Report Overview
Visitedpublic
2024-12-24 16:11:06
Tags
Submit Tags
URL
neverfall.one/download/net8.0-windows.zip
Finishing URL
about:privatebrowsing
IP / ASN
76.76.21.21
#16509 AMAZON-02
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Host Summary

HostRankRegisteredFirst SeenLast Seen
neverfall.one
unknown2024-12-112024-12-242024-12-24

Related reports

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


File detected

URL
neverfall.one/download/net8.0-windows.zip
IP / ASN
76.76.21.21
#16509 AMAZON-02
File Overview
File TypeZip archive data, at least v2.0 to extract, compression method=store
Size11 MB (11336059 bytes)
MD5ba24a0583691faf2fe674896310e826a
SHA1c9c06dd8e7a0cc8ed1fe13c03d82beab9bdcb87f
Archive (249)
FilenameMD5File type
1205_2.icobacd4a20e337d9ce56d5e6b7aac6d472MS Windows icon resource - 30 icons, 256x256, 32 bits/pixel, 256x256, 32 bits/pixel
libcrypto-3-x64.dllbe0f6d1d60e149cedaca33a04963e05fPE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
libssl-3-x64.dll733e3b58ee1760a442fec4712848c3adPE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
Xeno.dllec9869d9931e7b80c907d0a05d03f071PE32+ executable (DLL) (console) x86-64, for MS Windows, 6 sections
xxhash.dll70c514826d9428f184d27f0c8f397404PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
zstd.dll5b96fb0d4e6453680da278f5b7e51a29PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
cver.txt495063beeac89309a2247ce9c13ed292ASCII text, with no line terminators
cxapis.dlld60ed50bd25555f3004d33b0655afc9cPE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 2 sections
FaisalAPI.dll8dd8a35d1a8336389f3f1839e266352fPE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Guna.UI2.dllb429ae86c5be521bc8ca3b164cec3acbPE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Injector.exe31ec6f010e896718994e4ef100f3f39ePE32+ executable (console) x86-64, for MS Windows, 6 sections
Microsoft.Web.WebView2.Core.dlla53ba26a25f78f512cb2f393f9c96463PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Microsoft.Web.WebView2.Core.xmlf1d6fa1200cfbe57881605b03aec371fXML 1.0 document, ASCII text, with very long lines (1219), with CRLF line terminators
Microsoft.Web.WebView2.WinForms.dll97b823df48a222490e6f5ded50d8bd25PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Microsoft.Web.WebView2.WinForms.xmlc09409aac254f17c1c648e6f0464b035XML 1.0 document, ASCII text, with very long lines (565), with CRLF line terminators
Microsoft.Web.WebView2.Wpf.dllea666d4e676af786b0b8d7cbd3cb7aedPE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Microsoft.Web.WebView2.Wpf.xml5041fbf857f14bd56cb6ff35619424a4XML 1.0 document, ASCII text, with very long lines (560), with CRLF line terminators
Module.dllc610b0e9a85e7369ad6db8b83e99cf41PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections
Multiple_ROBLOX.exe386c46dfa8855fcc09b4318e17376f78PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
NA.exe31ec6f010e896718994e4ef100f3f39ePE32+ executable (console) x86-64, for MS Windows, 6 sections
NeverAPI.dll39d40fe41534642005c6c6f90690736aPE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
NeverFall.exea88071e392199a0b372f1237ea3ab78dPE32+ executable (GUI) x86-64, for MS Windows, 12 sections
Newtonsoft.Json.dlladf3e3eecde20b7c9661e9c47106a14aPE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Debug.lnk0ab208f76d6f66bbf1d53e62eda620dbMS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Unicoded, MachineID desktop-29qiltn, EnableTargetMetadata, Directory, ctime=Thu Dec 5 15:03:13 2024, atime=Tue Dec 24 15:53:26 2024, mtime=Tue Dec 24 15:52:50 2024, length=0, window=normal, IDListSize 0x01e8, Root folder "B4BFCC3A-DB2C-424C-B029-7FE99A87C641", LocalBasePath "C:\Users\asus\Desktop\Files\Source Code\WinFormsApp1\bin\Debug"
System.Management.dll76e0aaa7182e77403bf6fe2af8d90f28PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
WebView2Loader.dlld18bd21907b26ff857e739948eff1087PE32+ executable (DLL) (console) Aarch64, for MS Windows, 7 sections
WebView2Loader.dllc9a5d0f278d57d83a03404b8baeeac64PE32+ executable (DLL) (console) x86-64, for MS Windows, 10 sections
WebView2Loader.dll7254e511f7bbc49652079d1bb2c737f1PE32 executable (DLL) (console) Intel 80386, for MS Windows, 6 sections
series.datefd15ca59897f8e7172f32f5e49047a8ASCII text, with no line terminators
System.Management.dll1c71e5310151ce1e9a3a92797776bdadPE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
WinFormsApp1.deps.json393627f9ef7f6b2779a4d9e4f9cdfde7JSON text data
WinFormsApp1.dllc6cc2c512b1231c66b96b3c3710b472ePE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
metadatad41d8cd98f00b204e9800998ecf8427e
settings.dat46f3d08e139e5fa4e38d9bb5345e066ddata
throttle_store.dat9e4e94633b73f4a7680240a0ffd6cd2cASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
index54cb446f628b2ea4a5bce5769910512edata
the-real-index50abc877bc854783c65daf330d0c8d6bdata
index54cb446f628b2ea4a5bce5769910512edata
the-real-indexd8684cfa7b741eaecf22bbb97cfbee05data
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
data_0cf89d16bb9107c631daabf0c0ee58efbFoxPro FPT, blocks size 512, next free block index 3284796609, field type 0
data_1f50f89a0a91564d0b8a211f8921aa7dedata
data_20962291d6d367570bee5454721c17e11data
data_341876349cb12d6db992f1309f22df3f0data
index2f65ff8be9666d0af8f29a7cbc05ff79data
data_0cf89d16bb9107c631daabf0c0ee58efbFoxPro FPT, blocks size 512, next free block index 3284796609, field type 0
data_1f50f89a0a91564d0b8a211f8921aa7dedata
data_20962291d6d367570bee5454721c17e11data
data_341876349cb12d6db992f1309f22df3f0data
index0b7073266fc29471a96639a64fc36f9cdata
DIPSde6318a2e388b7d7a50755d882aa0185SQLite 3.x database, last written using SQLite version 3046000, file counter 1, database pages 9, cookie 0x4, schema 4, UTF-8, version-valid-for 1
DIPS-journald41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
EdgeHubAppUsageSQLite.dbf76022c9eb6da0c106c17d7dea4df277SQLite 3.x database, last written using SQLite version 3046000, file counter 5, database pages 8, cookie 0x5, schema 4, UTF-8, version-valid-for 5
EdgeHubAppUsageSQLite.db-journald41d8cd98f00b204e9800998ecf8427e
000003.log51a2cbb807f5085530dec18e45cb8569data
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGf55a1d0e83c44a6c2fbaaaaf2c3d7442ASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
000003.log51a2cbb807f5085530dec18e45cb8569data
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOG31bfbd8986643e17e1966f8c4cee476aASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
000003.log891a884b9fa2bff4519f5f56d2a25d62data
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOG30044e43ddd5251aec46589e17b5f525ASCII text
LOG.oldf9fc62d503129b29fddc5f272444dfcbASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
ExtensionActivityCompd25d5e1dc1d93430e64ee17e48ce442eSQLite 3.x database, last written using SQLite version 3046000, file counter 1, database pages 1, cookie 0x1, schema 4, UTF-8, version-valid-for 1
ExtensionActivityComp-journald41d8cd98f00b204e9800998ecf8427e
ExtensionActivityEdge045d83499804e4725dbb720cd0a98b63SQLite 3.x database, last written using SQLite version 3046000, file counter 2, database pages 8, cookie 0x8, schema 4, UTF-8, version-valid-for 2
ExtensionActivityEdge-journald41d8cd98f00b204e9800998ecf8427e
