878d43d60d81c64260

MS-DOS executable, LX for OS/2 (DLL) i80386

wavplay.dll

bf5a250295ce0db749b53ac5172e2f19

MS-DOS executable, LX for OS/2 (DLL) i80386

xio123.dll

8beb5340d4c05de67c080f453a083695

MS-DOS executable, LX for OS/2 (DLL) i80386

zlb123.dll

03252aedcc3b8adaf6d88be3cb13532f

MS-DOS executable, LX for OS/2 (DLL) i80386

entries

3ea5ec356b0aee54a01469a8ad5213ee

ASCII text

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

www.maazl.de/project/pm123/pm123-1.41a1-debug.zip

202.61.232.247

200 OK

5.3 MB

URL User Request GET HTTP/2
www.maazl.de/project/pm123/pm123-1.41a1-debug.zip
IP
202.61.232.247:443
ASN
#197540 netcup GmbH

Certificate
IssuerLet's Encrypt
Subjectmaazl.de
Fingerprint67:33:2B:A2:D9:4F:9A:83:7A:90:BE:89:D2:7B:73:1E:6F:A3:F2:ED
ValidityMon, 01 Apr 2024 17:52:19 GMT - Sun, 30 Jun 2024 17:52:18 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
5.3 MB (5348558 bytes)
Hash
aab2afd433a37666737177d98a7ece9a
db1fd624b7ada65d368aa3be270a635f2c6198b4
5c8ce8dc9857eec9581aaabe460bce220a934c59c740d94955173e1becdadee7

HTTP Headers

GET /project/pm123/pm123-1.41a1-debug.zip HTTP/1.1
Host: www.maazl.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 06:48:08 GMT
content-type: application/zip
content-length: 5348558
last-modified: Sat, 23 Mar 2024 14:27:25 GMT
etag: "65fee6cd-519cce"
accept-ranges: bytes
X-Firefox-Spdy: h2