Report Overview

  1. Visited public
    2024-08-01 15:07:39
  2. URL

    raw.githubusercontent.com/woskethebot/malware-repos/main/xml.zip

  3. Finishing URL

    about:privatebrowsing

  4. IP / ASN
    185.199.109.133

    #54113 FASTLY

    Title
    about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
3

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
r10.o.lencr.orgunknown2020-06-292024-06-06 21:45:112024-07-31 18:12:05
raw.githubusercontent.com358022014-02-062014-03-01 08:08:082024-07-31 19:04:38

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    raw.githubusercontent.com/woskethebot/malware-repos/main/xml.zip

  2. IP

    185.199.109.133

  3. ASN

    #54113 FASTLY

  1. File type

    Zip archive data, at least v2.0 to extract, compression method=deflate

    Size

    205 kB (205414 bytes)

  2. Hash

    d07787d0e571679c3e4c0fd3590f7f5f

    45aab1a279ea03c6bf1a16b2d4448276d9030f85

  1. Archive (3)

  2. FilenameMd5File type
    xml - Read me.txt
    3a7db414342b57b41de6e0310d648773
    ASCII text, with CRLF line terminators
    xml.exe
    dd7cf3a4950e9e56c359da80c0a074e8
    PE32 executable (GUI) Intel 80386, for MS Windows, 7 sections
    xml.harmless.exe
    123a92b20366bd0de60ac6e9bd9461f5
    PE32 executable (GUI) Intel 80386, for MS Windows, 7 sections

    Detections

    AnalyzerVerdictAlert
    VirusTotalmalicious

JavaScript (0)

HTTP Transactions (9)

URLIPResponseSize
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
raw.githubusercontent.com/woskethebot/malware-repos/main/xml.zip
185.199.109.133200 OK205 kB
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B
r10.o.lencr.org/
23.36.77.32 504 B