Report Overview

  1. Submitted URL

    update.kiemthexua.net/autoupdate/hostfile/Autoupdate.exe

  2. IP

    103.90.227.43

    ASN

    #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

  3. Submitted

    2023-05-26 09:01:27

    Access

    public

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    1

  3. Threat Detection Systems

    3

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
ocsp.sectigo.com4872018-08-162019-11-292023-05-26
update.kiemthexua.netunknown2023-02-232023-05-052023-05-24

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
high 103.90.227.43Client IP

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumupdate.kiemthexua.net/autoupdate/hostfile/Autoupdate.exe

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    update.kiemthexua.net/autoupdate/hostfile/Autoupdate.exe

  2. IP

    103.90.227.43

  3. ASN

    #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

  1. File type

    PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows\012- data

    Size

    1.9 MB (1851904 bytes)

  2. Hash

    af990ecd6f70bcb81134ad68b8c8d77a

    e0cb39dc361549cf387ebdf3a502a1e3333da3a0

    Detections

    AnalyzerVerdictAlert
    VirusTotal31/71

JavaScript (0)

HTTP Transactions (2)

URLIPResponseSize
ocsp.sectigo.com/
104.18.15.101 471 B
update.kiemthexua.net/autoupdate/hostfile/Autoupdate.exe
103.90.227.43200 OK1.9 MB