Report Overview
Submitted URL
lightheadsw.com/files/releases/com.lightheadsw.Caffeine/Caffeine1.1.1.zip
IP
172.67.195.166
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-05 16:01:45
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
www.lightheadsw.com | unknown | 2022-11-03 | 2014-01-20 | 2024-01-10 | 545 B | 261 kB | 104.21.21.8 |
lightheadsw.com | unknown | 2022-11-03 | 2012-11-20 | 2023-12-30 | 529 B | 261 kB | 104.21.21.8 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
www.lightheadsw.com/files/releases/com.lightheadsw.Caffeine/Caffeine1.1.1.zip
IP
104.21.21.8
ASN
#13335 CLOUDFLARENET
File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
260 kB (260503 bytes)
Hash
2a51d34fa60ad7ebf548de9512d003d5
d2fbdad1619934313026fc831e6c6e3dd97ac030
Archive (13)
Filename | Md5 | File type | |||
---|---|---|---|---|---|
Info.plist | 11cd8d9f5066fa8548d5e12899473fda | XML 1.0 document, ASCII text | |||
Caffeine | 707a63274861738bbe5ccdfc847608f0
| Mach-O universal binary with 4 architectures: [i386: - Mach-O i386 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] [ - ppc_7400: - Mach-O ppc_7400 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] [ - ppc64: - Mach-O ppc64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] [ - x86_64: - Mach-O 64-bit x86_64 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL>] | |||
PkgInfo | 0959695ef3abc8ac2a64a9a7c2836d75 | ASCII text, with no line terminators | |||
active.png | 4666cad88745481f29cdeeb6aaa76170 | PNG image data, 22 x 20, 8-bit/color RGBA, non-interlaced | |||
Caffeine.icns | 2da37810c9a77d7869001bb94c28ea38 | Mac OS X icon, 246917 bytes, "is32" type | |||
Caffeine.sdef | 057d5d0d2598bd653c008cc3f49f02e9 | XML 1.0 document, ASCII text | |||
Credits.rtf | 3da6e35e8a27daa7cc65c7baaf61eff5 | Rich Text Format data, version 1, ANSI, code page 1252 | |||
InfoPlist.strings | 22f9c900e92c2877ef0d6a5b59a317eb | Unicode text, UTF-16, big-endian text | |||
Localizable.strings | 952fd71491b14e786d8239206788fb8a | Unicode text, UTF-16, big-endian text | |||
MainMenu.nib | f4ab4c8c608362fab8c524676834cb46 | Apple binary property list | |||
highlightactive.png | 4d52cdd6e52895b438d0f60882347347 | PNG image data, 22 x 20, 8-bit/color RGBA, non-interlaced | |||
highlighted.png | 19acbec213c8393b9aa6e454b0691cac | PNG image data, 22 x 20, 8-bit/color RGBA, non-interlaced | |||
inactive.png | 36831742c3247d22f6c5c4d1647811bc | PNG image data, 22 x 20, 8-bit/color RGBA, non-interlaced |
Detections
Analyzer | Verdict | Alert |
---|---|---|
YARAhub by abuse.ch | malware | meth_get_eip |
JavaScript (0)
HTTP Transactions (2)
URL | IP | Response | Size | |
---|---|---|---|---|
www.lightheadsw.com/files/releases/com.lightheadsw.Caffeine/Caffeine1.1.1.zip | 104.21.21.8 | 200 OK | 260 kB | |
HTTP Headers
| ||||
lightheadsw.com/files/releases/com.lightheadsw.Caffeine/Caffeine1.1.1.zip | 104.21.21.8 | 301 Moved Permanently | 260 kB | |
HTTP Headers
| ||||