Report - www.gmailnotifier.se/download/setup/GmailNotifierPro.zip

Report Overview

Submitted URL
www.gmailnotifier.se/download/setup/GmailNotifierPro.zip
IP
143.204.55.29
ASN
#16509 AMAZON-02
Submitted
2024-05-03 06:08:49
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
7

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-02	338 B	863 B	143.204.53.97
www.gmailnotifier.se	unknown	2011-02-14	2012-08-20	2024-04-14	510 B	9.0 MB	143.204.55.118

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.gmailnotifier.se/download/setup/GmailNotifierPro.zip
IP
143.204.55.118
ASN
#16509 AMAZON-02

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
9.0 MB (8998618 bytes)
Hash
8dc6d5136a88189fdcc9fba62584e4aa
be5cfe9c6075f67b543800bb2ab4fde3f4bfd386
651586a25591d3917e256c0cefda448653c63dd9cdd04d89debe80d159f249d3

Archive (48)

Filename

Md5

File type

ConfigData.xml

fb9f6f2ac910516328ee84effb26e27c

XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

DevComponents.DotNetBar2.dll

247ef9d45866b5c0b45da20133256bc5

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 5 sections

DotNetOpenAuth.dll

4472ebebbeb9c34ab2e6549f15bd09c7

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Facebook.dll

242c5424d2ccc79037947ecd1253aa30

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FeedDotNet.Common.dll

f0ef840ebc9e8ccb4b4d24e398739698

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FeedDotNet.dll

ef327eeb685c678d162242855c8c9b94

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

FeedDotNet.Modules.dll

30e3db82360980ca72dc084517a1d760

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GmailNotifierPro.BrandingInterface.dll

57a68a7f73a6d16d4ec810b82d4bbcf9

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GmailNotifierPro.exe

94edcb5169f3d2aca477f6a023afe113

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GmailNotifierPro.Images.dll

0e62719270ece88b8f85adb61f74ba2d

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GmailNotifierPro.PluginInterface.dll

ac843280960e692d09c3fb57d5ca7c32

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GmailNotifierPro.Translations.dll

4ded1518ee94015bfa16b570a6124503

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GMNcommon.dll

8d48127aa019fba081926bae89429828

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GMNlauncher.exe

dfd47f2f6b2a97e15a4cbdb2cc834365

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GMNmapi.dll

2bb3b051fc04396bc2322def96c575f2

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections

GMNtranslator.exe

3c669bd9f5022aa1c15b61bc462e4941

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GMNupgrade.exe

489d55f65a16b19fbb1581e74f764497

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

GMNutility.exe

19f9450df91b708b29645ab62b598749

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.Authentication.OAuth2.dll

a8027ad81ba96223d3bc1811b366fdcd

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.dll

b2ce899baaa5d320f129a5c2bde81be0

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.Drive.v2.dll

9719771bf5e2ed774a57e3b6d508f78a

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.Apis.Plus.v1.dll

e643380db68eb7039dfe7480086839da

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.GData.AccessControl.DLL

f342f05caf46772d66f9e9fee0b71b3b

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.GData.Calendar.dll

018d63cdbf5b8776c5971173f3151046

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.GData.Client.dll

be89d4909bb146003e5de9547de8f393

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.GData.Contacts.dll

4b4fc5fee094fc71ad809247742679ce

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Google.GData.Extensions.dll

42e3a55bcfe42eab7ef767b442492f61

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

HtmlAgilityPack.dll

33bb06b97f8f188735f4aae5b413eef8

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Interop.SHDocVw.dll

4d5f7338787d0a1fce794d44e8bd8be8

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.Exchange.WebServices.dll

8ba106158d567103c3f1080f58423233

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.mshtml.dll

72efa620bbdf0035012182f8df047d48

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.WindowsAPICodePack.dll

56e013e924822c9d02329b15b03ede73

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Microsoft.WindowsAPICodePack.Shell.dll

6d8deb7be7360761fd43ec9ddcaa0811

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Mono.Security.dll

97a0981460456b8db23345866e2fe883

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 4 sections

Newtonsoft.Json.Net35.dll

c9ed00129c7528e4f666807899985a26

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

readme.txt

9a5210baf4fff307db16ab2c06a55ae1

Unicode text, UTF-8 text, with CRLF line terminators

Rebex.Common.dll

262eac3eca5bb0f57d7754d5319c7810

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Rebex.Imap.dll

3e862057cfcc204f1c64524d7bc3ec07

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Rebex.Mail.dll

ec2faa79e79ec80cf700c738f0c6bd5d

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Rebex.Networking.dll

b863e8a24bcf7e7e8650b1e2efc113e0

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Rebex.Pop3.dll

aaa21693eb89482d5544d6d8dc386e60

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Rebex.Smtp.dll

d17e8147f2fa1ebddc580203b8234e4b

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Sound01.wav

bda4f1aa02e96ce2bd1c643fa20687c6

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz

Sound02.wav

f7d101676c7f6fbe8dd9200cd87745f6

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 Hz

Sound03.wav

45bc84e76c7026df26b285b67bf90694

RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 44100 Hz

System.Data.SQLite.dll

e8a7c0b452b35fc41cbaff2664e58ea4

PE32 executable (DLL) (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 5 sections

Twitterizer2.dll

c2d579ac35885f90b6d6cd207f406574

PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Twitterizer2.license.txt

0c23e97091d6cdbb581d1ddd0bbd3c20

ASCII text, with CRLF line terminators

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/67

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
0131746e7015569cc793ed15b54f85b2
3cebe9cce229a130041a6d6d94d245d0fa553f4b
4ff8e94b93d31a2dec156abb6482d188bef3b6ebf2a0aa4a470213172fc487a3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 03 May 2024 06:08:17 GMT
Server: ECAcc (amb/6B67)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NUR7Czuw3vx0ZfzIR-XB2wZYyg9ISv3Dw2Ju-cQux8ogVj8faoM0TQ==

www.gmailnotifier.se/download/setup/GmailNotifierPro.zip

143.204.55.118

200 OK

9.0 MB

URL User Request GET HTTP/2
www.gmailnotifier.se/download/setup/GmailNotifierPro.zip
IP
143.204.55.118:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject*.gmailnotifier.se
Fingerprint51:21:21:3C:8F:B3:26:B5:57:68:55:D4:55:82:51:62:0B:3A:7A:19
ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
9.0 MB (8998618 bytes)
Hash
8dc6d5136a88189fdcc9fba62584e4aa
be5cfe9c6075f67b543800bb2ab4fde3f4bfd386
651586a25591d3917e256c0cefda448653c63dd9cdd04d89debe80d159f249d3

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/67

HTTP Headers

GET /download/setup/GmailNotifierPro.zip HTTP/1.1
Host: www.gmailnotifier.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/zip
content-length: 8998618
date: Thu, 02 May 2024 20:01:58 GMT
last-modified: Wed, 22 Dec 2021 21:19:44 GMT
etag: "8dc6d5136a88189fdcc9fba62584e4aa"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q78lRoAcN3pjsL1jxze_Rv3fY3dLzTGND34rdu6qW3RnDn4mvWNGmQ==
age: 36381
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (48)

Detections

JavaScript (0)

HTTP Transactions (2)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers