Report - www.cfd.co.jp/pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115

Report Overview

Submitted URL
www.cfd.co.jp/pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip
IP
143.204.55.86
ASN
#16509 AMAZON-02
Submitted
2024-04-20 05:36:36
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.cfd.co.jp	unknown	1998-06-19	2012-09-03	2024-04-15	555 B	11 MB	143.204.55.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.cfd.co.jp/pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip
IP
143.204.55.57
ASN
#16509 AMAZON-02

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
11 MB (11438097 bytes)
Hash
1b180ebf608899bd626dea8327c83a53
859d830ac14e63e9888d541d7b8dca93feaf633f
a987070028585a80e5b4b72c7551d5e52a35d4facbd45c2ac34b5cfa310a69f7

Archive (43)

Filename

Md5

File type

action.ico

0894091b5ae05ea992c8ca791a79a042

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

check.ico

4e03911f3354ef1e70d8b14b1e0791c1

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

drive.ico

319563cf96addbe2ea8c20c17e667814

MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel

dump.ico

5efacf5cbcda5cac9758af5efdc6bd7c

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

erase.ico

2ac59f22ea6b2e3e27e6c2564273eaec

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

exportlog.ico

5c25a34efd2da7c4c963c80032d28b0c

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

flashid.ico

25a1c4be4ddb905e8239c5c99fec941e

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

format.ico

093f03ba9905ea74652c3cb9c45d6683

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

fwdownload.ico

4ceebc701ce9605b69aaebca18a1818c

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

Greed.ico

6afd55ec47ad0d53a283aafa0c6f57d1

MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 8 bits/pixel

health.ico

abe3201f12da01c9eabc18e41c4de89b

MS Windows icon resource - 1 icon, 64x64, 8 bits/pixel

health123.ico

e39a7ce9dedeb0c93d16e35594675948

MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel

icon1.ico

a4580529063ee8920647e665a71b7256

MS Windows icon resource - 9 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 8 bits/pixel, 48x48, 8 bits/pixel

life.ico

335de74c0ab767a69197d8129b5b7333

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

mainbk.bmp

6950c47758246adbb978d793f2797f9c

PC bitmap, Windows 3.x format, 850 x 600 x 24, image size 1531200, resolution 2835 x 2835 px/m, cbSize 1531254, bits offset 54

msg_fail.ico

793207b955cbdfacacf329b926909e54

MS Windows icon resource - 4 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel

msg_ok.ico

59e46fe7dbc7cef90a4b35f1f04f689f

MS Windows icon resource - 1 icon, 48x24, 32 bits/pixel

msg_success.ico

edb1e79e51c89b1796ff121b8aa849f6

MS Windows icon resource - 4 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel

msg_warning.ico

6fdc7c5f25e08e21715ebc2fe4aca5a1

MS Windows icon resource - 4 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel

