Report Overview
Visitedpublic
2025-05-27 16:53:14
Tags
Submit Tags
URL
simpleunlocker.ds1nc.ru/release/simpleunlocker_release.zip
Finishing URL
about:privatebrowsing
IP / ASN
172.67.129.68
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
simpleunlocker.ds1nc.ru 1 alert(s) on this Host | unknown | 2022-10-10 | 2022-10-19 | 2025-05-18 | 526 B | 1.1 MB | 104.21.1.131 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
simpleunlocker.ds1nc.ru/release/simpleunlocker_release.zip
IP / ASN
104.21.1.131
File Overview
File TypeZip archive data, at least v2.0 to extract, compression method=store
Size1.1 MB (1095038 bytes)
MD573689b4624afada0ed9e96d36ebd49d9
SHA1bb37634ab933864c0c188e48431c926631fffcdc
Archive (12)
| Filename | MD5 | File type |
|---|---|---|
| AntiGDI.dll | 16168fd88cf4851f75d287cc86913669 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| AntiGDI_Injector.exe | 9505f2e3a19ef13a437d4d403b0242df | PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| EasyHook.dll | e1ac4719026481231aa7fea8b4370df3 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| EasyHook32.dll | 96e29840ab54b7098f7c473751a64be4 | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows, 5 sections |
| EasyHook32Svc.exe | 62e4b079910db4c8f7435e99ec55d513 | PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| EasyHook64.dll | 0f1d903e83d1e2fa71a1f957e4a32fd2 | PE32+ executable (DLL) (GUI) x86-64, for MS Windows, 6 sections |
| EasyHook64Svc.exe | 8352ad23d90fc8d982fe0fb4ce03ca77 | PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| EasyLoad32.dll | 8dcecd41d98bb951f9e6a2a24c1aa4e1 | PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 4 sections |
| EasyLoad64.dll | bfae38591215e8c2161795219a57135c | PE32+ executable (DLL) (console) x86-64 Mono/.Net assembly, for MS Windows, 4 sections |
| su_updater.exe | 4273a495e9cac52adf54d133b86bd236 | PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
| ReadMe.txt | da818edcdadbcf5b0a1c264390d9e8ae | Unicode text, UTF-8 text, with CRLF line terminators |
| SU.exe | 9511c17b84820a6cc8454b8671cfed6d | PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections |
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|