Report Overview
Visitedpublic
2025-02-11 05:07:45
Tags
Submit Tags
URL
www.cgsecurity.org/testdisk-7.0.win.zip
Finishing URL
about:privatebrowsing
IP / ASN
193.168.50.236
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
www.cgsecurity.org 1 alert(s) on this Host | unknown | 2001-06-11 | 2017-01-31 | 2025-02-07 | 505 B | 12 MB | 193.168.50.236 |
Related reports
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
www.cgsecurity.org/testdisk-7.0.win.zip
IP / ASN
193.168.50.236
File Overview
File TypeZip archive data, at least v1.0 to extract, compression method=store
Size12 MB (12444088 bytes)
MD5035792105f3221e1a8758e7f3f575418
SHA1f4fb7da983740b5d5d2bc0c84c866943de85d4fc
Archive (41)
| Filename | MD5 | File type |
|---|---|---|
| NEWS.txt | f912729f125254dd32bb13c18757b31d | ASCII text, with CRLF line terminators |
| photorec_win.exe | 4efda8d9c5630b4bab68bb492964cb89 | PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed, 3 sections |
| THANKS.txt | 0e5f46d29958f47de21c5c82974ebad3 | ASCII text, with CRLF line terminators |
| cyggcc_s-1.dll | a86d05066acbabc550d5375cd919cf5d | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 16 sections |
| QtCore4.dll | 598639f45e4560a54732957eab0c7576 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 11 sections |
| cygz.dll | 3bf40f18fce5da185e0ee8e036f0e4e6 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 10 sections |
| testdisk_win.exe | ac98ba3f9bb5a8f32b86f9a121fec846 | PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed, 3 sections |
| libjpeg-62.dll | 07eda978f9f26e77a1e042243c0b484b | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 10 sections |
| INFO | d0778fe74dded45b41ab31540d50de24 | ASCII text |
| cygncursesw-10.dll | f0267edc432dea62832a5c26965c8a8d | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 9 sections |
| zlib1.dll | 1fa17024c789dad595bdaa7f0a82db02 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 10 sections |
| cygwin1.dll | 76c0e4878fdf919be7dbd8f895808cb1 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 13 sections |
| cygiconv-2.dll | 2e66e349be49c61edef723095a1b6479 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 10 sections |
| libwinpthread-1.dll | 1c58157a6d813b189af813c22dcbcaef | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 11 sections |
| readme.txt | 5ebc6b32522d258e080d89cfb6468fca | ASCII text, with CRLF line terminators |
| COPYING.txt | 3515835a89d4c99214d0ab65d433af16 | ASCII text, with CRLF line terminators |
| cygssp-0.dll | 4444714df30046c8ce5e0d6faec79b20 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 16 sections |
| cygwin | 38db00d6c8175e7c447a9aada9605062 | Compiled terminfo entry "cygwin" |
| AUTHORS.txt | a30e5bd906f7d10e972eef97b5595cdc | ASCII text, with CRLF line terminators |
| qphotorec_win.exe | 5cf7ccc3c24b79881ff8454dd281987a | PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed, 3 sections |
| testdisk_nu2menu.xml | c4566e2eab79bf23b0a7d6eca0b5f30f | exported SGML document, ASCII text, with CRLF line terminators |
| Get_Files.cmd | 755d7ea324c7b1891d465772467bcaa6 | DOS batch file, ISO-8859 text, with CRLF line terminators |
| RESET.cmd | f52a7302fbf6257635cdaa3df38c3727 | DOS batch file, ASCII text, with CRLF line terminators |
| Help.htm | c679717c244efb39058afd29281bb79a | HTML document, ASCII text, with very long lines (475), with CRLF line terminators |
| start.inf | ed1adf8c56dd505e1ba9d6ca1365bab1 | Windows setup INFormation |
| ReadMe.txt | d3dbbf074459ee04733ddd0282ce9abc | ISO-8859 text, with CRLF line terminators |
| Start_INF.dat | ed1adf8c56dd505e1ba9d6ca1365bab1 | Windows setup INFormation |
| StaticINF.dat | 1fdfc1b9da3402311f18eb12646379f2 | Windows setup INFormation |
| Help.htm | 6561bf3a5705a445481240ca9ddffdb2 | HTML document, ASCII text, with very long lines (475), with CRLF line terminators |
| ReadMe.txt | fe0b95713ae36ed34225a803c972a789 | ISO-8859 text, with CRLF line terminators |
| TestDisk.script | 53d8a71368a575f8db0a4dc12b229a71 | Generic INItialization configuration [Interface] |
| VERSION.txt | 66c6fb032ceddf7d38ceddddcde97db2 | ASCII text |
| libpng16-16.dll | d1e30ccfc7765882364c47b770a06ac6 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 10 sections |
| libgcc_s_sjlj-1.dll | d9aff72a4665ab1b08022eeed5c1bc7e | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 17 sections |
| documentation.html | bdf9d11acfd4d71ac8352ef77735e212 | HTML document, ASCII text |
| cygjpeg-8.dll | 3000cf66fb2c2bc9b28aca334ac7173c | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 10 sections |
| fidentify_win.exe | 9b85477b537595a7e98517ccb53e09a7 | PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed, 3 sections |
| iconv.dll | 74f63cf233bf9b1dca4350bdfb7cb3e8 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 10 sections |
| QtGui4.dll | 77867df81c8c6426f049d7ce97964c40 | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 11 sections |
| libssp-0.dll | 7aed7006f99df1e8600c7db5c55ae9bf | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 17 sections |
| libstdc++-6.dll | 29b0d86ed23cc82e241abc3ff06cc01b | PE32 executable (DLL) (console) Intel 80386, for MS Windows, 17 sections |
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|