Report Overview
Visitedpublic
2024-08-23 14:04:59
Tags
Submit Tags
URL
launcher-static.gamecluster.nextrp.ru/nextrp.exe
Finishing URL
about:privatebrowsing
IP / ASN
188.68.201.21
Title
about:privatebrowsing
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
r10.o.lencr.org | unknown | 2020-06-29 | 2024-06-06 21:45:11 | 2024-08-22 18:12:04 | 1.3 kB | 3.5 kB |  23.33.119.27 | |
r11.o.lencr.org | unknown | 2020-06-29 | 2024-06-07 07:43:57 | 2024-08-22 18:12:25 | 1.6 kB | 4.4 kB | 23.33.119.57 | |
launcher-static.gamecluster.nextrp.ru 1 alert(s) on this Domain | unknown | 2018-10-11 | 2021-02-04 08:39:28 | 2024-01-24 05:18:53 | 502 B | 280 kB | 188.68.201.21 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
No alerts detected
Threat Detection Systems
Public InfoSec YARA rules
| Scan Date | Severity | Indicator | Alert |
|---|---|---|---|
| 2024-08-23 | medium | launcher-static.gamecluster.nextrp.ru/nextrp.exe | files - file ~tmp01925d3f.exe |
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
File detected
URL
launcher-static.gamecluster.nextrp.ru/nextrp.exe
IP / ASN
188.68.201.21
File Overview
File TypePE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Size279 kB (279368 bytes)
MD5c2b3d43ad2e38430507fa416b91f3b21
SHA1ba3d0d190ad9b9e05cba2e7fc0118950c17bf7a2
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | files - file ~tmp01925d3f.exe |
JavaScript (0)
No JavaScripts
HTTP Transactions (10)
| URL | IP | Response | Size |
|---|