Report - blackcatsystems.com/download/CarrierSleuthBeta.zip

Report Overview

Submitted URL
blackcatsystems.com/download/CarrierSleuthBeta.zip
IP
216.92.10.68
ASN
#7859 PAIR-NETWORKS
Submitted
2024-03-28 23:42:58
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
blackcatsystems.com	unknown	1998-11-17	2012-07-25	2024-03-25	504 B	21 MB	216.92.10.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
blackcatsystems.com/download/CarrierSleuthBeta.zip
IP
216.92.10.68
ASN
#7859 PAIR-NETWORKS

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
21 MB (20943451 bytes)
Hash
8353e93e17ad177c41f9b40f2730520f
4926e3598f0beb1969d84278e3aaf366b2e8b914
fe2f1deecc7ffd475ed0595c7c7361cc6e3fb99ada8a5772010064b362a8573d

Archive (97)

Filename

Md5

File type

Carrier Sleuth Docs.pdf

88fdff5f0a81d5534f302380f9fdb949

PDF document, version 1.3, 8 pages

._Carrier Sleuth Docs.pdf

decd675a1bfe296a70cd78de88f3dcdc

AppleDouble encoded Macintosh file

CodeResources

fb55087f9b3c595c06e0ea99066db309

XML 1.0 document, ASCII text

Carrier Sleuth

3ac36ccbc4d6e75d05a8388f59795083

Carrier Sleuth Docs.pdf

88fdff5f0a81d5534f302380f9fdb949

PDF document, version 1.3, 8 pages

cursor1.png

94d42c977455f9da3c3232df7489287f

PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced

App.icns

6de4adaf27098b64e157f7684fb5a5d2

Mac OS X icon, 1028134 bytes, "TOC " type

MBS_Images_PNG_Plugin_20159.dylib

4a96df9d9a3fe43ae665f428c177ad59

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Picture_PictureEditor_Plugin_20159.dylib

e3610d92c691580423bf8788a54f97cf

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Images_GIF_Plugin_20159.dylib

96745ec2b811afbcb957dbe909f09f5a

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Main_NSBase_Plugin_20159.dylib

79e9baed4459c2d25ff876b9617580f4

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_MacCocoa_NSProcessInfo_Plugin_20159.dylib

1df16a006c198bcd94ef54e9f2eef9dd

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Util_Memory_Plugin_20159.dylib

fcd2c3d07613b73f83900526cb5c1e5c

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Main_Registration_Plugin_20159.dylib

b50a6e0ec13637338c2b2b3ca499eb54

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

InternetEncodings.dylib

3d4e67aadc1e7225d3b205597fbd6dec

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>

libxojolibtest.dylib

fc776ebcd4b5e15506d5501035393e6c

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>

XojoFramework

45dc537dd1d862825789344d469acc37

ASCII text, with no line terminators

Resources

e58c4cf10cc7c8ef7d7167ccb641aeb4

ASCII text, with no line terminators

CodeResources

80b535c731a3342c154b9c00440fd84f

XML 1.0 document, ASCII text

XojoFramework

966419e42217c7a81f2d204985983f90

Localizable.strings

b59cc40069f77e6124be0032ecfa9d07

Unicode text, UTF-16, little-endian text

Localizable.strings

f3481b5fbd50286c945e73f6e096de60

Unicode text, UTF-16, little-endian text

Localizable.strings

d7ad6c94b070648c5097374d08028a7c

Unicode text, UTF-16, little-endian text

Localizable.strings

dcc081fb7ec740c28b089e5df123abe8

Unicode text, UTF-16, little-endian text

Localizable.strings

7581a82d256b3e76aa7707a55265819f

Unicode text, UTF-16, little-endian text

XOJTooltipController.nib

de28e487ec5e7fef5ce8a978a7608906

Apple binary property list

Localizable.strings

180f6f73e2948929a402018d20682c81

Unicode text, UTF-16, little-endian text

AllDirectionsCursor.pdf

bb2bc5c92beef0a0067ced4652470206

PDF document, version 1.3, 1 pages

ScrubberKnob.tiff

bdb860b3beb5bbb627d6824c33d892f5

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberKnob@2x.png, orientation=upper-left, width=20