Faviconsbabd43551f1b29eb82e221460676126aSQLite 3.x database, last written using SQLite version 3046000, page size 2048, file counter 1, database pages 10, cookie 0x8, schema 4, UTF-8, version-valid-for 1
Favicons-journald41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
data_0cf89d16bb9107c631daabf0c0ee58efbFoxPro FPT, blocks size 512, next free block index 3284796609, field type 0
data_1f50f89a0a91564d0b8a211f8921aa7dedata
data_20962291d6d367570bee5454721c17e11data
data_341876349cb12d6db992f1309f22df3f0data
indexb1a7828d15eb94f4236bf26230a41d01data
heavy_ad_intervention_opt_out.db023fd485a16aeb668e5426a8060153a8SQLite 3.x database, last written using SQLite version 3046000, file counter 2, database pages 4, cookie 0x2, schema 4, UTF-8, version-valid-for 2
heavy_ad_intervention_opt_out.db-journald41d8cd98f00b204e9800998ecf8427e
Historyc77e3d0b59e286bc3b50eff7cb8f464cSQLite 3.x database, last written using SQLite version 3046000, file counter 1, database pages 46, cookie 0x26, schema 4, UTF-8, version-valid-for 1
History-journald41d8cd98f00b204e9800998ecf8427e
000003.logd41d8cd98f00b204e9800998ecf8427e
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOG0ca6eeb5193eb0721c5f45e5f42c19f3ASCII text
LOG.old66ce220acd151153b5bbd991a9c36516ASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
Login Datacf0d378139d518ac262a5cb0979f238dSQLite 3.x database, last written using SQLite version 3046000, page size 2048, file counter 1, database pages 21, cookie 0xc, schema 4, UTF-8, version-valid-for 1
Login Data-journald41d8cd98f00b204e9800998ecf8427e
Cookiesa156bfab7f06800d5287d4616d6f8733SQLite 3.x database, last written using SQLite version 3046000, file counter 7, database pages 5, cookie 0x5, schema 4, UTF-8, version-valid-for 7
Cookies-journald41d8cd98f00b204e9800998ecf8427e
Network Persistent Statef8a3ed2fe55035c747ef43727f691858JSON text data
NetworkDataMigratedd41d8cd98f00b204e9800998ecf8427e
SCT Auditing Pending Reportsd751713988987e9331980363e24189ceJSON text data
Sdch Dictionaries20d4b8fa017a12a108c87f540836e250JSON text data
Trust Tokensd59c2d0f794872da30b2170ff414b3a3SQLite 3.x database, last written using SQLite version 3046000, file counter 4, database pages 9, cookie 0x7, schema 4, UTF-8, version-valid-for 4
Trust Tokens-journald41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGd41d8cd98f00b204e9800998ecf8427e
LOG.oldd41d8cd98f00b204e9800998ecf8427e
Preferencesa5042169fabf03607208ceb849f75fafJSON text data
README643e00b0186aa80523f8a6bed550a925ASCII text, with no line terminators
NetworkDataMigratedd41d8cd98f00b204e9800998ecf8427e
Safe Browsing Cookiesa156bfab7f06800d5287d4616d6f8733SQLite 3.x database, last written using SQLite version 3046000, file counter 7, database pages 5, cookie 0x5, schema 4, UTF-8, version-valid-for 7
Safe Browsing Cookies-journald41d8cd98f00b204e9800998ecf8427e
Secure Preferences3177d8cfd5a4ccac33fa8ab91d6187f4JSON text data
000003.logd41d8cd98f00b204e9800998ecf8427e
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGc148f37b57bb11b43de64dba6d41b7cfASCII text
LOG.old8d09e591b3a5481fb7ab1b8c69870348ASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
index54cb446f628b2ea4a5bce5769910512edata
the-real-index891b8926001c254c2b0b45eadb6aceb7data
dbb581f0ff8f8aa3371ae47b48c95329e8SQLite 3.x database, last written using SQLite version 3046000, file counter 2, database pages 11, cookie 0x8, schema 4, UTF-8, version-valid-for 2
db-journald41d8cd98f00b204e9800998ecf8427e
SharedStorageb9263bbf24428aaca95d04d04f3aeb6fSQLite 3.x database, last written using SQLite version 3046000, writer version 2, read version 2, file counter 1, database pages 1, cookie 0, schema 0, unknown 0 encoding, version-valid-for 1
