Report - secure.downloadfp.com/US/memz-trojan.zip?st=oK

Report Overview

Visitedpublic

2025-03-04 21:00:48

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
secure.downloadfp.com	unknown	2016-10-17	2016-10-23	2025-03-01	547 B	49 kB	95.168.168.24

Related reports

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

secure.downloadfp.com/US/memz-trojan.zip?st=oK_hSes7tLEd9WrjMii1EQ&e=1741132803

IP / ASN

95.168.168.24

#60781 LeaseWeb Netherlands B.V.

File Overview

File TypeZip archive data, at least v1.0 to extract, compression method=store

Size49 kB (48668 bytes)

MD5c31e52bf196d6936910fa3dff6b6031e

SHA1405a89972d416d292b247fd70bbc080c3003b5e6

SHA2568b47e773a782361209f8adacc8d6aeefb595e1c13ae6813df7de01c20a15c91e

Archive (67)

Modified	Filename	Size	MD5	File type
2018-05-20 02:44	.gitignore	3.9 kB	83b09167c32e36043f0f522db4339e6b	ASCII text
2018-05-20 02:44	00.png	594 B	029d1adc93e53ae5b02e8d45da4fdb14	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	01.png	568 B	64aba538361c4abf6dfa143115cbbe4b	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	02.png	617 B	b1e1f0759530255c37dd1af1c9d54bff	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	03.png	614 B	50e84e42941cc014b132accc6f9fde24	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	04.png	583 B	f85d71ca3f11f4ad6c8ed74a07efd247	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	05.png	587 B	c0466d8e2d596eff694b107cb1699c4c	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	06.png	621 B	a08e2acea84540bf90bba937544c4f70	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	07.png	616 B	69b1a40994cf86d5e274f2873c36c5f9	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	08.png	576 B	5f31ebbafaa9d1d7648a08dd3c925f8a	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	09.png	581 B	8d557fb5b841a6e1ef9560d3272c7c3e	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	10.png	619 B	271b8866a8a658b60e8fd655e767b85a	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	11.png	614 B	748c6b57ec2dfd66b0c4c8425a463a10	PNG image data, 80 x 50, 4-bit colormap, non-interlaced
2018-05-20 02:44	01.png	539 B	ce790051e1e15cc9d55b771e5aa5fbfb	PNG image data, 80 x 50, 8-bit/color RGB, non-interlaced
2018-05-20 02:44	png2bin.py	1.2 kB	6d6d94f38626dd058abc46f146cb7688	Python script, ASCII text executable
2018-05-20 02:44	README.md	106 B	97f14b65d5d1073b221a348d11482b57	ASCII text, with no line terminators
2018-05-20 02:44	midi2bin.py	600 B	f61a4c22e580ac463d75a30e9fa964c3	Python script, ASCII text executable
2018-05-20 02:44	Makefile	1.4 kB	0d6bb90680881258c52aba93b5ffcf1f	makefile script, ASCII text
2018-05-20 02:44	compress.c	1.9 kB	777bcee826f804d49f6ea27ed1e2c602	C source, ASCII text
2018-05-20 02:44	decompress.asm	859 B	c17fa191ca99b0eaf597f75e7544e3b9	ASCII text
2018-05-20 02:44	main.asm	603 B	eeb3c92fc836e1c9fb8c42cc74ffd2b8	ASCII text
2018-05-20 02:44	drawIntroFrame.asm	400 B	b7f8578312d53d47470ca7e0fd84c793	ASCII text
2018-05-20 02:44	drawNormalFrame.asm	392 B	762b14a2a86ccc2ec73f1cdb5d9dded4	ASCII text
2018-05-20 02:44	initDrawing.asm	369 B	62508871f51d1c7c4a0fb60b7735e1d2	ASCII text
2018-05-20 02:44	countNyan.asm	609 B	824ee95d48ce12d83f855a36a822e4c4	ASCII text
2018-05-20 02:44	displayFrame.asm	902 B	dd378000b71947dff17a89374822f58f	ASCII text
2018-05-20 02:44	playNote.asm	449 B	aab218c275452e7836b9ad8abaa61d59	ASCII text
2018-05-20 02:44	keyboardHandler.asm	239 B	973cce0ca5ea55216e27c589df381acd	ASCII text
2018-05-20 02:44	timerHandler.asm	368 B	12429977e0b55d93549c99863c5c05e1	ASCII text
2018-05-20 02:44	setup.asm	350 B	8b96cc5c40397271e1a654b8935a4417	ASCII text
2018-05-20 02:44	setupInterrupts.asm	197 B	5e31196506a9a4a3f59f0d8a8a1c1004	ASCII text
2018-05-20 02:44	setupSpeaker.asm	214 B	fe86e234451b6d0655368c50dab7d88e	ASCII text
2018-05-20 02:44	setupTimer.asm	45 B	ec579ce072a58fdfa4915d8ab3d1fe2d	ASCII text
2018-05-20 02:44	macros.asm	438 B	2dabbc455a0fb09e0608abc1de0c8984	ASCII text
2018-05-20 02:44	timer.asm	686 B	6e16b6ef22ba57be9a05192541b15951	ASCII text
2018-05-20 02:44	main.asm	1.1 kB	1eb667c4bd06b25b5455189d091df217	ASCII text
2018-05-20 02:44	README.md	1.4 kB	4961921bf68139c1e68110807ec172e1	ASCII text
2018-05-20 02:44	KillMessages.txt	885 B	b3329141186bcb2812b76eec282ec344	ASCII text
2018-05-20 02:44	Note.txt	209 B	e51ce78fa9cc0be4f0ad3b5585611201	ASCII text
2018-05-20 02:44	Sites.txt	2.1 kB	d35a6b9d752056a1a440195811f1f9b9	ASCII text
2018-05-20 02:44	genData.py	2.5 kB	81152303b2de9d9e11b16bce7959caec	Python script, ASCII text executable
2018-05-20 02:44	Makefile	1.7 kB	0b670becf0b10c9c8d834f71ba710719	makefile script, ASCII text
2018-05-20 02:44	Clean.h	218 B	52c3d4b8686664a23a299681571d6d25	C source, ASCII text
2018-05-20 02:44	Main.c	5.3 kB	e70427bd92f47519ebab2b27f3ef4b0d	C source, ASCII text
2018-05-20 02:44	Destructive.h	173 B	9f622372e36b8faf43abb897370b4f6d	ASCII text
2018-05-20 02:44	KillWindows.c	1.9 kB	590af3ecfc5970bc4e4e3033dfdf3743	C source, ASCII text
2018-05-20 02:44	Main.c	3.3 kB	eda1abcd270c4cf6873b0d1255aabea7	C source, ASCII text
2018-05-20 02:44	ProcessWatchdog.c	1.1 kB	3e89d86d6301b21ab367229c42e4dabe	C source, ASCII text
2018-05-20 02:44	MEMZ.h	939 B	03fe8196d0854e320eb1a87862607f24	C source, ASCII text
2018-05-20 02:44	PayloadCrazyBus.c	1.2 kB	1852c8d4c64088bbdf73ddfcc65cd3bd	C source, ASCII text
2018-05-20 02:44	PayloadCursor.c	283 B	65222e88f0b84d94c244bd07b55160f2	C source, ASCII text
2018-05-20 02:44	PayloadDrawErrors.c	434 B	a382c5a9e5ea3b8a9944bb9619a88dff	C source, ASCII text
2018-05-20 02:44	PayloadExecute.c	240 B	46b2a9fea879c6da62388f270acc0fa2	C source, ASCII text
2018-05-20 02:44	PayloadInvert.c	151 B	a781561d110cca2ddd850757c18ce05a	C source, ASCII text
2018-05-20 02:44	PayloadKeyboard.c	252 B	6e575f50e6d3b3ab340e4251b66d827e	C source, ASCII text
2018-05-20 02:44	PayloadMessageBox.c	520 B	49f62ebaec1776209d48e339fe5a65d0	C source, ASCII text
2018-05-20 02:44	PayloadReverseText.c	590 B	b4e3691b85d1529cd23db330964e721a	C source, ASCII text
2018-05-20 02:44	PayloadScreenGlitches.c	376 B	3ed9d7f1af3164f80b6541bdd96cc05a	C source, ASCII text
2018-05-20 02:44	PayloadSound.c	867 B	1650df200cdf3cb277228bc5b44de2b4	C source, ASCII text
2018-05-20 02:44	PayloadTunnel.c	191 B	8697dc0084c9c1f425c107e0f8e53844	C source, ASCII text
2018-05-20 02:44	Payloads.c	2.7 kB	18539e7cb3e61ada88c1de2a2d00f79b	C source, ASCII text
2018-05-20 02:44	Payloads.h	1.6 kB	5e344714ab7556760b592d751d694a5b	C source, ASCII text
2018-05-20 02:44	MsgBoxHook.c	494 B	d3b38da30986f5283d5ef070a5c40627	C source, ASCII text
2018-05-20 02:44	Random.c	281 B	441ef6facea718bf04dfa7f165970b66	C source, ASCII text
2018-05-20 02:44	StrReverse.c	371 B	5c8552d1029edf7ea7048dec60d7bef9	C source, ASCII text
2018-05-20 02:44	Utils.h	93 B	2256fbafb0f4814c78146dec3ea42123	ASCII text
2018-05-20 02:44	exe2bat.py	2.6 kB	d36aa007ebc8489f62d8de501cde8f2e	Python script, ASCII text executable

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Certutil Decode

JavaScript (0)

HTTP Transactions (1)

	URL	IP	Response	Size