Report - s3.amazonaws.com/awesomeminer-download/z-enemy-2.4-win-cuda10.0.zip

Report Overview

Visited public
2023-11-01 06:08:09
Tags
URL
s3.amazonaws.com/awesomeminer-download/z-enemy-2.4-win-cuda10.0.zip
Finishing URL
about:privatebrowsing
IP / ASN
52.217.171.8
#16509 AMAZON-02
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
s3.amazonaws.com	unknown	2005-08-18	2020-05-13 22:53:44	2023-09-21 00:21:58	523 B	15 MB	54.231.233.104
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12 22:43:53	2023-10-31 12:25:03	340 B	942 B	143.204.53.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
s3.amazonaws.com/awesomeminer-download/z-enemy-2.4-win-cuda10.0.zip
IP
54.231.233.104
ASN
#0

File type
Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size
15 MB (15061700 bytes)
Hash
aaca8b443c5d053ec829b9e21ee0a77e
30ef3bc1f202d315429c0adfc7ae98f6f15a48e6
3ee88191f6d92d3db2173e6cf072e0741440486801333bbc1bbd0b83bc5127cb

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 15/65

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

ocsp.r2m01.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d813dfc0a799a7151bfc3b6c1e81e4d1
7b457ec030b131d52635fecf5866156bde4abc26
9ab7148c1f93b2a32c1aa2cf8220ecb0ee740e2f21b0dc0b933ed54a60f92351

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 01 Nov 2023 06:07:50 GMT
Last-Modified: Wed, 01 Nov 2023 05:12:10 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NWsEnbGSi7GE8tJ8lqbG-a9xTrT0qkje4hv1OKsqBC5MtYS_Q_HNWg==
Age: 3340

s3.amazonaws.com/awesomeminer-download/z-enemy-2.4-win-cuda10.0.zip

54.231.233.104

200 OK

15 MB

URL User Request GET HTTP/1.1
s3.amazonaws.com/awesomeminer-download/z-enemy-2.4-win-cuda10.0.zip
IP
54.231.233.104:443
ASN
#0

Certificate
IssuerAmazon
Subjects3.amazonaws.com
FingerprintA6:0A:22:E1:56:35:ED:0D:1D:46:99:79:4D:17:07:70:1F:EE:1D:B6
ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size
15 MB (15061700 bytes)
Hash
aaca8b443c5d053ec829b9e21ee0a77e
30ef3bc1f202d315429c0adfc7ae98f6f15a48e6
3ee88191f6d92d3db2173e6cf072e0741440486801333bbc1bbd0b83bc5127cb

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 15/65

HTTP Headers

GET /awesomeminer-download/z-enemy-2.4-win-cuda10.0.zip HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: vOqoodWMcUnWJxiVxj0dU6dkRTc4RdafpJtbNGYDra2WbLDbwFgne5/o0mhEY4sB1tk78slIPIs=
x-amz-request-id: 6YH1SGSPCS3E7W1W
Date: Wed, 01 Nov 2023 06:07:52 GMT
Last-Modified: Mon, 13 Jan 2020 15:47:24 GMT
ETag: "cfd2e9079a28c00f98c39232fb0f9bd0-2"
Accept-Ranges: bytes
Content-Type: application/x-zip-compressed
Server: AmazonS3
Content-Length: 15061700

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (0)

HTTP Transactions (2)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers