Report Overview

  1. Submitted URL

    www.adgsoftware.com/phd2/archive/PHD2-v2.2.1-OSX.zip

  2. IP

    173.76.58.24

    ASN

    #701 UUNET

  3. Submitted

    2024-03-28 09:03:32

    Access

    public

  4. Website Title

    about:privatebrowsing

  5. Final URL

    about:privatebrowsing

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  2. urlquery

    0

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    7

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
www.adgsoftware.comunknown2005-07-282017-04-082024-03-23

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


Files detected

  1. URL

    www.adgsoftware.com/phd2/archive/PHD2-v2.2.1-OSX.zip

  2. IP

    173.76.58.24

  3. ASN

    #701 UUNET

  1. File type

    Zip archive data, at least v1.0 to extract, compression method=store

    Size

    4.6 MB (4619499 bytes)

  2. Hash

    a00b73b3b27da71b16ab0fb2073179ca

    f7faa40f11872c86cafa7078c47e659dbda27afb

  1. Archive (35)

    2. FilenameMd5File type
    fcCamFw
    f46e37774d1c2a7a816022f83e70d38d
    		Mach-O universal binary with 2 architectures: [ppc: - Mach-O ppc dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|SUBSECTIONS_VIA_SYMBOLS>] [ - i386: - Mach-O i386 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|SUBSECTIONS_VIA_SYMBOLS>]
    fcCamFw.h
    2458c62a529df44f3446e74667c284c5
    		C source, ASCII text
    InfoPlist.strings
    814687cbd93e1610e1919f4fab7fb440
    		Unicode text, UTF-16, big-endian text
    fcCamFw_exports.txt
    c08622cefb49a3039e7cfb3faf13aeb8
    		ASCII text
    Info.plist
    2622f374defcd5b590a02e845ab152cb
    		XML 1.0 document, ASCII text
    fcCamFw
    f46e37774d1c2a7a816022f83e70d38d
    		Mach-O universal binary with 2 architectures: [ppc: - Mach-O ppc dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|SUBSECTIONS_VIA_SYMBOLS>] [ - i386: - Mach-O i386 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|SUBSECTIONS_VIA_SYMBOLS>]
    fcCamFw.h
    2458c62a529df44f3446e74667c284c5
    		C source, ASCII text
    InfoPlist.strings
    814687cbd93e1610e1919f4fab7fb440
    		Unicode text, UTF-16, big-endian text
    fcCamFw_exports.txt
    c08622cefb49a3039e7cfb3faf13aeb8
    		ASCII text
    Info.plist
    2622f374defcd5b590a02e845ab152cb
    		XML 1.0 document, ASCII text
    fcCamFw
    f46e37774d1c2a7a816022f83e70d38d
    		Mach-O universal binary with 2 architectures: [ppc: - Mach-O ppc dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|SUBSECTIONS_VIA_SYMBOLS>] [ - i386: - Mach-O i386 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|SUBSECTIONS_VIA_SYMBOLS>]
    fcCamFw.h
    2458c62a529df44f3446e74667c284c5
    		C source, ASCII text
    InfoPlist.strings
    814687cbd93e1610e1919f4fab7fb440
    		Unicode text, UTF-16, big-endian text
    fcCamFw_exports.txt
    c08622cefb49a3039e7cfb3faf13aeb8
    		ASCII text
    Info.plist
    2622f374defcd5b590a02e845ab152cb
    		XML 1.0 document, ASCII text
    lpardrv.h
    b3ad4a54aa70f916177fc74e334ccb7c
    		C source, ASCII text, with CRLF line terminators
    sbigudrv.h
    e1e54a6165657a9f1cf05493fcf8714e
    		C source, ASCII text, with CRLF line terminators
    Info.plist
    00bec45d72d018d96545f7ae450806e9
    		XML 1.0 document, ASCII text
    InfoPlist.strings
    5b0caccac092cf496d2f0674dbc9851b
    		Unicode text, UTF-16, big-endian text
    SBIGUDrv
    2c9ceccada69516c2b1a61ef3c437b83
    		Mach-O universal binary with 3 architectures: [ppc_7400: - Mach-O ppc_7400 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - i386: - Mach-O i386 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - x86_64: - Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>]
    lpardrv.h
    b3ad4a54aa70f916177fc74e334ccb7c
    		C source, ASCII text, with CRLF line terminators
    sbigudrv.h
    e1e54a6165657a9f1cf05493fcf8714e
    		C source, ASCII text, with CRLF line terminators
    Info.plist
    00bec45d72d018d96545f7ae450806e9
    		XML 1.0 document, ASCII text
    InfoPlist.strings
    5b0caccac092cf496d2f0674dbc9851b
    		Unicode text, UTF-16, big-endian text
    SBIGUDrv
    2c9ceccada69516c2b1a61ef3c437b83
    		Mach-O universal binary with 3 architectures: [ppc_7400: - Mach-O ppc_7400 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - i386: - Mach-O i386 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - x86_64: - Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>]
    lpardrv.h
    b3ad4a54aa70f916177fc74e334ccb7c
    		C source, ASCII text, with CRLF line terminators
    sbigudrv.h
    e1e54a6165657a9f1cf05493fcf8714e
    		C source, ASCII text, with CRLF line terminators
    Info.plist
    00bec45d72d018d96545f7ae450806e9
    		XML 1.0 document, ASCII text
    InfoPlist.strings
    5b0caccac092cf496d2f0674dbc9851b
    		Unicode text, UTF-16, big-endian text
    SBIGUDrv
    2c9ceccada69516c2b1a61ef3c437b83
    		Mach-O universal binary with 3 architectures: [ppc_7400: - Mach-O ppc_7400 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - i386: - Mach-O i386 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>] [ - x86_64: - Mach-O 64-bit x86_64 dynamically linked shared library, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|NO_REEXPORTED_DYLIBS>]
    Info.plist
    e5b45e03ed6e0d12f1fc899af12d952a
    		XML 1.0 document, ASCII text
    PHD2
    b6a38260fcfc0587c3396fbfee8c37c3
    		Mach-O i386 executable, flags:<NOUNDEFS|DYLDLINK|TWOLEVEL|WEAK_DEFINES|BINDS_TO_WEAK|NO_HEAP_EXECUTION>
    PkgInfo
    4597b5748b1dcc974b099f2c353c93cc
    		ASCII text, with no line terminators
    PHD2GuideHelp.zip
    3df8c1dc0e0f4e15421883fe4aba7116
    		Zip archive data, at least v2.0 to extract, compression method=deflate
    PHD_OSX_icon.icns
    44ed22d0548429c070d6fabc4824c83d
    		Mac OS X icon, 69647 bytes, "ICN#" type

    Detections

    AnalyzerVerdictAlert
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip
    YARAhub by abuse.chmalware
    meth_get_eip

JavaScript (0)

HTTP Transactions (1)

URLIPResponseSize
www.adgsoftware.com/phd2/archive/PHD2-v2.2.1-OSX.zip
173.76.58.24200 OK4.6 MB