Report Overview
Visitedpublic
2024-11-29 18:36:54
Tags
Submit Tags
URL
cdn.discordapp.com/attachments/1309838208644677724/1312124407182921788/JJSploit_8.10.11_x64_en-US.msi?ex=674b5a94&is=674a0914&hm=a799c1a7d35d6678c2c587d9b1d5e941d213eb50a4f709c12f548517bb771a69&
Finishing URL
about:privatebrowsing
IP / ASN
162.159.129.233
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
cdn.discordapp.com 1 alert(s) on this Host | 2474 | 2015-02-26 | 2015-08-24 | 2024-11-27 | 648 B | 5.2 MB | 162.159.135.233 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-11-29 | medium | cdn.discordapp.com/attachments/1309838208644677724/1312124407182921788/JJSploit_8.10.11_x64_en-US.msi?ex=674b5a94&is=674a0914&hm=a799c1a7d35d6678c2c587d9b1d5e941d213eb50a4f709c12f548517bb771a69& | Detect files is `SliverFox` malware |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Mnemonic Secure DNS
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
cdn.discordapp.com/attachments/1309838208644677724/1312124407182921788/JJSploit_8.10.11_x64_en-US.msi?ex=674b5a94&is=674a0914&hm=a799c1a7d35d6678c2c587d9b1d5e941d213eb50a4f709c12f548517bb771a69&
IP / ASN
162.159.135.233
File Overview
File TypeComposite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation Database, Subject: JJSploit, Author: wearedevs, Keywords: Installer, Comments: This installer database contains the logic and data required to install JJSploit., Template: x64;0, Revision Number: {53B0328C-7AE1-4800-ABD5-278D50F3D8F4}, Create Time/Date: Sat Nov 9 19:29:46 2024, Last Saved Time/Date: Sat Nov 9 19:29:46 2024, Number of Pages: 450, Number of Words: 2, Name of Creating Application: Windows Installer XML Toolset (3.14.1.8722), Security: 2
Size5.2 MB (5214208 bytes)
MD5190d3be205525ee48e3ca0a3d6fce256
SHA1cdf09c9b04b8e6ed1ce6ea017ee821cbd6e53ba5
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detect files is `SliverFox` malware |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|