Report - steamauthenticator.net/SDA-1.0.15.zip

Report Overview

Visitedpublic

2024-03-21 09:42:21

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
steamauthenticator.net	unknown	2022-02-25	2022-02-25 23:08:10	2024-02-19 14:51:40	491 B	866 kB	172.67.202.163
aus5.mozilla.org	2548	1998-01-24	2015-10-27 08:06:24	2024-03-21 05:09:55	511 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

steamauthenticator.net/SDA-1.0.15.zip

IP / ASN

172.67.202.163

#13335 CLOUDFLARENET

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=deflate

Size865 kB (864831 bytes)

MD51adc28e495c838479dd4af71a2d72648

SHA1898885d21b13e70ca32f925866aa0d23cf05b223

SHA25630f2233525bda284fc0955c0c8108c1031a794006b913ff6872c50ebe2b5bbf3

Archive (15)

Modified	Filename	Size	MD5	File type
2022-05-20 16:49	Flurl.xml	46 kB	e07b94ccfa4a5c0239e9f807e5b60e49	XML 1.0 document, ASCII text, with CRLF line terminators
2023-03-08 10:09	Newtonsoft.Json.dll	712 kB	195ffb7167db3219b217c4fd439eedd6	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
2023-03-08 10:05	Newtonsoft.Json.xml	714 kB	d398ffe9fdac6a53a8d8bb26f29bbb3c	XML 1.0 document, ASCII text, with CRLF line terminators
2024-02-27 13:44	Steam Desktop Authenticator.exe	1.5 MB	d184795199f40197629696332c8c881a	PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows, 2 sections
2023-06-26 16:37	Steam Desktop Authenticator.exe.config	917 B	3aab58d657e57d9ff7eb4b637c0dfcae	XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
2024-02-27 13:44	Steam Desktop Authenticator.pdb	212 kB	19983fb61f0fc263ae96a2551141b3b4	MSVC program database ver 7.00, 512*415 bytes
2024-02-27 13:44	SteamAuth.dll	67 kB	6f76ea5e798245ba8b4ef30c8ed418ac	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
2024-02-27 13:44	SteamAuth.pdb	26 kB	ec1cf9ebfd246fc50d2cfc1d66aa90dc	Microsoft Roslyn C# debugging symbols version 1.0
2018-05-15 13:29	System.ValueTuple.dll	79 kB	8c9424e37a28db7d70e7d52f0df33cf8	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
2018-05-15 13:29	System.ValueTuple.xml	85 kB	4a8f5829752a0318a5ad38df9b18153d	XML 1.0 document, Unicode text, UTF-8 text, with very long lines (318), with CRLF line terminators
2013-02-27 13:06	CommandLine.dll	58 kB	ec0e2dd54144d6f6a317b7daa715d418	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
2013-02-27 13:06	CommandLine.xml	79 kB	c20a005e61b56955b266f5c4b0769c83	XML 1.0 document, ASCII text, with CRLF line terminators
2022-05-20 16:49	Flurl.dll	38 kB	3d6bb44b26e6f139e7921bb6504ad6d7	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
2022-05-20 16:49	Flurl.Http.dll	107 kB	65ee10962e74c5e23390b86c8113fa36	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
2022-05-20 16:49	Flurl.Http.xml	230 kB	8b0f5b1c67be4d176f62d1d95c2dfd90	XML 1.0 document, ASCII text, with CRLF line terminators

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect pe file that no import table
VirusTotal	malicious	VirusTotal - Scan result 26/65

JavaScript (0)

HTTP Transactions (2)

	URL	IP	Response	Size