Report Overview

  1. Visited public
    2023-12-10 11:27:26
    Tags
  2. URL

    199.120.69.158/data/0401f514ec3e96d0/edgedl.me.gvt1.com/edgedl/release2/update2/jgnknrjrfdvcoampp646fadxfa_1.3.36.332/GoogleUpdateSetup.exe

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    199.120.69.158

    #53347 PREMIER-COMMUNICATIONS

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
2

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
edgedl.me.gvt1.com1292008-03-032021-04-03 00:39:572023-12-09 18:54:10
199.120.69.158unknownunknown2023-01-17 18:45:312023-01-21 23:36:17

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IP 199.120.69.158
ET INFO Executable Download from dotted-quad Host

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
medium199.120.69.158Sinkholed

ThreatFox

No alerts detected


Files detected

  1. URL

    edgedl.me.gvt1.com/edgedl/release2/update2/jgnknrjrfdvcoampp646fadxfa_1.3.36.332/GoogleUpdateSetup.exe

  2. IP

    34.104.35.123

  3. ASN

    #15169 GOOGLE

  1. File type

    PE32 executable (GUI) Intel 80386, for MS Windows - data

    Size

    1.4 MB (1382960 bytes)

  2. Hash

    83da7ad5f1fd77f03e46daf070cff71f

    b5d89ee5dc0c1995f29c29723964f471d53ea154

JavaScript (0)

HTTP Transactions (2)

URLIPResponseSize
199.120.69.158/data/0401f514ec3e96d0/edgedl.me.gvt1.com/edgedl/release2/update2/jgnknrjrfdvcoampp646fadxfa_1.3.36.332/GoogleUpdateSetup.exe
199.120.69.158302 Found0 B
edgedl.me.gvt1.com/edgedl/release2/update2/jgnknrjrfdvcoampp646fadxfa_1.3.36.332/GoogleUpdateSetup.exe
34.104.35.123200 OK1.4 MB