Localizable.strings

232827f6b3b9ebf0e4ccc41f628b95ec

Unicode text, UTF-16, little-endian text

InfoPlist.strings

51ef59b60e5b41b91519cc662a9fe886

Unicode text, UTF-16, little-endian text

Cursors.plist

b297b404681cbef3e57aef45648b3d88

XML 1.0 document, ASCII text

Localizable.strings

3800d73f15e011776d61da9b93ffb566

Unicode text, UTF-16, little-endian text

InvisibleCursor.png

bfba9387fc60fd1b6da70e29abc2afcf

PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced

XOJPrintProgressDialog.nib

4cf6b92f50fc7e54786d465238ddcec1

Apple binary property list

Localizable.strings

505ea00483ad2ac7099fb589cc2a055c

Unicode text, UTF-16, little-endian text

NorthWestSouthEastCursor.pdf

1493dcafea1108131daf1fba38161b30

PDF document, version 1.3, 1 pages

Localizable.strings

53b2e0644dd6d444628129a9f702cf1b

Unicode text, UTF-16, little-endian text

NorthEastSouthWestCursor.pdf

dd2953ace5524b0bb987d0481fd12de5

PDF document, version 1.3, 1 pages

VolumeWindow.tiff

a82fd83ff572be5ab1fc10ec79af5f0b

TIFF image data, big-endian, direntries=21, height=228, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeWindow@2x.png, orientation=upper-left, width=44

Localizable.strings

4e3819474b07bad9562537e5c66ac88b

Unicode text, UTF-16, little-endian text

ScrubberTrackUnloadedMiddle.tiff

3598ae5a64091272589f2111d63e6498

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedMiddle@2x.png, orientation=upper-left, width=2

Localizable.strings

fde49cab125b00288f6ca00f03a7f96f

Unicode text, UTF-16, little-endian text

VolumeLow.tiff

4eb5c8f9e545a2e06630bffd3d925fe5

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeLow@2x.png, orientation=upper-left, width=36

ScrubberTrackLoadedRight.tiff

ed28edca850860bd20a6067f628745e6

TIFF image data, big-endian, direntries=21, height=10, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedRight.png, orientation=upper-left, width=5

StepForward.tiff

e914ccf012a3cff98d9711c924cb92fb

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=StepForward@2x.png, orientation=upper-left, width=36

Localizable.strings

3f7363c0235fb135f5186b5242172bbe

Unicode text, UTF-16, little-endian text

Localizable.strings

655d4afb5acb0797d287108e69dd9efc

Unicode text, UTF-16, little-endian text

ScrubberTrackLoadedLeft.tiff

2a3042eae5255d2728b07fb62e570bb7

TIFF image data, big-endian, direntries=21, height=10, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedLeft.png, orientation=upper-left, width=5

VolumeMuted.tiff

ed154db993d019749b90033df1596148

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeMuted.png, orientation=upper-left, width=18

Localizable.strings

cc228f834bc97a9d5c77842875a4e3a7

Unicode text, UTF-16, little-endian text

VolumeSliderKnob.tiff

3dd195e36627d5e336dd0f62a3654017

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeSliderKnob@2x.png, orientation=upper-left, width=20

ControllerBackgroundLeft.tiff

b2ed3facab8b221f45967c14e5e15b61

TIFF image data, big-endian, direntries=21, height=24, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundLeft.png, orientation=upper-left, width=1

NorthSouthCursor.pdf

f645ef1f149970f7058dc0d59de6d70e

PDF document, version 1.3, 1 pages

Localizable.strings

abc2b635fac66d11c8d76999b239a656

Unicode text, UTF-16, little-endian text

Play.tiff

8845460891f28c386c8b46ffb01edc06

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=Play.png, orientation=upper-left, width=18

MagnifyLargerCursor.pdf

a2eb385c6f33138e2d00e4ad711e7449

PDF document, version 1.3, 1 pages

Localizable.strings

fc597195dc6836628b8ecbf15f2be3a3

Unicode text, UTF-16, little-endian text

Pause.tiff

e29f9d3e74958211c6e7f3081ebe948e

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=Pause.png, orientation=upper-left, width=18