000003.logd41d8cd98f00b204e9800998ecf8427e
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOG16a474680d43d9ac75b1e952f4fec942ASCII text
LOG.old54acdb9cebdfbc14369c094bc5e9f4c4ASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
000003.logeb0319b9d7562ded35299566bd9e7f5cdata
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGe88f85ce5f068b6cda0cbb574e1031ecASCII text
LOG.oldd19b436002577b3cf5624db5e5322b4aASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
000003.log148079685e25097536785f4536af014bdata
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOG737a574aa10ab9745714393bc9b8b389ASCII text
LOG.old61f25439513698cb820db0da5c899cb3ASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
000003.log90881c9c26f29fca29815a08ba858544data
CURRENT46295cac801e5d4857d09837238a6394ASCII text
LOCKd41d8cd98f00b204e9800998ecf8427e
LOGe94738b06332e36968bfe6252b775819ASCII text
LOG.old37fb407e8f825f6fecfdd87bef239854ASCII text
MANIFEST-0000015af87dfd673ba2115e2fcf5cfdb727abOpenPGP Secret Key
Visited Linksb41c31e314d37003846f91074e8a3309data
Web Datafe2574aca0f7b6aa69adc49bd91208aeSQLite 3.x database, last written using SQLite version 3046000, page size 2048, file counter 3, database pages 103, cookie 0x40, schema 4, UTF-8, version-valid-for 3
Web Data-journald41d8cd98f00b204e9800998ecf8427e
Last Version758f170ce858048a0f2c2e2f486ce17fASCII text, with no line terminators
Local State041652cb340e2a7a331db2c51f568c9cJSON text data
data_0cf89d16bb9107c631daabf0c0ee58efbFoxPro FPT, blocks size 512, next free block index 3284796609, field type 0
data_1f50f89a0a91564d0b8a211f8921aa7dedata
data_20962291d6d367570bee5454721c17e11data
data_341876349cb12d6db992f1309f22df3f0data
indexe62db0fdb55276cfb9c034de6a8fd964data
Variationsbc6142469cd7dadf107be9ad87ea4753JSON text data
WinFormsApp1.pdbba8dbce9724e48d0e4e6cb671ba66fa2Microsoft Roslyn C# debugging symbols version 1.0
WinFormsApp1.runtimeconfig.json186a65581e2f29258f54d396660409faJSON text data
appendfile.txt260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
getcustomasset.txt260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
isfile.txt260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
test_1.txt260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
test_2.txt260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
loadfile.txt8fa14cdd754f91cc6554c9e71929cce7very short file (no magic)
readfile.txt260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
writefile260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
writefile.txt260ca9dd8a4577fc00b7bd5810298076ASCII text, with no line terminators
1205_2.icobacd4a20e337d9ce56d5e6b7aac6d472MS Windows icon resource - 30 icons, 256x256, 32 bits/pixel, 256x256, 32 bits/pixel
212c1198a1beacf31150a8cf339ba288-cache.lua7e7285a9fb23d820d3287de1f247973cJavaScript source, ASCII text, with very long lines (65208)
2529a5f9dfddd5523ca4e22f21cceffa-cache.lua677f110008383ffe9a245c1616395796JavaScript source, ASCII text, with very long lines (65208)
621129760.txt81458dce4cbedf80a4c11f716d224a43JSON text data
admin.lua727b09f7da97df9cf7eb1bbe0eb19fedASCII text, with no line terminators
arsenal.luab8420ab18cdbdf195d9279064a3ffd3fASCII text, with CRLF line terminators
be50103986192f45d151557134487cbb-cache.lua0f302433ac460085e17909f66ce1647cJavaScript source, ASCII text, with very long lines (65208)
bladeball.lua1ed57fae525301cbdf089ad35498dbf4ASCII text, with no line terminators
c4ce76cd36f2afee4dcee7e87576e5fa-cache.luaaae323efcc51180c3222b9757135c4adJavaScript source, ASCII text, with very long lines (65208)
combatwarrior.luac37781ff7dbebe5e7f832c4916fc2107ASCII text, with CRLF line terminators
command_from_lua.txt43781db5c40ecc39fd718685594f0956ASCII text, with no line terminators
config.yamle2a97c9f094f35e6c9064a7431523d91ASCII text, with CRLF line terminators
counterblox.lua4ac595b2a8056a30dece8f4e0e7c572eASCII text, with no line terminators
Configuration.json5a3c5a350de59d8655e4ff1a375062b1JSON text data
Drawing.jsondf77f0a42d7606ae7419842de0de9802JSON text data
FFJHub_Key.txt28b4ea40b289758fc59943fe6929072bASCII text, with no line terminators
IY_FE.iyb799b140f74549fa7f044a8e88d84f4cJSON text data
kat.lua4095201e85633b622264d93ffd2dd483ASCII text, with no line terminators
KavoConfig.JSON99914b932bd37a50b983c5e7c90ae93bJSON text data
mm2.lua24656a136cc247508be158a2b0917346ASCII text, with no line terminators
offenseware.key80893843f5313f0a5cee7d77c10ebe4aASCII text, with no line terminators
options.jsonb2e73fd2050c185a87741943774a82f4JSON text data
proxy1.luaa46fdbc0103e359f26c714ae7787706bJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
proxy2.lua30b7260f92c5bc376090e9031098429dJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
proxy3.luac424e430162e3cae668962277d71e0c4JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
RyboweConfig.rfld968fb131711c748a5d433fb7afaf0b16JSON text data
series.dat681bdf09f9967b0d1d87b5eb9ecec40fASCII text, with no line terminators
Settings.json6ec1da5657d2f22ba0d0f4f8325b35b6JSON text data
config777.jsonc196e21946a5c2ba7e5ec52bab4e54a5JSON text data
legit.json574b426699efeaf2fd93ec89ba536b2dJSON text data
legit1.jsonb30238c43f50fca06d9b7d572d4d2da5JSON text data
legit22.json5b424975ce43435e4c1c607608140689JSON text data
legit22222.jsondb30aa11d3cddcf940f1cfcf78f2c9ddJSON text data
legitik111.json83aceba7db0dffd0c059a34b2d9150ddJSON text data
legitttttttttttttt.json8b789b01dcc59a8cb756bf5df283a01aJSON text data
maiinn.json26d19222cb4cc50522b86195146ac93eJSON text data
main.json50a0f1c21c17b1d915ea108d645b688bJSON text data
main1337.jsona15316a612a42eb4617c51038cc76928JSON text data
main2.jsone075e4ddb7435a5354c6772f8f4f8a5cJSON text data
main32.jsoncb8cbdc42ef0e594af6a4703f1f81dc6JSON text data
ns.jsond6fb28bcdfe11fd55d636a7dbcd20a12JSON text data
key.txt93be968ca7d54232997a97b83c833b51ASCII text, with no line terminators
sysbroke.lua48c4c5836e73dc633146bae341c620eeASCII text, with no line terminators
temp_1733866457.634921.txt9b94c70451ed2ad626f2ea120ae8ab2eAudio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural
temp_1733866457.6350536.txt690a57733ee4e9461c8a1f4a14c63860Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural
Mercy688b0cbcf06a4d120e3380beb2631989JSON text data
RussianLanguageb326b5062b2f0e69046810717534cb09ASCII text, with no line terminators
universal.lua222e1df9237e7fd2795a40fda0d7a514ASCII text, with CRLF line terminators
142823291.jsona6f7358264085827eb8919f825a3ee49JSON text data
zeeroxhubran.jsonb1f4f9a523e36fd969f4573e25af4540ASCII text, with no line terminators

Detections

AnalyzerVerdictAlert
YARAhub by abuse.chmalware
Detect pe file that no import table
Public Nextron YARA rulesmalware
Detects suspicious executable with reference to a Discord attachment (often used for malware hosting on a legitimate FQDN)
Public Nextron YARA rulesmalware
Detects suspicious executable with reference to a Discord attachment (often used for malware hosting on a legitimate FQDN)
YARAhub by abuse.chmalware
files - file ~tmp01925d3f.exe
YARAhub by abuse.chmalware
files - file ~tmp01925d3f.exe
YARAhub by abuse.chmalware
files - file ~tmp01925d3f.exe

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize