Report Overview
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
ocsp.godaddy.com | 698 | 1999-03-02 | 2012-05-20 21:28:57 | 2023-10-31 05:09:26 | 330 B | 2.6 kB | 192.124.249.24 |
upanel.fastlinegames.com | unknown | 2022-06-01 | 2022-06-24 15:37:17 | 2023-11-01 02:02:53 | 521 B | 2.6 MB | 148.113.6.74 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
Scan Date | Severity | Indicator | Alert |
---|---|---|---|
2023-11-01 | medium | upanel.fastlinegames.com/required/v5.7.9/FLG_v5.7.9_x32.exe?68=46 | Detects malware by known bad imphash or rich_pe_header_hash |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
upanel.fastlinegames.com/required/v5.7.9/FLG_v5.7.9_x32.exe?68=46
IP
148.113.6.74
ASN
#0
File type
PE32 executable (GUI) Intel 80386, for MS Windows\012- data
Size
2.6 MB (2606984 bytes)
Hash
e25c38ab30eb63bc7d748a49d52bcc7f
d7980535097b94b4241e2c107aced77339124e1d
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public Nextron YARA rules | malware | Detects malware by known bad imphash or rich_pe_header_hash |
VirusTotal | suspicious |
JavaScript (0)
HTTP Transactions (2)
URL | IP | Response | Size | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
ocsp.godaddy.com/ | 192.124.249.24 | 2.1 kB | |||||||||||
HTTP Headers
| |||||||||||||
upanel.fastlinegames.com/required/v5.7.9/FLG_v5.7.9_x32.exe?68=46 | 148.113.6.74 | 200 OK | 2.6 MB | ||||||||||
Detections
HTTP Headers
| |||||||||||||