Localizable.strings

899c446b74bc8d5caeb09f8132f8ba16

Unicode text, UTF-16, little-endian text

Localizable.strings

6d0719d6df7dd72172069a13115aafed

Unicode text, UTF-16, little-endian text

VolumeSliderTrack.tiff

84b2ef7801676d9233081ce6ee069464

TIFF image data, big-endian, direntries=21, height=160, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeSliderTrack@2x.png, orientation=upper-left, width=20

ControllerBackgroundRight.tiff

475e90eb76155a369b642cf0ba5ff3bf

TIFF image data, big-endian, direntries=21, height=24, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundRight.png, orientation=upper-left, width=1

Localizable.strings

82be4675d302ed14c908710ace94884e

Unicode text, UTF-16, little-endian text

ScrubberTrackUnloadedLeft.tiff

e72f1de724716c4d73ab6aa2169672cd

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedLeft@2x.png, orientation=upper-left, width=10

Localizable.strings

b1e0b199966a92658596d73d341e1721

Unicode text, UTF-16, little-endian text

ControllerBackgroundMiddle.tiff

2d039ab5cdd7409604085ea957efdfaf

TIFF image data, big-endian, direntries=21, height=24, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ControllerBackgroundMiddle.png, orientation=upper-left, width=1

ScrubberTrackUnloadedRight.tiff

86515f9dd072dc90fc6670e6d90f036f

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackUnloadedRight@2x.png, orientation=upper-left, width=10

Localizable.strings

7f3041eb81a083a86670fa88a935a2c9

Unicode text, UTF-16, little-endian text

VolumeMedium.tiff

d2fc1d1888e200b1c144bf6db536f6df

TIFF image data, big-endian, direntries=21, height=18, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeMedium.png, orientation=upper-left, width=18

ScrubberTrackLoadedMiddle.tiff

545096b8615c9d62e024cf8440f1494e

TIFF image data, big-endian, direntries=21, height=20, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=ScrubberTrackLoadedMiddle@2x.png, orientation=upper-left, width=2

Localizable.strings

61370612caec41039c377a93fa2baf4d

Unicode text, UTF-16, little-endian text

Localizable.strings

f90fc16bbe8b14d898f62119986c9700

Unicode text, UTF-16, little-endian text

Localizable.strings

c4c70e682a3000c92260d06115305284

Unicode text, UTF-16, little-endian text

Localizable.strings

bdc016a8017c16f5121d9199eb1841b3

Unicode text, UTF-16, little-endian text

MagnifySmallerCursor.pdf

2f6bac08a82db441b126d2662cddf4ae

PDF document, version 1.3, 1 pages

MacWaitCursor.pdf

cac7271f53e54d946f42a307e5e84b76

PDF document, version 1.3, 1 pages

VolumeHigh.tiff

f2cde2b6af5347fa907d2c7dc015c9d7

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeHigh@2x.png, orientation=upper-left, width=36

StepBackward.tiff

1bdf93f8b3d1b746deff20350cab06cd

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=StepBackward@2x.png, orientation=upper-left, width=36

Localizable.strings

0f1ed3b877eba2aad51546a2cd8a0f88

Unicode text, UTF-16, little-endian text

FileTypeChooser.nib

c037d312b059dc38b25eac76ca19609e

Apple binary property list

Localizable.strings

3b8bbed753ffb6b4633733d2e60393e7

Unicode text, UTF-16, little-endian text

Info.plist

684bdebf18f8d0169cc4e13fb5647216

XML 1.0 document, Unicode text, UTF-8 text

VolumeOff.tiff

9fbe0ce03f6922fe345051ef56d6c265

TIFF image data, big-endian, direntries=21, height=36, bps=0, compression=LZW, PhotometricInterpretation=RGB, description=VolumeOff@2x.png, orientation=upper-left, width=36

Localizable.strings

df086e5a6add93e244074288811b0453

Unicode text, UTF-16, little-endian text

Localizable.strings

5f25c3d03283fa2e886de46d565e1a3a

Unicode text, UTF-16, little-endian text

EastWestCursor.pdf

c5844782128516fc7cc7552ad91aad02

PDF document, version 1.3, 1 pages

Current

7fc56270e7a70fa81a5935b72eacbe29

very short file (no magic)

MBS_Picture_PicturePaletteTransform_Plugin_20159.dylib

4c36194aae37458201115d4204f4c383

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Picture_PictureRotate_Plugin_20159.dylib

65117469c16b34ae4a899f950ffce9bd

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

Crypto.dylib

c69fe36cd972583dadd3dc12dffce384

Mach-O 64-bit x86_64 bundle, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK>

MBS_ChartDirector_ChartDirector6_Plugin_20159.dylib

4d25965d1c28aee8480aede32a2588e3

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

MBS_Util_SystemInformation_Plugin_20159.dylib

9c1e09ec73a1486f9f922a008ca2c08b

Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|BINDS_TO_WEAK|NO_REEXPORTED_DYLIBS>

Info.plist

80e290a8d05dcee2e829897c222a99e4

XML 1.0 document, Unicode text, UTF-8 text

PkgInfo

23b7d7d024abb0f558420e098800bf27

ASCII text, with no line terminators

.DS_Store

1109a6226776d0f0e7d2c33d4c645f24

Apple Desktop Services Store

._.DS_Store

f0d9d90674bab5908378533975df5a01

AppleDouble encoded Macintosh file

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

	URL	IP	Response	Size
	blackcatsystems.com/download/CarrierSleuthBeta.zip	216.92.10.68	200 OK	21 MB
URL User Request GET HTTP/1.1 blackcatsystems.com/download/CarrierSleuthBeta.zip IP 216.92.10.68:443 ASN #7859 PAIR-NETWORKS Certificate IssuerSectigo Limited Subjectblackcatsystems.com Fingerprint61:82:4E:BF:41:F8:66:84:13:3E:9C:B7:DD:16:90:BF:F2:91:44:AA ValiditySun, 10 Dec 2023 00:00:00 GMT - Thu, 09 Jan 2025 23:59:59 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 21 MB (20943451 bytes) Hash 8353e93e17ad177c41f9b40f2730520f 4926e3598f0beb1969d84278e3aaf366b2e8b914 fe2f1deecc7ffd475ed0595c7c7361cc6e3fb99ada8a5772010064b362a8573d HTTP Headers `GET /download/CarrierSleuthBeta.zip HTTP/1.1 Host: blackcatsystems.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 28 Mar 2024 23:42:25 GMT Server: Apache Last-Modified: Thu, 25 Jan 2024 12:49:28 GMT ETag: "13f925b-60fc49c30c25c" Accept-Ranges: bytes Content-Length: 20943451 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/zip`

blackcatsystems.com/download/CarrierSleuthBeta.zip

216.92.10.68

200 OK

21 MB

URL User Request GET HTTP/1.1
blackcatsystems.com/download/CarrierSleuthBeta.zip
IP
216.92.10.68:443
ASN
#7859 PAIR-NETWORKS

Certificate
IssuerSectigo Limited
Subjectblackcatsystems.com
Fingerprint61:82:4E:BF:41:F8:66:84:13:3E:9C:B7:DD:16:90:BF:F2:91:44:AA
ValiditySun, 10 Dec 2023 00:00:00 GMT - Thu, 09 Jan 2025 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
21 MB (20943451 bytes)
Hash
8353e93e17ad177c41f9b40f2730520f
4926e3598f0beb1969d84278e3aaf366b2e8b914
fe2f1deecc7ffd475ed0595c7c7361cc6e3fb99ada8a5772010064b362a8573d

HTTP Headers

GET /download/CarrierSleuthBeta.zip HTTP/1.1
Host: blackcatsystems.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 28 Mar 2024 23:42:25 GMT
Server: Apache
Last-Modified: Thu, 25 Jan 2024 12:49:28 GMT
ETag: "13f925b-60fc49c30c25c"
Accept-Ranges: bytes
Content-Length: 20943451
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/zip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (97)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers