Report - download.maxko.org/patch1703.zip

Report Overview

Submitted URL
download.maxko.org/patch1703.zip
IP
45.95.168.50
ASN
#211619 MAXKO d.o.o.
Submitted
2024-05-04 15:01:42
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
download.maxko.org	unknown	2010-01-16	2019-02-24	2019-02-24	402 B	4.0 MB	45.95.168.50

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
download.maxko.org/patch1703.zip
IP
45.95.168.50
ASN
#211619 MAXKO d.o.o.

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
4.0 MB (3950576 bytes)
Hash
9d27cf98c0403b07f6d75457bdd73812
1ba3de32dfc80e3c0be0f8c8b3ddb5ec73eecb4b
edf6146a756bd74fd6d6cb9823ba9a04c5babc74c2b1c3cc6bfdeb4804d133a1

Archive (9)

Filename

Md5

File type

maxko.dll

ba0b6104ac71453c1ecd87f5aa8dc25a

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

Option.exe

da0f814e0b4c538373ec03c485519e60

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Server.ini

cba50c86dce6856fb71ba5f2859951e4

Windows setup INFormation

Max.exe

b613446f35e621946cb66a540d4b235c

PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, 6 sections

item_org_us.tbl

6b185f1a574076c452f2c98934c904d9

data

Quest_Content_us.tbl

b7cbff4bf5f7e01c4865424bb6e32858

data

Quest_Menu_us.tbl

f09802be3d54728a43bad4dd6249907c

data

Quest_Talk_us.tbl

36e2fdcae08916721cb9600fb32fdde2

data

Web_Address_us.tbl

a344898949deef6775b73f2108df0395

data

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 36/67

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

download.maxko.org/patch1703.zip

45.95.168.50

200 OK

4.0 MB

URL User Request GET HTTP/1.1
download.maxko.org/patch1703.zip
IP
45.95.168.50:80
ASN
#211619 MAXKO d.o.o.

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
4.0 MB (3950576 bytes)
Hash
9d27cf98c0403b07f6d75457bdd73812
1ba3de32dfc80e3c0be0f8c8b3ddb5ec73eecb4b
edf6146a756bd74fd6d6cb9823ba9a04c5babc74c2b1c3cc6bfdeb4804d133a1

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 36/67

HTTP Headers

GET /patch1703.zip HTTP/1.1
Host: download.maxko.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 15:01:36 GMT
Server: Apache/2.4.47 (Win64) OpenSSL/1.1.1k PHP/7.4.19
Last-Modified: Mon, 10 Apr 2017 14:52:40 GMT
ETag: "3c47f0-54cd12081a0a1"
Accept-Ranges: bytes
Content-Length: 3950576
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (9)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers