Report Overview
Visitedpublic
2025-02-03 06:42:24
Tags
Submit Tags
URL
ny.lshdw.cc/FB/libusb.exe
Finishing URL
about:privatebrowsing
IP / ASN
113.142.77.41
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
ny.lshdw.cc 5 alert(s) on this Domain | unknown | 2022-07-01 | 2024-12-03 | 2025-01-26 | 407 B | 653 kB | 111.225.213.41 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | 111.225.213.41 | Client IP | ET INFO Packed Executable Download | |
| high | 111.225.213.41 | Client IP | ET POLICY PE EXE or DLL Windows file download HTTP | |
| low | 111.225.213.41 | Client IP | ET INFO EXE - Served Inline HTTP |
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2025-02-03 | medium | ny.lshdw.cc/FB/libusb.exe | Scans presence of the found strings using the in-house brute force method |
OpenPhish
No alerts detected
PhishTank
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
ny.lshdw.cc/FB/libusb.exe
IP / ASN
111.225.213.41
File Overview
File TypePE32 executable (GUI) Intel 80386, for MS Windows, 8 sections
Size652 kB (651760 bytes)
MD53adcf642b18b7487a52a64869e09756f
SHA1d5cb681bc4f79149dcc0fdd060afba590b3d7223
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Scans presence of the found strings using the in-house brute force method |
| VirusTotal | suspicious |
JavaScript (0)
No JavaScripts
HTTP Transactions (1)
| URL | IP | Response | Size |
|---|