Report Overview
Visitedpublic
2023-12-04 18:53:39
Tags
Submit Tags
URL
pkg.dl.mail.ru/packages/0_2002134distrib172/LeftToSurvive.exe
Finishing URL
about:privatebrowsing
IP / ASN
178.22.89.141
#47764 Mail.Ru LLC
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Host Summary

HostRankRegisteredFirst SeenLast Seen
pkg.dl.mail.ru
unknown1997-09-272014-10-07 16:11:432023-12-04 06:01:14
source.gc.my.games
unknown2019-02-152022-06-02 15:09:232023-12-04 06:01:21

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
low
178.22.88.61
Client IPET INFO Packed Executable Download
high
178.22.88.61
Client IPET POLICY PE EXE or DLL Windows file download HTTP
low
178.22.88.61
Client IPET INFO EXE IsDebuggerPresent (Used in Malware Anti-Debugging)

Threat Detection Systems

Public InfoSec YARA rules
SeverityIndicatorAlert
mediumsource.gc.my.games/from=front-6.pkg.ru.dl.srv/packages/0_2002134distrib172/LeftToSurvive.exefiles - file ~tmp01925d3f.exe

OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


File detected

URL
source.gc.my.games/from=front-6.pkg.ru.dl.srv/packages/0_2002134distrib172/LeftToSurvive.exe
IP / ASN
178.22.88.61
#47764 Mail.Ru LLC
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows\012- data
Size654 kB (653520 bytes)
MD5b66f86384224cd55e4fa1ee142ef5cc9
SHA1ea4b0e03e9069ea01fa619e006b676f86149b34f

Detections

AnalyzerVerdictAlert
YARAhub by abuse.chmalware
files - file ~tmp01925d3f.exe

JavaScript (0)

HTTP Transactions (2)

URLIPResponseSize