Report - skuld.modthesims2.com/files/1/0/1/2/1/9/1/1/MTS_andrian_m.l_2079113_Endy_SCO_1.2.zip?v=1659531900

Report Overview

Submitted URL
skuld.modthesims2.com/files/1/0/1/2/1/9/1/1/MTS_andrian_m.l_2079113_Endy_SCO_1.2.zip?v=1659531900
IP
172.67.218.241
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 22:03:34
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
skuld.modthesims2.com	unknown	2004-05-12	2014-07-21	2024-04-17	551 B	11 MB	172.67.218.241
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-05-06	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
skuld.modthesims2.com/files/1/0/1/2/1/9/1/1/MTS_andrian_m.l_2079113_Endy_SCO_1.2.zip?v=1659531900
IP
172.67.218.241
ASN
#13335 CLOUDFLARENET

File type
Zip archive data, at least v2.0 to extract, compression method=deflate
Size
11 MB (10635168 bytes)
Hash
930d374ba1f2aae3b35c632075bc0058
152f52c5895c022590ab88834d8d88c8b0be1e4e
36d7d843782d25fe6ee735f73d52a1cb122af2f6fcdb07c85e2abba433f6df12

Archive (33)

Filename

Md5

File type

FnDTunings.package

063f40140e66c2270179300a8a0013db

Maxis Database Packed File, version: 2.1, files: 32

SCO_Bakery.package

88f73c888dca611774178fa1941a235c

Maxis Database Packed File, version: 2.1, files: 30

SCO_Books.package

2355c76566e63766c03808458bf34f27

Maxis Database Packed File, version: 2.1, files: 30

SCO_Crystal.package

f355901da3b04138da595f88c224fcbc

Maxis Database Packed File, version: 2.1, files: 30

SCO_Custom.package

9ae3553406975f0f8e62958a51c664f9

Maxis Database Packed File, version: 2.1, files: 245

SCO_Drinks.package

b0387d2f112c6c8de16e1d78267258db

Maxis Database Packed File, version: 2.1, files: 30

SCO_FastFoods.package

e9bf90a792e83ed58a6685518017e14c

Maxis Database Packed File, version: 2.1, files: 30

SCO_Fish.package

bc57b7e5ffcf19af4e9a8231a3031b6c

Maxis Database Packed File, version: 2.1, files: 30

SCO_FnB.package

01692df739c089791b406ea69363e7fe

Maxis Database Packed File, version: 2.1, files: 658

SCO_Foods.package

28ed7136f5372aa1f506fc7dc9d3fbde

Maxis Database Packed File, version: 2.1, files: 30

SCO_FoodsDrinks.package

fb40a139e006550e3792d95791f7afa0

Maxis Database Packed File, version: 2.1, files: 30

SCO_Gifts.package

afeef515e0a2bbe73a23f5fcde088586

Maxis Database Packed File, version: 2.1, files: 30

SCO_Groceries.package

24d673f8d44e3d31977efd4a9a5e1217

Maxis Database Packed File, version: 2.1, files: 30

SCO_Medicine.package

5a4f9545a125f32906b20b3b1d5a8b9b

Maxis Database Packed File, version: 2.1, files: 30

SCO_MPA.package

9be77343a324ec39c18c042101e73de3

Maxis Database Packed File, version: 2.1, files: 83

SCO_Music.package

e10d3c80ddeb4711351c2ac7110f5491

Maxis Database Packed File, version: 2.1, files: 30

SCO_Plants.package

a039284683cba4b4c10c631cab9a63e6

Maxis Database Packed File, version: 2.1, files: 30

SCO_Toys.package

bcc5fb387e1b934bbdd5e1e5bef17fd2

Maxis Database Packed File, version: 2.1, files: 30

SCO_Tunings.package

51d3607bac5ca11ea3b969dda5190dd2

Maxis Database Packed File, version: 2.1, files: 119

SCO_UpgradeParts.package

c0ebedf420d2cafb1867e2120a8b8ca7

Maxis Database Packed File, version: 2.1, files: 30

SCO_EP03_Festival.package

c5e023f9c715e4a816651736f576cda7

Maxis Database Packed File, version: 2.1, files: 30

SCO_EP03_Fireworks.package

1eec6e7945b60434c88ce11c217dbe1b

Maxis Database Packed File, version: 2.1, files: 30

SCO_EP04_Pet.package

aafdb28dd234b5db9fcaedc629e04bda

Maxis Database Packed File, version: 2.1, files: 30

SCO_Beach.package

7af1200ac785d8b30323f0e6ca4ff03d

Maxis Database Packed File, version: 2.1, files: 27

SCO_EP08_Uni.package

2488f4dc77aea663853c01dab4c4dc09