optimization.ico

2f881f3a38c1531488aea7c6853528cd

MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel

overprovision.ico

de72051d3d5e067039df9783ea6e49b7

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

Red.ico

adc7c8d6f30110cf94178a730c933aa6

MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 8 bits/pixel

reload.ico

52484bc7fa20013bc9899284263edd59

MS Windows icon resource - 1 icon, 40x40, 32 bits/pixel

searchfile.ico

97b00b3c21ca88431b95e56a50af8e75

MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel

select.ico

bb3ce0a9c4df2119cf6110ceaa5ad45f

MS Windows icon resource - 1 icon, 36x48, 32 bits/pixel

SSDMonitor.ico

4d4ffad5da0a299aa6e14245507ad9a9

MS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel

SSDMonitor.rc2

efb7919ff1436e81183704109646dc82

Unicode text, UTF-16, little-endian text, with CRLF line terminators

stateok.ico

decf9dd5ba47f09716c6d2e4525c3140

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

statewarning.ico

bc368d4dfdf8ad17a015a522001d0f32

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

subbk.bmp

e00978c59c83ef72ee7bade5fe753e9d

PC bitmap, Windows 3.x format, 660 x 430 x 24, cbSize 851454, bits offset 54

switchmode.ico

81ef4e787fabc05765c01dc6188bbc77

MS Windows icon resource - 1 icon, 48x48, 8 bits/pixel

switchmode2.ico

9302b296d94b7933b22ed251decae5f1

MS Windows icon resource - 1 icon, 48x48, 8 bits/pixel

system.ico

e227dfd271378272604e91cd9eda8155

MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel

temperature.ico

93e62d825f63bf500867c1a6f7c03702

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

trim.ico

f5b7e1a7f429ef13204520e1496200b4

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

uncheck.ico

3e275ceececd9578a1442ecde13cf9b5

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

utility.ico

bd82db63737a160e1cdff6b24acd9cbf

MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel

write.ico

c35bc1d7ae54d9a354c5336e46439625

MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel

RtsAtad.dll

0284f4fb103f6dd1c0b36cdfd0f55a83

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 12 sections

RtsNvmed.dll

f849b6ebb7341cb906a6620260129eda

PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 12 sections

RtsPpx.sys

7316f41f730579acb55ccdf851cdf133

PE32+ executable (native) x86-64, for MS Windows, 7 sections

SMART.ini

cddf737494d569f7e6093dcf026cfec2

Generic INItialization configuration [Attribute0]

SSDMonitor.exe

f19703061ecc4d79b837ee08cc16550c

PE32+ executable (GUI) x86-64, for MS Windows, 12 sections

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	signed_sys_with_vulnerablity

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	www.cfd.co.jp/pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip	143.204.55.57	200 OK	11 MB
URL User Request GET HTTP/2 www.cfd.co.jp/pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip IP 143.204.55.57:443 ASN #16509 AMAZON-02 Certificate IssuerGlobalSign nv-sa Subjectwww.cfd.co.jp Fingerprint75:0A:22:91:56:E4:0C:2E:34:4E:BE:81:5C:B0:6A:F1:5B:19:8B:F7 ValidityThu, 18 Jan 2024 02:41:01 GMT - Tue, 18 Feb 2025 02:41:00 GMT File type Zip archive data, at least v2.0 to extract, compression method=store Size 11 MB (11438097 bytes) Hash 1b180ebf608899bd626dea8327c83a53 859d830ac14e63e9888d541d7b8dca93feaf633f a987070028585a80e5b4b72c7551d5e52a35d4facbd45c2ac34b5cfa310a69f7 HTTP Headers GET /pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip HTTP/1.1 Host: www.cfd.co.jp User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/zip content-length: 11438097 date: Sat, 20 Apr 2024 05:36:06 GMT last-modified: Fri, 08 Mar 2024 08:27:58 GMT etag: "65eacc0e-ae8811" x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload accept-ranges: bytes server: Scutum x-cache: Miss from cloudfront via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: EsYDDbUe58V4gM33wcZQT7MWjLTx0bt2Kjw22ub9F24hXMft2VdxUQ== X-Firefox-Spdy: h2

www.cfd.co.jp/pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip

143.204.55.57

200 OK

11 MB

URL User Request GET HTTP/2
www.cfd.co.jp/pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip
IP
143.204.55.57:443
ASN
#16509 AMAZON-02

Certificate
IssuerGlobalSign nv-sa
Subjectwww.cfd.co.jp
Fingerprint75:0A:22:91:56:E4:0C:2E:34:4E:BE:81:5C:B0:6A:F1:5B:19:8B:F7
ValidityThu, 18 Jan 2024 02:41:01 GMT - Tue, 18 Feb 2025 02:41:00 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
11 MB (11438097 bytes)
Hash
1b180ebf608899bd626dea8327c83a53
859d830ac14e63e9888d541d7b8dca93feaf633f
a987070028585a80e5b4b72c7551d5e52a35d4facbd45c2ac34b5cfa310a69f7

HTTP Headers

GET /pim/series/__icsFiles/afieldfile/2024/03/08/SSDMonitor_Gaming_Mode_D_X64_20240115_1.zip HTTP/1.1
Host: www.cfd.co.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/zip
content-length: 11438097
date: Sat, 20 Apr 2024 05:36:06 GMT
last-modified: Fri, 08 Mar 2024 08:27:58 GMT
etag: "65eacc0e-ae8811"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
server: Scutum
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EsYDDbUe58V4gM33wcZQT7MWjLTx0bt2Kjw22ub9F24hXMft2VdxUQ==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (43)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers