Report - download.wdc.com/windlg/WinDlg_v1

Report Overview

Visitedpublic

2025-01-29 02:44:20

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
download.wdc.com	858494	1992-05-15	2012-07-26	2025-01-22	506 B	975 kB	143.204.55.13

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

download.wdc.com/windlg/WinDlg_v1_29.zip

IP / ASN

143.204.55.13

#16509 AMAZON-02

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=deflate

Size975 kB (974733 bytes)

MD5058f85466226797a8c70474869211192

SHA1fee0ec3861e395d03011ddeb81a36405741bec6a

SHA256323b779033a609f1f6a7a849ccf7d2d4041549101fc51019eacc877eafed99d3

Archive (6)

Modified	Filename	Size	MD5	File type
2014-02-27 19:06	help.htm	17 kB	01797928930cc6c91b9dd8544e59998d	HTML document, ASCII text, with CRLF line terminators
2015-06-15 11:31	Public Release Notes.doc	104 kB	26dd7575ea661a404b864b1cb978bbff	Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1252, Author: Nick Garnett, Template: Normal.dotm, Last Saved By: wdc, Revision Number: 74, Name of Creating Application: Microsoft Office Word, Total Editing Time: 06:00:00, Create Time/Date: Thu Apr 23 16:59:00 2009, Last Saved Time/Date: Mon Jun 15 18:31:00 2015, Number of Pages: 7, Number of Words: 784, Number of Characters: 4470, Security: 0
2015-06-15 10:47	setup.exe	590 kB	0c1d9b8c02df00e85d3a56e0d5e06558	PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections
2014-03-03 19:09	smart.htm	18 kB	f9f76b4c23d6fda588565d1ef4ced41f	HTML document, Non-ISO extended-ASCII text, with CRLF line terminators
2015-06-15 09:53	WinDlg.exe	897 kB	14518178f13bbcad0ac494094b73fd0a	PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections
2015-06-15 10:35	WinDlg.txt	8.1 kB	5fe14be5cfda53c88015cfbc94cae6ea	Non-ISO extended-ASCII text, with CRLF line terminators

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Scans presence of the found strings using the in-house brute force method

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	GET download.wdc.com/windlg/WinDlg_v1_29.zip	143.204.55.13	200 OK	975 kB
URL download.wdc.com/windlg/WinDlg_v1_29.zip IP / ASN 143.204.55.13 #16509 AMAZON-02 Requested byN/A Resource Info File typeZip archive data, at least v2.0 to extract, compression method=deflate First Seen2024-08-29 Last Seen2025-01-29 Times Seen2 Size975 kB (974733 bytes) MD5058f85466226797a8c70474869211192 SHA1fee0ec3861e395d03011ddeb81a36405741bec6a SHA256323b779033a609f1f6a7a849ccf7d2d4041549101fc51019eacc877eafed99d3 Certificate Info IssuerAmazon Subjectdownload.wdc.com FingerprintBC:EB:75:AD:7A:74:33:9D:55:9A:EE:41:44:E7:A7:04:A1:33:36:DC ValidityTue, 11 Jun 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT HTTP Headers `GET /windlg/WinDlg_v1_29.zip HTTP/1.1 Host: download.wdc.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/zip Content-Length: 974733 Connection: keep-alive Date: Tue, 28 Jan 2025 14:39:27 GMT Last-Modified: Wed, 27 Apr 2016 21:51:06 GMT ETag: "058f85466226797a8c70474869211192" x-amz-storage-class: INTELLIGENT_TIERING x-amz-version-id: null Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: D8fj7T5bcFXjL1cv8PyB7KQb0TLnnVjJZGW8uQgONninJSg6gfRimw== Age: 43463

GET download.wdc.com/windlg/WinDlg_v1_29.zip

143.204.55.13

200 OK

975 kB

URL

download.wdc.com/windlg/WinDlg_v1_29.zip

IP / ASN

143.204.55.13

#16509 AMAZON-02

Requested byN/A

Resource Info

File typeZip archive data, at least v2.0 to extract, compression method=deflate

First Seen2024-08-29

Last Seen2025-01-29

Times Seen2

Size975 kB (974733 bytes)

MD5058f85466226797a8c70474869211192

SHA1fee0ec3861e395d03011ddeb81a36405741bec6a

SHA256323b779033a609f1f6a7a849ccf7d2d4041549101fc51019eacc877eafed99d3

Certificate Info

IssuerAmazon

Subjectdownload.wdc.com

FingerprintBC:EB:75:AD:7A:74:33:9D:55:9A:EE:41:44:E7:A7:04:A1:33:36:DC

ValidityTue, 11 Jun 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

HTTP Headers

GET /windlg/WinDlg_v1_29.zip HTTP/1.1
Host: download.wdc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/zip
Content-Length: 974733
Connection: keep-alive
Date: Tue, 28 Jan 2025 14:39:27 GMT
Last-Modified: Wed, 27 Apr 2016 21:51:06 GMT
ETag: "058f85466226797a8c70474869211192"
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: D8fj7T5bcFXjL1cv8PyB7KQb0TLnnVjJZGW8uQgONninJSg6gfRimw==
Age: 43463