Maxis Database Packed File, version: 2.1, files: 30

SCO_EP09_DyesWax.package

934cb5905d10225a0f3618f916dac854

Maxis Database Packed File, version: 2.1, files: 30

SCO_EP11_Animals.package

9fb33be36c395f15b95d946305b5870e

Maxis Database Packed File, version: 2.1, files: 30

SCO_GP01_Camping.package

c0d4a3c3715531644f5510faaff6a9b6

Maxis Database Packed File, version: 2.1, files: 30

SCO_GP04_Vampires.package

a9b796f0c5ebc30bbba8c1cf749775eb

Maxis Database Packed File, version: 2.1, files: 30

SCO_GP06_Jungle.package

ea9f64dbd544d4654d0f46bb00d4bf4b

Maxis Database Packed File, version: 2.1, files: 30

SCO_GP07_Curio.package

cdc24e84dcf9e8d7fbe0dd6c7b6fe3f2

Maxis Database Packed File, version: 2.1, files: 30

SCO_GP08_Magic.package

cb8ace7ad6f42afca09ea3c14813bf75

Maxis Database Packed File, version: 2.1, files: 30

SCO_GP09_StarWars.package

3797a0533e6a5efa251abd531c3b6eb3

Maxis Database Packed File, version: 2.1, files: 30

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	meth_get_eip

JavaScript (0)

HTTP Transactions (2)

	URL	IP	Response	Size
	skuld.modthesims2.com/files/1/0/1/2/1/9/1/1/MTS_andrian_m.l_2079113_Endy_SCO_1.2.zip?v=1659531900	172.67.218.241	200 OK	11 MB
URL User Request GET HTTP/2 skuld.modthesims2.com/files/1/0/1/2/1/9/1/1/MTS_andrian_m.l_2079113_Endy_SCO_1.2.zip?v=1659531900 IP 172.67.218.241:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectmodthesims2.com Fingerprint59:B9:1A:4E:98:F9:A9:27:5C:09:29:05:C9:18:43:E2:DE:54:62:1D ValidityTue, 12 Mar 2024 23:58:49 GMT - Mon, 10 Jun 2024 23:58:48 GMT File type Zip archive data, at least v2.0 to extract, compression method=deflate Size 11 MB (10635168 bytes) Hash 930d374ba1f2aae3b35c632075bc0058 152f52c5895c022590ab88834d8d88c8b0be1e4e 36d7d843782d25fe6ee735f73d52a1cb122af2f6fcdb07c85e2abba433f6df12 HTTP Headers GET /files/1/0/1/2/1/9/1/1/MTS_andrian_m.l_2079113_Endy_SCO_1.2.zip?v=1659531900 HTTP/1.1 Host: skuld.modthesims2.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Tue, 07 May 2024 22:03:07 GMT content-type: application/zip content-length: 10635168 last-modified: Wed, 03 Aug 2022 13:05:20 GMT etag: "62ea7290-a247a0" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sk%2FmOSgwmPXEsVK8dxYi6zTCu13CiBMezSvHsQRl0ELP4LIQEMwQ4QuX5W%2BeRY4EvWU53A0kDdGjsCOgvDV3j7qXOzyqLKuNypwdiubsgZTmk%2B8nCifyh1KYU7xdU7mKs2R9pidF%2B30%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 88047f8a6ab4569b-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml	35.244.181.201		444 B
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP 35.244.181.201:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type XML 1.0 document, ASCII text, with very long lines (332) Size 444 B (444 bytes) Hash 3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463 HTTP Headers `GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1 Host: aus5.mozilla.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Cache-Control: no-cache Pragma: no-cache Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx rule-id: unknown rule-data-version: unknown content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=h-ItxuSD-kVRit3kuExunEQmrowl-geCRDgY1ytJwSPpdN-YLi28dACHSjiQa4kyNchAJnTqVp4AACQSymZ8EwYfMm7hoyivcKoll1ADkftKsXMu313FqjUZ5IhuN3R_ strict-transport-security: max-age=31536000; x-content-type-options: nosniff content-security-policy: default-src 'none'; frame-ancestors 'none' x-proxy-cache-status: MISS content-encoding: gzip via: 1.1 google date: Tue, 07 May 2024 22:03:07 GMT content-type: text/xml; charset=utf-8 vary: Accept-Encoding content-length: 444 age: 19 cache-control: public,max-age=90 alt-svc: clear X-Firefox-Spdy: h2