Report Overview
Visitedpublic
2025-05-21 08:39:36
Tags
Submit Tags
URL
160.187.199.6:10002/mimikatz.exe
Finishing URL
about:privatebrowsing
IP / ASN
160.187.199.6
#0
Title
about:privatebrowsing

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Host Summary

HostRankRegisteredFirst SeenLast Seen
160.187.199.6
unknownunknownNo dataNo data

Related reports

Threat Detection Systems

Public InfoSec YARA rules
SeverityIndicatorAlert
medium160.187.199.6:10002/mimikatz.exemimikatz
medium160.187.199.6:10002/mimikatz.exeDetects Mimikatz strings
medium160.187.199.6:10002/mimikatz.exeDetects Mimikatz SkeletonKey in Memory
medium160.187.199.6:10002/mimikatz.exeDetects mimikatz icon in PE file
medium160.187.199.6:10002/mimikatz.exeDetects Powerkatz - a Mimikatz version prepared to run in memory via Powershell (overlap with other Mimikatz versions is possible)
medium160.187.199.6:10002/mimikatz.exeDetects Mimikatz by using some special strings
medium160.187.199.6:10002/mimikatz.exeWindows.Hacktool.Mimikatz
medium160.187.199.6:10002/mimikatz.exeWindows.Hacktool.Mimikatz
medium160.187.199.6:10002/mimikatz.exeDetects win.mimikatz.

OpenPhish

No alerts detected


PhishTank

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
medium160.187.199.6Sinkholed

ThreatFox

No alerts detected


File detected

URL
160.187.199.6:10002/mimikatz.exe
IP / ASN
160.187.199.6
#0
File Overview
File TypePE32+ executable (console) x86-64, for MS Windows, 6 sections
Size1.4 MB (1355264 bytes)
MD529efd64dd3c7fe1e2b022b7ad73a1ba5
SHA1e3b6ea8c46fa831cec6f235a5cf48b38a4ae8d69

Detections

AnalyzerVerdictAlert
Public Nextron YARA rulesmalware
mimikatz
Public Nextron YARA rulesmalware
Detects Mimikatz strings
Public Nextron YARA rulesmalware
Detects Mimikatz SkeletonKey in Memory
Public Nextron YARA rulesmalware
Detects mimikatz icon in PE file
Public Nextron YARA rulesmalware
Detects Powerkatz - a Mimikatz version prepared to run in memory via Powershell (overlap with other Mimikatz versions is possible)
Public Nextron YARA rulesmalware
Detects Mimikatz by using some special strings
Elastic Security YARA Rulesmalware
Windows.Hacktool.Mimikatz
Elastic Security YARA Rulesmalware
Windows.Hacktool.Mimikatz
Malpedia's yara-signator rulesmalware
Detects win.mimikatz.
VirusTotalmalicious
VirusTotal - Scan result 65/72

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize