Report Overview
Visitedpublic
2025-05-09 18:01:49
Tags
Submit Tags
URL
www.screenpresso.com/binaries/releases/v2-1-36-000/dotnet47/Screenpresso.exe
Finishing URL
about:privatebrowsing
IP / ASN
46.105.204.6
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
www.screenpresso.com 1 alert(s) on this Host | 418263 | 2009-10-07 | 2014-02-19 | 2025-05-08 | 544 B | 20 MB | 46.105.204.6 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2025-05-09 | medium | www.screenpresso.com/binaries/releases/v2-1-36-000/dotnet47/Screenpresso.exe | Detect pe file that no import table |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
www.screenpresso.com/binaries/releases/v2-1-36-000/dotnet47/Screenpresso.exe
IP / ASN
46.105.204.6
File Overview
File TypePE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Size20 MB (20305408 bytes)
MD5b7c11d5ff35e493f874c62caeafbe364
SHA1283500c62f94b437e30f038a0368bf56b955769d
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detect pe file that no import table |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|